Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/OFyrWjlSPX0dM-iEJQXQd3A55Tc.roa
File: OFyrWjlSPX0dM-iEJQXQd3A55Tc.roa (raw, json)
Hash identifier: VyjvTQXWg53tZ47o8tzCqtwZ+LwrSEJHISC87Ay4xK0=
Subject key identifier: 38:5C:AB:5A:39:52:3D:7D:1D:33:E8:84:25:05:D0:77:70:39:E5:37
Certificate issuer: /CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Certificate serial: 05527EA5
Authority key identifier: 79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/OFyrWjlSPX0dM-iEJQXQd3A55Tc.roa
Signing time: Sat 01 Jan 2022 07:02:06 +0000
ROA not before: Sat 01 Jan 2022 07:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42672
IP address blocks: 95.182.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89292453 (0x5527ea5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79646b38c3d87d33145b634b4e1dcc2145f6416c
Validity
Not Before: Jan 1 07:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=385cab5a39523d7d1d33e8842505d0777039e537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:53:e1:62:2a:28:f8:64:e5:ac:7b:96:8a:d4:
a3:44:48:ae:b3:eb:55:b7:b2:39:79:cd:85:c2:40:
d1:1d:95:e4:68:11:5b:05:94:9b:22:c2:07:d7:aa:
6b:31:95:ac:9d:86:6d:fd:7a:83:64:65:08:9f:b3:
b0:22:01:e9:c7:e7:8e:07:10:8d:65:be:c6:ba:9c:
31:6a:74:89:ce:b7:f8:50:13:a7:09:54:3e:9b:b7:
f7:50:1a:a1:b9:ec:b5:be:87:d4:f5:3e:ae:74:7d:
d6:61:64:dd:b9:c3:27:05:99:4a:98:b1:d8:77:eb:
a5:cf:ac:1d:12:66:80:cd:09:a6:7c:e4:bb:ec:b2:
7e:95:dc:e9:f0:a6:98:1c:5a:1a:77:a3:5b:71:b1:
c9:6e:6b:5b:d0:c1:d4:4c:a5:06:20:d4:a4:6a:12:
80:a2:b0:45:85:3f:10:95:35:0a:64:c2:9d:2f:3e:
09:63:26:fb:88:80:53:c1:65:fe:0f:09:9c:10:c3:
0c:2a:35:c2:7b:65:95:7d:b7:71:26:32:e2:e3:94:
53:7b:a6:2f:79:c7:5b:85:39:9a:14:6d:07:6d:43:
db:5e:fd:0c:8a:0d:41:9f:a1:99:95:d8:c3:39:e1:
5e:e7:1e:10:7a:74:b3:c6:de:a7:d7:e7:df:c4:49:
05:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5C:AB:5A:39:52:3D:7D:1D:33:E8:84:25:05:D0:77:70:39:E5:37
X509v3 Authority Key Identifier:
keyid:79:64:6B:38:C3:D8:7D:33:14:5B:63:4B:4E:1D:CC:21:45:F6:41:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eWRrOMPYfTMUW2NLTh3MIUX2QWw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/OFyrWjlSPX0dM-iEJQXQd3A55Tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/b378e0-cf99-41b1-a38a-e136c989be33/1/eWRrOMPYfTMUW2NLTh3MIUX2QWw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.182.24.0/24
Signature Algorithm: sha256WithRSAEncryption
50:ba:94:61:a8:92:48:0f:90:f8:e2:a9:4d:c4:cc:aa:f7:ec:
cd:fc:3d:a6:26:d6:02:1f:94:71:b6:55:cc:5c:d1:61:7c:47:
d1:1f:a7:7d:bc:32:0a:32:6d:69:70:49:27:b5:30:25:d2:68:
ce:53:f6:59:01:98:98:28:79:e2:25:4e:4b:0a:45:a7:79:1a:
97:30:4a:d4:11:53:0a:9f:bb:a7:76:6e:fd:c4:c9:e5:e0:32:
6a:e3:a5:f7:b2:5c:4b:3b:cb:b0:fb:6f:0c:7a:11:5a:62:ab:
cb:08:08:42:26:8c:77:5d:a7:ff:2c:22:a2:81:1e:56:6d:6f:
9a:e1:2d:a2:30:dc:f9:ce:a0:92:53:6c:6a:d1:12:e5:c8:5a:
7c:d4:80:ce:d2:30:20:cb:16:2b:ef:40:68:96:81:17:d5:bd:
f6:1c:0c:a6:be:43:c9:66:df:1d:27:06:0e:62:c0:ad:9f:cb:
ec:78:7a:c2:34:c6:0a:4f:d3:c3:71:0d:0f:ca:66:9c:2b:74:
13:d3:ea:f0:4f:bb:1c:54:3f:5a:43:39:05:02:06:58:97:79:
50:77:ed:57:db:d1:af:c9:91:86:ec:aa:49:84:1a:93:3d:30:
19:8c:f6:94:bf:fa:46:ea:ac:42:ff:c9:02:70:b7:e6:67:c0:
34:ee:77:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:36 2024 by rpki-client on console-ams.rpki-client.org