Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/99107a-3b1b-4b5e-ae15-f95c60b466a0/1/0h7Wam4WrZt_J4_Wul_qJMQyxk8.roa
File: 0h7Wam4WrZt_J4_Wul_qJMQyxk8.roa (raw, json)
Hash identifier: vZSgne7DBwB3j9rd326K/GYFFbLZmutVB4PUWzfNdxM=
Subject key identifier: D2:1E:D6:6A:6E:16:AD:9B:7F:27:8F:D6:BA:5F:EA:24:C4:32:C6:4F
Certificate issuer: /CN=53d9c969675a27d515d8fab2c63cde0ed056491e
Certificate serial: 06895771
Authority key identifier: 53:D9:C9:69:67:5A:27:D5:15:D8:FA:B2:C6:3C:DE:0E:D0:56:49:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U9nJaWdaJ9UV2PqyxjzeDtBWSR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/99107a-3b1b-4b5e-ae15-f95c60b466a0/1/0h7Wam4WrZt_J4_Wul_qJMQyxk8.roa
Signing time: Sat 01 Jan 2022 06:01:26 +0000
ROA not before: Sat 01 Jan 2022 06:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207786
IP address blocks: 195.85.218.0/24 maxlen: 24
195.85.226.0/24 maxlen: 24
195.85.223.0/24 maxlen: 24
195.85.244.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109664113 (0x6895771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53d9c969675a27d515d8fab2c63cde0ed056491e
Validity
Not Before: Jan 1 06:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d21ed66a6e16ad9b7f278fd6ba5fea24c432c64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:fb:fb:ec:fd:4e:5d:6b:c9:b9:6d:e2:a7:6f:
e7:7d:ae:8f:4e:21:7f:44:a6:c4:9e:40:05:a8:8a:
32:5f:6b:74:c7:53:e5:72:93:7c:a4:1c:a2:78:34:
01:8c:6e:9c:ea:6d:a0:f0:76:03:be:b6:e0:a3:81:
7b:09:5b:e3:a9:49:05:56:e9:99:75:20:17:ae:0c:
e0:c0:c0:59:18:e0:07:0e:96:af:c9:06:d1:00:88:
78:4c:72:d4:c2:1e:a9:2e:8c:db:6a:38:77:7a:7e:
18:59:65:de:35:9a:85:26:4c:7b:43:40:ee:96:11:
39:c8:1a:09:4a:b6:e0:6f:45:f1:68:7f:46:b2:48:
e3:47:35:bd:5b:b0:16:1d:5b:cc:fc:8d:22:b3:5f:
0e:0c:72:2e:4c:1c:2d:53:1d:fc:29:3c:99:70:06:
46:25:67:34:12:dd:c3:cf:de:ff:c7:56:5f:c4:c9:
db:2e:37:c5:9a:cd:98:eb:a2:3d:9d:a2:e1:58:a9:
d3:e4:06:ad:0b:23:22:33:02:28:a8:74:29:b4:5c:
1c:64:31:fc:b6:7e:e1:0b:3a:b4:60:3b:f3:cf:ae:
68:49:55:f2:65:d6:0d:a0:04:dd:08:ff:a4:9c:0a:
47:49:e6:d2:25:ae:6c:0a:9f:da:02:40:9c:9c:fd:
dc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:1E:D6:6A:6E:16:AD:9B:7F:27:8F:D6:BA:5F:EA:24:C4:32:C6:4F
X509v3 Authority Key Identifier:
keyid:53:D9:C9:69:67:5A:27:D5:15:D8:FA:B2:C6:3C:DE:0E:D0:56:49:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U9nJaWdaJ9UV2PqyxjzeDtBWSR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/99107a-3b1b-4b5e-ae15-f95c60b466a0/1/0h7Wam4WrZt_J4_Wul_qJMQyxk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/99107a-3b1b-4b5e-ae15-f95c60b466a0/1/U9nJaWdaJ9UV2PqyxjzeDtBWSR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.218.0/24
195.85.223.0/24
195.85.226.0/24
195.85.244.0/24
Signature Algorithm: sha256WithRSAEncryption
31:ab:b8:42:e3:e1:8a:70:10:85:fa:3b:25:a7:ab:67:01:c1:
f0:20:c4:e3:85:29:43:22:9d:ea:89:0d:27:fc:71:44:48:88:
58:5e:fb:0d:8f:22:6b:4e:b9:53:56:fc:26:3f:71:b9:fc:40:
13:fc:39:98:22:1b:98:90:a7:a4:10:b4:7f:16:e5:38:c5:92:
0e:de:2c:d0:b8:3a:73:db:22:26:9a:69:c9:58:f1:fa:ec:ae:
cb:38:39:5b:84:a1:fb:43:aa:28:26:1a:18:a5:91:1d:d6:cf:
9b:4b:5e:7a:eb:4b:4f:47:4c:7f:4d:22:4a:1e:d3:a7:ff:31:
2f:2d:3f:a7:dd:e1:ae:60:eb:20:37:90:78:55:ed:ae:02:09:
6b:da:f9:76:d0:bc:a7:2c:22:06:bc:ad:5e:d8:f1:d8:3d:a7:
1b:91:59:ea:68:a1:31:58:c2:49:97:f2:e0:83:d7:ee:4d:45:
eb:81:0d:37:49:49:95:69:b2:a3:44:5f:3a:6d:26:5a:5e:96:
25:98:b6:f7:32:d7:1b:33:ba:2e:2f:a1:04:2b:68:78:2c:ba:
b0:d8:c5:56:82:0d:42:53:98:ef:34:8c:50:1f:27:a5:ae:4d:
6d:56:93:9a:17:9b:97:dc:c5:2b:7c:cf:1f:78:98:b4:cc:bf:
d7:04:39:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:27 2024 by rpki-client on console-ams.rpki-client.org