Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cXDnANs8ofI0vI_ENVSYuRVHr34.roa
File: cXDnANs8ofI0vI_ENVSYuRVHr34.roa (raw, json)
Hash identifier: XJtvtKf0lvEO22N4IfcHihF1zbIP4AVbzVpnv8cLklE=
Subject key identifier: 71:70:E7:00:DB:3C:A1:F2:34:BC:8F:C4:35:54:98:B9:15:47:AF:7E
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0183C5E18C5F60590AE29DAF04D757F91888
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cXDnANs8ofI0vI_ENVSYuRVHr34.roa
Signing time: Tue 11 Oct 2022 07:10:36 +0000
ROA not before: Tue 11 Oct 2022 07:10:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202372
IP address blocks: 195.133.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c5:e1:8c:5f:60:59:0a:e2:9d:af:04:d7:57:f9:18:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 11 07:10:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7170e700db3ca1f234bc8fc4355498b91547af7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:e1:54:c8:c9:21:92:b6:e5:13:5a:a7:13:
91:46:08:4b:01:8d:50:0b:5c:39:a0:c0:ef:e6:c9:
05:95:f6:0a:06:01:2a:20:f5:ec:ac:e7:50:1e:e4:
82:24:c7:01:56:37:bc:21:29:77:73:40:7f:2e:1d:
ce:97:7d:23:c6:9c:1b:ea:d0:bf:0f:a8:ec:31:f7:
68:c7:19:4f:38:d5:5e:0c:2a:19:c4:1c:d8:c1:7d:
3f:12:d0:b4:4f:0b:63:6d:0c:a1:9b:7f:c7:8d:00:
3e:06:2b:1e:4b:98:ac:95:56:56:1f:fb:80:7b:69:
dd:7e:87:36:99:83:8f:71:6f:45:9c:ca:75:4f:12:
0c:37:bb:93:2f:f9:f3:6e:a2:83:9c:2a:eb:80:c7:
9d:0b:30:fd:1a:e7:71:95:ef:21:44:b6:50:db:96:
3c:dd:a1:7d:c0:4a:2c:c4:f6:17:85:8d:07:fe:fe:
47:27:fe:5d:95:1a:2b:a8:e4:84:48:d5:98:84:59:
bf:71:4a:1e:1b:55:53:62:55:a7:63:b7:9e:35:ac:
cd:df:99:ba:e4:1a:60:b4:aa:93:56:aa:e6:8a:1d:
5e:3c:ac:ec:e6:83:27:b6:c4:b0:47:b8:fa:af:6b:
4b:78:25:70:91:14:fe:8f:e6:1c:5b:b6:bb:2b:db:
10:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:70:E7:00:DB:3C:A1:F2:34:BC:8F:C4:35:54:98:B9:15:47:AF:7E
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/cXDnANs8ofI0vI_ENVSYuRVHr34.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.133.80.0/24
Signature Algorithm: sha256WithRSAEncryption
53:cf:82:71:95:0d:de:79:57:99:07:3e:9c:66:48:2b:af:f4:
a6:44:cb:82:c8:dd:fa:8f:a0:2f:1e:6a:b2:f5:35:1f:68:b4:
91:bd:12:5d:fa:50:33:d2:b2:a9:a6:df:bb:5d:1f:0d:13:79:
a9:36:78:83:ab:dc:d1:2d:32:ea:76:4b:53:da:b6:1d:a3:b7:
6d:e7:f6:d1:02:34:be:dd:0a:6d:22:03:1c:3f:5a:68:91:bf:
32:6a:16:1c:95:01:a2:4f:d5:19:78:fc:97:37:b3:49:cf:4f:
15:db:89:66:9f:78:bb:9f:d6:4f:7e:c4:0e:5c:37:15:54:26:
c0:a0:12:97:7e:96:79:24:7c:98:6e:6e:6b:b8:66:ab:1f:77:
5c:f1:fe:79:e7:19:e6:9b:a7:32:de:77:05:81:c4:ef:af:13:
5f:04:1f:6f:66:d0:9c:0f:13:65:84:86:29:e9:4a:e3:c0:30:
ed:4d:24:b2:49:0e:1e:4e:56:63:bf:68:f3:d3:69:96:04:ca:
49:19:6a:63:97:9c:50:62:e7:cb:36:8a:48:f2:35:32:11:bc:
3c:02:c2:a8:14:01:a8:fe:86:a0:48:f3:6b:af:65:67:4b:26:
75:05:7f:c4:5d:61:18:0f:3c:1e:ab:48:5a:37:fe:5b:c0:c8:
92:a1:f0:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org