Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/cpfAyN8qth53ByN9lqQX-yrKp2o.roa
File: cpfAyN8qth53ByN9lqQX-yrKp2o.roa (raw, json)
Hash identifier: JQYWXD/tkYdJ2z4DKRlvh9XPQVD0lFMLWwHhZdcGKUQ=
Subject key identifier: 72:97:C0:C8:DF:2A:B6:1E:77:07:23:7D:96:A4:17:FB:2A:CA:A7:6A
Certificate issuer: /CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Certificate serial: 41924966
Authority key identifier: BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/cpfAyN8qth53ByN9lqQX-yrKp2o.roa
Signing time: Sat 01 Jan 2022 11:54:58 +0000
ROA not before: Sat 01 Jan 2022 11:54:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31290
IP address blocks: 95.172.224.0/19 maxlen: 24
212.105.160.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1100106086 (0x41924966)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda96d02a822f46253c2aee680441d5ac27c3df5
Validity
Not Before: Jan 1 11:54:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7297c0c8df2ab61e7707237d96a417fb2acaa76a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:14:eb:85:24:d3:bd:51:2f:7f:26:87:bb:e6:
aa:b0:37:19:2a:59:c0:ec:8d:83:77:f3:3e:04:20:
03:4f:f8:4a:f6:9b:cf:98:1b:6a:e5:0d:e9:ee:1b:
79:af:cb:b8:df:93:c1:63:21:f2:dc:fe:8e:45:be:
ac:88:06:4d:c7:3a:c9:ec:d0:47:f2:46:e7:78:66:
dc:ac:84:89:2c:86:93:27:b1:0a:d4:f9:9e:bb:c0:
cc:a4:00:19:d1:c5:ef:bd:63:2f:d2:5d:a3:b4:4a:
a2:15:71:3a:3a:07:52:ce:d8:e8:8f:60:f9:23:b0:
d7:6f:4f:c0:25:97:9f:ee:b2:ad:7b:97:59:08:0d:
90:92:ef:e4:5f:29:78:e6:2d:f9:7b:f4:27:68:c7:
6e:2c:b3:fc:d6:ce:5f:36:36:c8:6b:16:86:9c:56:
95:52:72:4c:74:d6:b4:47:f2:36:d0:e7:c0:03:da:
69:d9:60:1b:2c:92:63:7e:07:0b:c5:99:a1:6a:fd:
11:d0:0b:1c:14:1d:75:1e:cb:e9:04:8a:53:6e:3a:
ff:9a:65:10:57:d0:00:b0:69:78:fc:ff:78:05:0d:
64:9f:ff:1c:04:16:7f:d2:7f:fd:f6:ff:18:1e:f5:
8d:7d:15:37:85:73:e3:3c:c0:ab:a9:55:88:03:63:
c9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:97:C0:C8:DF:2A:B6:1E:77:07:23:7D:96:A4:17:FB:2A:CA:A7:6A
X509v3 Authority Key Identifier:
keyid:BD:A9:6D:02:A8:22:F4:62:53:C2:AE:E6:80:44:1D:5A:C2:7C:3D:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/valtAqgi9GJTwq7mgEQdWsJ8PfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/cpfAyN8qth53ByN9lqQX-yrKp2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a27b39-8011-4142-86c2-cf83d6e40558/1/valtAqgi9GJTwq7mgEQdWsJ8PfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.172.224.0/19
212.105.160.0/19
Signature Algorithm: sha256WithRSAEncryption
6f:1e:89:81:0d:b6:34:35:e2:5b:06:69:bb:53:0d:28:73:1e:
6f:d6:ac:e8:0f:76:c7:6b:dd:89:0c:63:f0:1e:76:ef:c0:d1:
c6:43:62:8c:fe:c7:97:bb:cf:56:fd:ec:a2:c1:c4:f3:5d:30:
c4:10:47:1d:b0:7d:55:a7:c0:33:5e:30:83:bb:35:5c:5b:f3:
db:77:2e:84:f1:a4:be:33:93:cf:c8:18:1f:9c:62:55:37:30:
44:eb:cf:96:c4:9c:b8:02:1d:78:7a:41:19:d6:d2:dc:03:ac:
ce:51:36:b0:bc:a5:32:77:ff:a5:12:eb:be:be:f7:f8:9e:b5:
01:6c:95:89:d6:0e:76:de:f1:8b:7b:9a:b5:6f:3d:00:28:b0:
a0:9a:9b:c8:65:0b:9e:24:4b:1c:02:b6:b0:03:15:1c:8e:b2:
39:4d:55:db:22:86:07:1d:11:c6:3e:a4:c6:e9:e2:fe:ee:6b:
eb:a5:44:4b:d2:43:15:d5:f2:f9:62:81:cf:34:03:27:79:1b:
94:7e:97:92:46:14:8c:1e:06:56:bd:5f:74:6f:b9:f3:11:24:
49:7f:2a:84:21:bb:0d:ba:65:c4:d4:ae:e0:2c:af:df:39:64:
a9:81:4f:b9:00:b1:8d:27:a0:79:c7:45:d7:23:19:e2:77:5e:
8b:b7:0f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:22 2023 by rpki-client on console-ams.rpki-client.org