Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/vv8KaRl2xtMZS6hJOIDJpjvXPmE.roa
File: vv8KaRl2xtMZS6hJOIDJpjvXPmE.roa (raw, json)
Hash identifier: vi6AA7NlwQs5g690GjNLuQZh5w8x5eD4cNSV9MKSSTo=
Subject key identifier: BE:FF:0A:69:19:76:C6:D3:19:4B:A8:49:38:80:C9:A6:3B:D7:3E:61
Certificate issuer: /CN=97cca0952db8aa9fe5e5703c6f189a06a57f4bb1
Certificate serial: 0924724A
Authority key identifier: 97:CC:A0:95:2D:B8:AA:9F:E5:E5:70:3C:6F:18:9A:06:A5:7F:4B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/vv8KaRl2xtMZS6hJOIDJpjvXPmE.roa
Signing time: Sat 01 Jan 2022 03:54:27 +0000
ROA not before: Sat 01 Jan 2022 03:54:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48960
IP address blocks: 95.173.200.0/24 maxlen: 24
2a02:a48::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153383498 (0x924724a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97cca0952db8aa9fe5e5703c6f189a06a57f4bb1
Validity
Not Before: Jan 1 03:54:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=beff0a691976c6d3194ba8493880c9a63bd73e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:f3:7e:64:44:13:76:64:d4:4d:ed:6a:ad:d4:
f3:0f:35:2b:ba:fb:1d:65:76:26:e7:0b:5f:17:3a:
5f:2e:2b:12:41:06:2b:b2:eb:85:a6:6e:91:fb:34:
1f:3d:8b:54:63:da:0d:89:b8:88:6e:9b:24:ef:ec:
82:d9:56:1d:74:88:43:e9:a4:55:ba:eb:95:1e:4c:
17:2e:9d:25:6b:1b:16:89:6d:a7:9d:d4:0d:b1:e9:
12:f5:ec:39:63:3a:e0:26:6f:5a:22:f3:91:15:ba:
16:85:1e:21:40:16:fd:7c:b7:79:a6:30:3a:f2:fe:
89:d4:61:ca:37:dd:f2:f5:c3:af:f4:14:37:7a:40:
16:0f:db:bd:cf:68:f1:13:b8:d8:31:c0:b5:a8:a8:
e9:13:e7:d5:f4:50:4c:39:85:ad:b8:f8:b7:3a:85:
d5:58:0b:f3:8f:b4:23:d3:e9:e8:c9:69:57:af:77:
d2:c6:cc:99:77:2e:50:e0:41:90:59:95:5c:fd:9e:
fd:82:f2:fb:24:77:16:a4:b4:31:95:48:ed:eb:f7:
7c:36:76:4d:6f:71:66:c7:a5:ec:b8:85:69:cc:78:
0d:11:09:d1:50:08:d3:4a:fb:e1:26:38:25:99:94:
34:28:b0:a2:d9:aa:97:83:08:25:f2:8f:7b:91:8b:
73:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:FF:0A:69:19:76:C6:D3:19:4B:A8:49:38:80:C9:A6:3B:D7:3E:61
X509v3 Authority Key Identifier:
keyid:97:CC:A0:95:2D:B8:AA:9F:E5:E5:70:3C:6F:18:9A:06:A5:7F:4B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8yglS24qp_l5XA8bxiaBqV_S7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/vv8KaRl2xtMZS6hJOIDJpjvXPmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/9a0eb2-e994-4719-a166-5d6dd0ba52cf/1/l8yglS24qp_l5XA8bxiaBqV_S7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.173.200.0/24
IPv6:
2a02:a48::/32
Signature Algorithm: sha256WithRSAEncryption
41:1e:d1:71:f3:fa:e6:e4:79:c8:d8:58:5e:95:c4:7f:df:88:
0f:1b:28:f6:d1:ec:d3:bf:83:7c:1a:05:eb:03:c4:a4:8a:b2:
5c:18:c9:f6:aa:0f:fc:fd:e1:70:92:db:c0:7c:23:96:70:f8:
03:00:ba:3c:f0:c2:67:e7:fa:57:aa:8e:16:74:ce:c5:86:68:
87:ad:6a:8c:66:52:a3:a8:84:d7:b8:f0:41:80:ff:b3:4b:6d:
3b:7c:f8:48:71:a3:eb:06:d3:cf:40:1a:de:d3:5d:4a:e9:d9:
ab:59:ce:97:42:71:6d:8f:fb:1e:37:bf:e3:b9:4a:4d:14:45:
96:8c:11:94:cc:38:f9:78:7c:b5:6b:8d:74:cc:89:86:84:29:
bd:98:57:f9:93:da:b1:86:43:cf:23:43:eb:0e:f5:5b:d6:a3:
f2:95:78:5e:81:97:d1:72:97:6d:98:31:c2:9e:8f:0f:31:f8:
15:a1:b5:16:bd:cb:5a:7b:df:f9:17:5a:d6:e3:a2:37:b8:3b:
a0:6a:90:21:4e:a1:91:1a:31:2c:f7:e6:18:e5:63:13:eb:2a:
59:7f:fb:6b:b8:24:33:0b:35:9e:88:e0:6a:25:b6:fa:71:cb:
8a:31:9c:53:9a:26:9e:66:2d:34:98:04:86:ef:8e:da:62:44:
62:5c:5b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:35 2024 by rpki-client on console-ams.rpki-client.org