Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/kieBh6Zl98fHfQyOaX7WTm0weac.roa
File: kieBh6Zl98fHfQyOaX7WTm0weac.roa (raw, json)
Hash identifier: n6izrK8MBqHBtUcX8jfAstzgfWr+imHV9TvstOJ8lCs=
Subject key identifier: 92:27:81:87:A6:65:F7:C7:C7:7D:0C:8E:69:7E:D6:4E:6D:30:79:A7
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 3326A3F3
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/kieBh6Zl98fHfQyOaX7WTm0weac.roa
Signing time: Sat 01 Jan 2022 10:59:10 +0000
ROA not before: Sat 01 Jan 2022 10:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200900
IP address blocks: 195.184.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 858170355 (0x3326a3f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Jan 1 10:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=92278187a665f7c7c77d0c8e697ed64e6d3079a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:e5:52:a9:ed:e2:f1:25:75:46:1a:f0:d2:20:
1c:74:9c:65:22:10:1f:81:04:f4:97:03:f9:88:e5:
ee:7e:8f:d0:0a:44:41:a2:92:b1:82:8a:fb:74:a0:
95:59:be:c1:20:52:c7:0f:3e:09:11:d0:b0:1a:5d:
16:d0:ac:65:51:f9:90:90:7e:14:8c:8c:4e:c9:f6:
54:97:21:1d:a6:6b:17:e6:47:d9:d3:0b:e8:f6:21:
28:25:a8:4d:c5:e2:41:84:9d:b1:3b:5b:3a:9a:87:
63:21:5f:84:aa:73:19:57:c7:d6:6f:53:6e:92:37:
b6:a2:fa:90:d8:ee:5a:cb:c5:a3:9b:ee:64:d3:95:
81:89:7f:3e:ca:61:3f:7e:e1:a3:e8:64:68:27:d7:
a8:34:5e:cf:58:fb:9e:58:b9:59:43:a9:74:e6:44:
27:03:9c:88:d9:12:ef:ed:7b:38:f5:9b:a5:7e:f7:
d7:77:7b:ee:04:06:d7:45:7e:fa:20:60:2c:38:14:
03:8b:e4:9f:8c:51:0b:cd:4b:0d:d3:6c:a1:87:ab:
63:42:14:09:71:34:f5:fc:f0:68:76:3f:ec:1f:06:
6d:5e:0c:af:95:05:93:7f:9e:80:37:b8:59:ab:e6:
ee:f8:9f:37:82:b0:da:ce:52:af:ef:ea:28:ae:99:
ff:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:27:81:87:A6:65:F7:C7:C7:7D:0C:8E:69:7E:D6:4E:6D:30:79:A7
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/kieBh6Zl98fHfQyOaX7WTm0weac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.184.27.0/24
Signature Algorithm: sha256WithRSAEncryption
05:73:6c:63:c4:1d:f6:cd:f2:e3:74:bb:b6:be:56:71:f1:67:
bb:83:a9:41:50:e6:2a:de:d2:98:74:80:0c:d6:17:86:e4:f7:
ba:d9:5d:c8:02:73:8c:b2:5d:da:8b:e4:2a:82:92:81:d8:e6:
13:5d:6e:12:60:5d:cd:e1:c4:40:dc:a4:3c:f6:b3:9e:af:50:
e5:95:71:a7:ad:ee:ad:55:14:60:e5:b6:d6:7b:2a:d2:14:2f:
8b:38:49:4d:6b:16:d1:9a:a1:1c:da:a7:73:f7:57:cc:31:8f:
2e:ab:08:40:00:35:22:63:30:3b:4e:15:71:5e:cf:70:ff:3c:
bf:3b:3d:1f:cc:dd:d6:97:54:72:a4:53:4d:6d:bf:61:e5:1d:
2c:69:28:f6:a6:36:3e:74:05:bd:70:43:b7:c1:ed:f2:1e:91:
c6:94:bd:30:54:dd:c0:b4:71:8b:de:b4:4c:e2:56:39:b6:a9:
48:70:63:00:9f:71:a7:f6:5a:99:11:91:97:5e:53:eb:3c:19:
82:cb:05:ea:f6:53:a9:b8:96:b0:34:8f:39:ef:0d:35:c9:f9:
a2:23:1a:91:3a:d8:89:e9:20:1e:d1:0b:dd:3c:21:e9:ca:75:
4c:48:53:cd:be:97:dc:de:e5:05:35:4b:20:fa:d4:2d:91:0c:
ff:87:78:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:21 2023 by rpki-client on console-ams.rpki-client.org