Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/fA3v2SvGUOAHsHr68-uXqq9-yoc.roa
File: fA3v2SvGUOAHsHr68-uXqq9-yoc.roa (raw, json)
Hash identifier: 8VGWNgyuaSGXK6ITe3VgGNMToMPD+2qVKBDzaZ8RHHY=
Subject key identifier: 7C:0D:EF:D9:2B:C6:50:E0:07:B0:7A:FA:F3:EB:97:AA:AF:7E:CA:87
Certificate issuer: /CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Certificate serial: 1C725BB2
Authority key identifier: E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/fA3v2SvGUOAHsHr68-uXqq9-yoc.roa
Signing time: Sat 01 Jan 2022 15:03:44 +0000
ROA not before: Sat 01 Jan 2022 15:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62453
IP address blocks: 82.193.95.0/24 maxlen: 24
82.193.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477256626 (0x1c725bb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5a1b36552f9daccb92ac5c3b44b426d643749e2
Validity
Not Before: Jan 1 15:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c0defd92bc650e007b07afaf3eb97aaaf7eca87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a6:c3:23:bb:94:74:6f:ed:16:44:41:ba:b3:
d3:d9:1c:71:ee:c0:f5:63:5d:9e:81:08:e4:f6:e7:
ad:ad:30:f0:37:ac:98:6c:7b:91:1d:c2:66:eb:c2:
d6:65:c4:60:a2:14:ff:d5:ae:93:3a:86:13:20:58:
c1:51:17:d3:69:30:5d:02:94:30:21:2e:f0:7d:0d:
c8:d0:ce:de:9b:2b:67:b8:ea:31:19:f8:81:97:90:
3a:19:81:24:82:1e:b6:00:0c:4a:06:69:0a:ce:7f:
0d:52:94:00:ea:35:77:56:bd:ce:fd:b2:7a:9e:d5:
8b:e5:a7:43:5f:bd:11:f9:9a:f6:8d:c0:3d:71:b2:
43:36:6d:b8:38:4c:e3:47:99:f2:b4:75:92:bb:f8:
43:bf:75:d7:56:ac:83:78:00:52:91:33:23:72:28:
8d:9c:94:a5:de:99:c7:68:c1:9c:0d:a1:d4:fb:7f:
4e:0f:94:25:28:b5:b0:ec:de:04:68:10:8a:06:5d:
d1:e3:46:61:27:95:2f:a0:39:e8:37:f2:b4:e1:1d:
0d:d4:1a:ec:65:b5:a7:ab:c9:c0:24:c3:71:fc:24:
9e:4c:be:35:63:1c:31:ce:dc:97:69:bc:09:c9:73:
39:a7:2c:5c:de:7d:4f:2a:85:97:dc:fa:83:58:d5:
b8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:0D:EF:D9:2B:C6:50:E0:07:B0:7A:FA:F3:EB:97:AA:AF:7E:CA:87
X509v3 Authority Key Identifier:
keyid:E5:A1:B3:65:52:F9:DA:CC:B9:2A:C5:C3:B4:4B:42:6D:64:37:49:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aGzZVL52sy5KsXDtEtCbWQ3SeI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/fA3v2SvGUOAHsHr68-uXqq9-yoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b8ea5b-3dd4-4374-a793-c5e6d23f8b09/1/5aGzZVL52sy5KsXDtEtCbWQ3SeI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.193.94.0/23
Signature Algorithm: sha256WithRSAEncryption
1c:3a:3e:65:f3:9f:8d:82:be:e6:3c:57:5f:d9:5e:58:8d:8b:
f0:b2:e3:bb:34:b8:08:81:a0:6d:fa:e5:8f:b4:58:2a:3b:85:
fe:23:bf:ac:5a:59:cc:e9:8e:dd:06:62:25:c8:b1:64:1b:3b:
a5:66:b7:5a:e2:3c:3d:9b:12:36:cb:1b:0f:c9:05:bd:d3:5a:
60:b1:17:92:0a:71:0b:4e:85:48:c7:ae:72:fb:58:a7:83:bd:
90:9f:15:0e:ed:5c:a1:d2:33:05:a5:7f:3b:74:58:82:9e:fa:
1a:7f:5f:ed:4d:d7:e4:a3:d0:a1:db:15:65:51:5e:61:69:3a:
8a:47:46:d7:83:4f:ee:b4:0d:03:35:dd:fc:d8:d8:e1:dd:58:
61:49:b4:dc:d9:c2:29:62:2b:25:4f:5a:b8:db:a4:88:81:52:
54:a8:a3:5a:71:2d:5f:60:8b:d4:c6:12:f8:d1:f4:64:fa:43:
3d:3b:d1:15:00:ee:e3:6c:ae:ed:26:db:50:55:cc:77:77:f3:
03:d4:86:bf:d1:11:11:f2:14:9e:97:92:78:dd:7f:77:fd:d7:
03:f4:3f:35:fb:20:e7:1e:5f:eb:8c:f4:2e:36:49:93:22:5e:
6c:91:e7:35:77:86:c3:64:c7:dd:ab:14:c8:cf:67:a6:36:44:
e7:c9:04:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:47 2023 by rpki-client on console-ams.rpki-client.org