Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/sSOhenm3y3I98Rcm_7BZZKetOFc.roa
File: sSOhenm3y3I98Rcm_7BZZKetOFc.roa (raw, json)
Hash identifier: aczXQtHEYVrnBfwoyWV3wYjqAOjJBo04KvfUeq0Cfa4=
Subject key identifier: B1:23:A1:7A:79:B7:CB:72:3D:F1:17:26:FF:B0:59:64:A7:AD:38:57
Certificate issuer: /CN=c255989d579c4b5eade852f97f62e9bf2cfbde3c
Certificate serial: 0A4A839A
Authority key identifier: C2:55:98:9D:57:9C:4B:5E:AD:E8:52:F9:7F:62:E9:BF:2C:FB:DE:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/sSOhenm3y3I98Rcm_7BZZKetOFc.roa
Signing time: Sat 01 Jan 2022 05:57:56 +0000
ROA not before: Sat 01 Jan 2022 05:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 188.95.140.0/24 maxlen: 24
188.95.141.0/24 maxlen: 24
188.95.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172655514 (0xa4a839a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c255989d579c4b5eade852f97f62e9bf2cfbde3c
Validity
Not Before: Jan 1 05:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b123a17a79b7cb723df11726ffb05964a7ad3857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:99:b6:10:2b:90:bc:cd:8e:15:83:76:dd:
12:20:38:f6:1d:13:2b:c9:8f:52:34:c5:c0:03:f4:
ff:77:f0:e5:39:37:27:3e:b9:a6:68:2a:79:8b:e8:
60:6a:2a:a0:cd:8e:a5:db:42:d9:cc:66:54:05:a4:
5d:37:8e:24:56:ed:5f:c8:4d:80:3f:84:0d:d2:1b:
8e:fa:20:18:f0:5d:a0:75:83:07:a1:1e:65:01:bf:
95:58:74:dd:24:4f:97:e4:0b:ce:77:44:2c:72:a4:
36:45:d1:57:e1:8b:c2:d4:a7:45:cf:34:ff:5f:0a:
18:dc:54:9e:83:5f:a3:b8:e6:2f:4d:94:13:80:e3:
86:f8:fe:65:8a:1b:c3:04:e7:0f:39:1f:f3:30:5e:
84:ae:46:d2:c9:5d:9a:57:92:bf:64:20:96:99:c1:
6a:5b:ac:3e:25:bd:56:c9:bc:22:51:ca:e2:fa:58:
4e:5b:cc:f7:e7:33:67:77:6d:dc:e5:ea:b2:a3:b7:
73:7a:5f:ae:ff:f0:0b:a6:77:4b:e6:ec:59:5c:e1:
55:27:08:ba:ab:29:71:cd:e5:cd:c6:b8:b6:a6:e5:
c0:77:65:e1:da:f6:c6:7d:66:95:3b:b0:97:4c:31:
ee:84:33:0d:f9:e7:22:cb:a7:72:00:8d:01:ef:b5:
6d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:23:A1:7A:79:B7:CB:72:3D:F1:17:26:FF:B0:59:64:A7:AD:38:57
X509v3 Authority Key Identifier:
keyid:C2:55:98:9D:57:9C:4B:5E:AD:E8:52:F9:7F:62:E9:BF:2C:FB:DE:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wlWYnVecS16t6FL5f2Lpvyz73jw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/sSOhenm3y3I98Rcm_7BZZKetOFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/720394-cf71-40a3-a538-ed01ed7c129b/1/wlWYnVecS16t6FL5f2Lpvyz73jw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.95.140.0-188.95.142.255
Signature Algorithm: sha256WithRSAEncryption
56:4c:d5:29:37:bd:78:58:10:7b:c5:a1:b7:43:9a:eb:17:a4:
35:70:5b:fd:79:f4:50:10:c5:4e:0c:6b:c5:8d:d9:0b:fa:7a:
31:7a:3c:0c:43:1e:60:f9:02:8d:55:5e:e2:10:02:6e:80:a3:
77:23:f7:08:ce:d9:ff:51:51:11:21:66:84:f6:18:9f:68:19:
24:e6:f8:47:cf:d8:be:e3:d7:9c:9a:36:af:db:59:b2:a9:9f:
f3:2d:84:6b:d2:0c:12:78:40:f7:52:e3:b9:96:8b:0d:d9:5b:
5d:6d:04:a3:81:21:47:72:a8:39:14:f0:36:e9:05:b6:05:f8:
c0:dc:0e:56:4d:e7:f5:c4:2f:ff:a3:9b:2e:7f:f6:10:7c:f7:
e0:f0:77:e3:26:16:dc:2f:3f:88:9a:8d:92:83:08:38:ad:cf:
9a:06:4b:24:21:5d:0a:8c:08:c8:10:21:46:d1:b8:b9:44:c4:
c1:63:15:1b:f3:d9:b2:45:ff:30:5b:11:b7:32:79:87:1b:ee:
ed:8f:53:3c:8b:eb:10:95:10:dd:3d:aa:3e:a0:60:d2:49:60:
8d:cb:c3:3e:2c:72:61:ae:38:d1:9c:09:b2:19:32:08:97:31:
09:28:bc:60:63:e9:bb:8d:37:b0:dd:84:c9:b5:16:b4:5c:43:
c0:d8:ad:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:17 2023 by rpki-client on console-ams.rpki-client.org