Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/W6QXoLs1I3sUPpPQyfoqIO3F-bk.roa
File: W6QXoLs1I3sUPpPQyfoqIO3F-bk.roa (raw, json)
Hash identifier: 08059mWUvjfIx0larUq1o9mlro9bFabNLFOg51ENc8o=
Subject key identifier: 5B:A4:17:A0:BB:35:23:7B:14:3E:93:D0:C9:FA:2A:20:ED:C5:F9:B9
Certificate issuer: /CN=1c5c72ee422c61667e3056de6b3ffce034305175
Certificate serial: 03B960BD
Authority key identifier: 1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/W6QXoLs1I3sUPpPQyfoqIO3F-bk.roa
Signing time: Sat 01 Jan 2022 11:00:33 +0000
ROA not before: Sat 01 Jan 2022 11:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60635
IP address blocks: 95.66.226.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62480573 (0x3b960bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5c72ee422c61667e3056de6b3ffce034305175
Validity
Not Before: Jan 1 11:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ba417a0bb35237b143e93d0c9fa2a20edc5f9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e9:fc:0f:cc:bf:a7:27:56:e1:e4:54:2b:32:
42:90:e5:e6:12:3a:1b:c9:aa:1c:bd:61:a8:62:1c:
30:59:41:11:b3:94:28:09:d7:58:14:04:d3:d4:50:
e2:db:b9:f0:75:8a:10:fc:c5:b4:0e:03:66:3e:80:
e3:0c:b0:e8:11:f8:1c:c6:2d:e2:11:61:96:03:b6:
da:0d:cc:ca:b0:dd:f2:17:a3:6f:41:96:d7:e8:06:
56:18:e8:c0:ad:91:eb:10:be:67:4f:94:4d:b7:9e:
be:f2:df:fa:57:83:0a:81:2b:05:4a:e1:74:fc:64:
8d:0c:6e:0f:66:5c:d6:e4:74:09:be:da:7b:8d:7e:
9a:dd:e2:eb:da:80:76:86:7e:40:d0:dd:7b:6f:f7:
6e:0f:e9:f7:e2:2b:08:46:0f:a5:e9:43:8f:75:b7:
6d:4f:c4:e0:3a:ac:88:aa:fa:71:40:3b:fd:5d:bb:
db:50:6e:8c:50:55:73:dd:26:94:4f:47:59:f7:e3:
92:19:d6:06:48:70:8c:6c:bb:37:3a:71:c8:12:d6:
e3:37:1b:a3:e5:31:9b:76:b6:69:9f:c9:24:67:45:
f9:45:01:88:30:1e:15:ed:4b:37:29:2e:f3:00:8f:
74:67:8c:fd:a7:bc:37:ab:b9:f3:07:1d:79:92:e0:
d7:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:A4:17:A0:BB:35:23:7B:14:3E:93:D0:C9:FA:2A:20:ED:C5:F9:B9
X509v3 Authority Key Identifier:
keyid:1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/W6QXoLs1I3sUPpPQyfoqIO3F-bk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/HFxy7kIsYWZ-MFbeaz_84DQwUXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.66.226.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:7e:f3:b1:48:8d:c5:35:3a:45:05:0e:3d:09:21:01:99:75:
b4:77:e1:2f:30:3b:54:c3:e7:13:69:65:3e:bb:99:e6:72:20:
f6:34:29:14:6f:02:15:4b:77:d4:af:77:c1:dc:de:e7:ad:e9:
34:fa:20:bf:bd:c2:3b:f5:90:08:da:9e:ec:26:21:36:b0:19:
f5:58:79:b8:12:e3:b0:a7:f8:11:20:07:9a:8b:90:58:5e:2f:
89:69:78:38:c2:3a:cb:9c:24:d7:19:c6:bf:8a:3c:74:c0:cb:
87:d8:3e:33:7c:5a:27:b8:de:c6:98:ea:9c:d5:a1:d9:0d:39:
23:5e:60:64:80:6b:98:31:0a:f3:3b:fe:36:ec:e4:ec:58:38:
5f:d8:36:1e:d8:04:77:19:4a:0e:bd:5a:d2:80:9a:96:04:87:
f2:35:33:66:a0:3d:a6:1f:75:fe:c0:46:17:f9:35:3c:88:52:
a2:d2:1c:a2:53:c4:9f:8e:6e:5c:50:27:01:e3:39:8a:78:2d:
de:b9:0e:84:a4:9f:9c:c4:8e:c2:a5:f3:f4:30:e7:76:7c:29:
56:ba:04:05:bb:7b:a5:f9:62:05:4d:ad:5c:d7:cd:d9:38:29:
83:01:22:1a:ed:1d:ee:c9:17:e1:01:7a:24:b3:a8:6b:26:7b:
d5:d9:2b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:18 2023 by rpki-client on console-ams.rpki-client.org