Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/IYvUoeC5wVeMC-ET5wcxVA65Shg.roa
File: IYvUoeC5wVeMC-ET5wcxVA65Shg.roa (raw, json)
Hash identifier: J8Cs3DdsKoH67lODLEfRT8lX6B3HLMxK5GAfbgJ9HJw=
Subject key identifier: 21:8B:D4:A1:E0:B9:C1:57:8C:0B:E1:13:E7:07:31:54:0E:B9:4A:18
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 0656B178
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/IYvUoeC5wVeMC-ET5wcxVA65Shg.roa
Signing time: Tue 19 Apr 2022 14:04:11 +0000
ROA not before: Tue 19 Apr 2022 14:04:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49637
IP address blocks: 95.181.146.0/24 maxlen: 24
95.181.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106344824 (0x656b178)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Apr 19 14:04:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=218bd4a1e0b9c1578c0be113e70731540eb94a18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ef:f3:86:06:e6:2b:8c:31:f5:2e:5a:31:7a:
fb:25:35:ff:f2:4d:5f:c5:96:c6:ab:0a:1c:8e:95:
c8:07:02:63:a6:6f:09:75:e4:35:46:c1:d2:6c:53:
07:d9:d5:94:df:07:7d:49:78:f6:44:a0:ca:dc:f8:
1b:5a:ab:31:b6:ff:72:c1:20:d1:39:3e:b5:b4:d1:
91:f2:ba:24:bb:e8:d5:1d:09:03:e1:78:3f:f7:ac:
c1:5b:43:6a:3a:27:b7:35:2c:81:52:d8:b4:8d:cd:
a6:16:10:46:cd:ba:c4:25:8b:ea:c7:fe:09:43:8c:
32:0f:67:27:4d:b2:e9:83:5f:22:1a:f7:c1:7d:f1:
ec:2b:51:64:0a:83:be:ea:26:95:52:75:9f:74:6d:
a0:41:7e:11:ad:be:57:15:c7:7c:08:0b:be:72:48:
6f:39:90:37:e5:d7:b8:6e:2f:b7:c2:b9:26:ed:20:
72:19:e5:47:4a:cf:f2:c0:2e:7b:02:1a:e9:69:e9:
77:82:a0:32:1d:e9:60:8b:ba:df:84:62:d4:74:e2:
e8:55:df:94:d9:ae:15:c0:a1:e9:cd:df:73:e6:43:
08:83:01:85:3f:66:ac:39:cf:c2:79:9e:14:c2:d2:
9f:22:d1:74:6d:4c:34:95:89:3f:a6:63:ae:3d:5e:
47:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:8B:D4:A1:E0:B9:C1:57:8C:0B:E1:13:E7:07:31:54:0E:B9:4A:18
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/IYvUoeC5wVeMC-ET5wcxVA65Shg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.181.146.0/23
Signature Algorithm: sha256WithRSAEncryption
ae:66:4d:19:40:63:86:bd:2d:01:db:d7:90:06:4b:8f:96:ec:
cd:0b:b2:75:83:33:ee:5c:44:80:e5:4f:c5:34:0b:29:b5:b7:
4c:9d:9b:81:33:0c:a9:4d:d6:eb:d8:65:56:dc:3f:92:71:aa:
f2:73:4f:f4:6d:48:40:e8:f0:35:dc:39:55:f9:84:49:98:64:
9a:87:7b:20:7b:f7:ef:ec:b0:ee:9f:6e:c1:fd:28:64:42:ac:
ad:94:30:6e:5a:ba:86:7e:29:3d:65:5a:a4:e0:2d:e8:66:02:
b3:d5:9b:92:a2:78:3b:c7:a2:ac:cc:1e:e4:4a:1b:03:7b:2e:
e6:09:b5:ca:8d:38:fc:86:d4:0d:bf:3b:72:c2:09:01:68:54:
51:20:a3:c1:03:85:bd:4b:2b:30:b4:a5:23:cd:7b:14:a8:23:
3f:b2:9d:d5:69:f7:0c:64:9e:c8:1c:14:6b:6c:3b:99:91:e7:
9f:ca:e4:ac:20:98:94:52:b5:3a:87:ce:35:5b:63:42:44:9a:
7a:c9:5e:8d:b8:7f:39:f6:81:14:a5:ff:b2:c0:0a:ad:15:1b:
8d:25:7a:8f:c1:97:4b:75:f3:f4:e7:82:f2:22:47:73:62:05:
40:c9:90:ac:c8:d8:f4:9c:c5:78:17:ef:c1:b9:e6:19:17:ea:
21:e3:ba:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:48 2023 by rpki-client on console-ams.rpki-client.org