Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/T6KC1d6JDmrsmc5LYR7wBRdU3Sk.roa
File: T6KC1d6JDmrsmc5LYR7wBRdU3Sk.roa (raw, json)
Hash identifier: UMCAB4mcglRdzqTIWaUyXidOREbAZPN7PoK1QumRM8o=
Subject key identifier: 4F:A2:82:D5:DE:89:0E:6A:EC:99:CE:4B:61:1E:F0:05:17:54:DD:29
Certificate issuer: /CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Certificate serial: 0183EC7CE627C91FDAC248E27C95112645FC
Authority key identifier: 83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/T6KC1d6JDmrsmc5LYR7wBRdU3Sk.roa
Signing time: Tue 18 Oct 2022 19:05:51 +0000
ROA not before: Tue 18 Oct 2022 19:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25000
IP address blocks: 95.181.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ec:7c:e6:27:c9:1f:da:c2:48:e2:7c:95:11:26:45:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8338ef41b2c0105a91ccbb9c89337faeb129ff84
Validity
Not Before: Oct 18 19:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fa282d5de890e6aec99ce4b611ef0051754dd29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:dd:7f:99:c9:93:6d:6e:ef:0e:9d:c0:44:31:
03:b9:d6:f9:a1:36:6a:94:40:62:8c:fe:67:b7:9d:
7c:2c:d5:b8:de:2e:b4:1e:e1:6f:c8:53:cf:1a:2f:
d7:21:c6:a6:15:8c:7b:66:41:9a:b6:d5:ae:b2:ca:
9a:e1:46:69:47:a3:f7:f9:91:9f:51:10:81:79:cc:
c8:cf:ac:ac:d6:7a:a8:04:b5:1f:44:a6:32:8f:d7:
b9:bd:bf:d1:3f:c5:1f:66:91:19:a9:2c:8d:b1:21:
0f:a2:59:16:21:15:a8:60:b5:39:fc:69:4d:16:87:
b9:89:04:53:41:ac:a4:f9:b2:94:55:52:b4:8f:a5:
17:c5:85:40:5e:f7:64:55:f8:3d:f9:0d:0f:81:9b:
77:e1:11:59:4b:57:1c:6a:e6:44:25:e4:22:e9:a3:
35:79:45:9e:ef:fe:37:79:10:ae:28:22:e0:77:f0:
e9:81:d5:ef:2d:08:9d:5f:1a:e7:e3:f7:5d:8f:9b:
ca:8e:a5:fc:c5:83:7a:bc:a8:98:ab:7a:e0:a5:71:
66:bf:37:02:23:79:81:cd:ea:49:6e:d7:bb:a1:35:
37:ae:b1:1e:e9:83:2a:97:e6:bf:b8:a2:93:ec:89:
39:63:9e:ab:bd:1a:27:d1:65:73:f2:1f:69:74:36:
e5:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:A2:82:D5:DE:89:0E:6A:EC:99:CE:4B:61:1E:F0:05:17:54:DD:29
X509v3 Authority Key Identifier:
keyid:83:38:EF:41:B2:C0:10:5A:91:CC:BB:9C:89:33:7F:AE:B1:29:FF:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzjvQbLAEFqRzLuciTN_rrEp_4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/T6KC1d6JDmrsmc5LYR7wBRdU3Sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/40d996-a2cd-41f1-a738-28fc77967763/1/gzjvQbLAEFqRzLuciTN_rrEp_4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.181.212.0/23
Signature Algorithm: sha256WithRSAEncryption
64:9f:d3:e4:b3:0b:b1:57:54:05:ab:ac:3b:a0:eb:64:26:4c:
8e:6b:34:bb:03:6d:75:f6:9d:d6:95:8d:64:8b:e2:44:10:4a:
0b:16:52:51:1c:94:99:e7:47:ad:e5:4d:ef:eb:3c:4c:93:0e:
ca:31:b2:3d:c2:68:a7:c1:67:21:17:29:62:a4:45:7e:6d:ca:
55:48:8b:7f:c1:41:a1:58:a5:dc:2f:d9:f3:b5:25:5c:30:dc:
aa:d6:9a:e3:f1:ec:48:a6:c2:ec:38:0f:ea:41:b5:f4:d7:7e:
fe:d1:89:f5:63:41:ba:ff:28:90:56:37:86:83:53:89:5e:2b:
be:67:45:86:e0:c3:09:9b:34:bf:ee:18:73:3a:a2:e1:c8:e4:
db:0b:61:5b:9c:2e:f6:9d:0c:7e:93:e9:b6:42:75:83:41:32:
45:81:4b:b2:27:4c:bb:ce:77:5d:00:21:77:52:f2:60:0a:25:
07:cd:8d:c8:12:27:b7:03:a4:1a:02:e8:e0:83:4c:31:b2:4a:
51:0f:fb:31:5d:d3:03:a9:63:69:12:8e:59:9d:a6:22:ad:c1:
2d:08:ab:97:eb:2a:51:fb:d7:35:44:bc:b3:97:a3:69:74:86:
be:15:04:07:74:af:d3:e9:19:aa:6d:44:3e:c6:cd:8e:bf:c5:
b9:c3:40:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:07 2023 by rpki-client on console-fra.rpki-client.org