Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/2ekdsgwPLCndTAxgnzNd_E9m46g.roa
File: 2ekdsgwPLCndTAxgnzNd_E9m46g.roa (raw, json)
Hash identifier: WY4pkbKQK6DNhUi/qcv6jXQ2DVCI67LtkDPga5nrEYE=
Subject key identifier: D9:E9:1D:B2:0C:0F:2C:29:DD:4C:0C:60:9F:33:5D:FC:4F:66:E3:A8
Certificate issuer: /CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Certificate serial: 0D8875A4
Authority key identifier: 9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/2ekdsgwPLCndTAxgnzNd_E9m46g.roa
Signing time: Sat 01 Jan 2022 02:57:10 +0000
ROA not before: Sat 01 Jan 2022 02:57:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.13.63.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 227046820 (0xd8875a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e3533d662c3f0d6bb1e692f3fab6d7ba3824c28
Validity
Not Before: Jan 1 02:57:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d9e91db20c0f2c29dd4c0c609f335dfc4f66e3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:61:b3:cf:ce:74:82:1e:1a:78:2b:2a:3e:d2:
69:e7:62:f9:df:f4:4e:e1:e6:d8:fd:07:4d:98:53:
ef:29:11:43:44:c4:08:f6:45:9a:9a:f9:c2:a0:da:
be:11:fa:36:eb:23:b7:63:9d:e5:2f:05:39:b7:21:
9c:ac:84:44:47:cc:53:4c:ba:ba:0a:1b:23:e1:ef:
ae:2b:60:dd:25:a4:0a:bf:18:ef:78:f5:73:ff:c3:
24:f7:c6:17:74:a1:91:d6:f2:cd:0a:7b:55:3a:19:
79:c2:f7:8d:51:f1:5f:32:2e:12:b3:42:84:60:63:
45:74:f5:5a:23:79:25:c3:3a:00:02:9b:ed:4d:f4:
da:0c:de:65:e5:ac:b7:83:de:db:86:80:1b:5e:d0:
e6:bf:20:7e:66:75:8e:46:3c:5f:23:a9:91:6b:b5:
16:f9:6b:89:ad:bc:c0:d2:b6:22:a8:a1:43:bd:d7:
4c:91:46:de:36:90:4e:cc:9c:1d:56:0f:7e:88:c1:
c9:62:54:f9:50:7b:92:18:13:64:85:07:86:56:28:
80:83:86:30:46:15:65:27:48:01:a1:cc:23:d2:a4:
43:60:d7:95:b3:a7:6c:01:78:dc:f3:7c:a6:84:a4:
ea:ff:f8:f3:f7:4b:4c:ea:9e:1e:f2:96:01:8d:4e:
ed:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:E9:1D:B2:0C:0F:2C:29:DD:4C:0C:60:9F:33:5D:FC:4F:66:E3:A8
X509v3 Authority Key Identifier:
keyid:9E:35:33:D6:62:C3:F0:D6:BB:1E:69:2F:3F:AB:6D:7B:A3:82:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/njUz1mLD8Na7HmkvP6tte6OCTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/2ekdsgwPLCndTAxgnzNd_E9m46g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/bebe6d-16b3-4b02-b205-a783413099d3/1/njUz1mLD8Na7HmkvP6tte6OCTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.13.63.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:e1:55:52:5b:5c:93:ce:9d:55:69:84:69:c6:32:5b:d9:49:
e3:35:20:fd:7b:ea:8c:2f:bd:fc:52:e8:ec:7a:86:bf:9f:2f:
ba:bd:f9:35:36:e2:9f:87:e1:84:80:40:93:be:c5:2b:30:32:
87:e3:02:d8:72:a2:d2:e4:dd:1f:e3:cd:6c:da:54:2e:a1:c8:
df:f4:55:07:c1:44:45:d9:58:0e:0e:09:82:35:46:50:e6:23:
b1:f8:0a:dd:ca:50:be:64:0a:01:e2:e3:9f:bf:7a:23:45:41:
fa:02:53:2b:58:45:de:16:58:68:1f:a4:c6:e4:cc:33:82:3e:
1a:93:a2:90:ed:a6:c4:c5:c5:37:a3:b9:f3:de:3b:be:9c:af:
0d:32:9c:eb:07:fe:ec:55:32:dc:bb:82:ec:f6:75:5e:2d:0a:
3c:7f:fc:ea:68:2d:a4:23:08:3b:28:67:12:ff:06:97:af:80:
c9:29:f3:05:2b:99:be:35:57:18:2b:2d:3e:66:b5:94:cd:a9:
8d:63:17:1a:74:56:7c:a0:08:f9:58:f9:b9:19:dc:5e:19:17:
61:7e:9a:67:22:bb:b7:51:7c:79:35:d6:f4:3c:e8:6c:39:25:
bb:02:6f:57:85:d4:c3:57:ab:4a:67:30:3b:48:f4:38:67:0f:
55:e8:ef:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:48 2023 by rpki-client on console-fra.rpki-client.org