Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/pwcBDIgPOvVf1p7gFLuhB7x2VFY.roa
File: pwcBDIgPOvVf1p7gFLuhB7x2VFY.roa (raw, json)
Hash identifier: vaI9XkQu3mf5iZ/9hRvI/BIXKAHFiDx/9DnJtLAVTn8=
Subject key identifier: A7:07:01:0C:88:0F:3A:F5:5F:D6:9E:E0:14:BB:A1:07:BC:76:54:56
Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Certificate serial: 1C719AA5
Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/pwcBDIgPOvVf1p7gFLuhB7x2VFY.roa
Signing time: Sat 01 Jan 2022 06:53:21 +0000
ROA not before: Sat 01 Jan 2022 06:53:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51740
IP address blocks: 95.170.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477207205 (0x1c719aa5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Validity
Not Before: Jan 1 06:53:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a707010c880f3af55fd69ee014bba107bc765456
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ae:9c:ff:6c:67:da:96:b4:9e:9f:eb:e5:60:
20:8e:c0:de:47:71:70:b8:0f:7f:2f:b4:1d:2a:86:
be:4e:a9:0f:fc:7a:67:87:9f:be:d1:95:68:7c:fa:
36:8c:e2:ad:37:a3:db:4f:fc:2d:c8:af:79:af:55:
37:1b:0b:c6:1c:39:f1:ff:97:2b:e4:a4:e3:5b:b5:
99:46:bc:ff:17:8e:54:4e:0e:8c:97:fd:b6:ef:20:
66:79:fe:5a:46:90:51:d5:e5:c8:54:e8:2e:3a:e1:
c8:1b:d7:2d:20:ca:aa:de:74:21:a8:20:0a:5a:02:
73:61:65:cf:cd:c2:06:b0:28:4a:2d:d7:1a:61:d9:
b5:8d:c6:e8:9a:86:af:2c:d4:a9:0a:3b:2d:79:8f:
71:36:6e:13:8e:9c:ae:30:fa:0c:a9:e4:0a:30:96:
ac:d9:f3:49:1a:f8:d0:f8:b4:30:08:23:ec:1d:14:
31:13:8e:91:48:c2:67:b4:f5:d8:27:ca:c0:33:97:
fd:fd:1b:e7:5f:db:ed:aa:41:3b:ae:9c:90:b0:b6:
8a:77:09:f6:f5:53:92:c9:14:67:98:65:5c:49:d1:
dd:9b:d4:e5:15:a0:33:7a:2b:58:30:d8:8f:d8:6f:
a4:5d:73:f5:dd:a7:b1:5c:43:9e:c6:a2:ef:10:37:
04:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:07:01:0C:88:0F:3A:F5:5F:D6:9E:E0:14:BB:A1:07:BC:76:54:56
X509v3 Authority Key Identifier:
keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/pwcBDIgPOvVf1p7gFLuhB7x2VFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.170.104.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:e5:5c:10:fb:16:ac:24:c6:a1:30:01:21:20:33:59:ca:c0:
ad:fc:6a:37:1e:f1:94:e4:12:3f:9b:eb:f6:0a:fc:d1:76:1a:
86:17:8c:3f:ab:b0:2a:ea:04:f8:d6:9c:29:e4:af:51:45:fe:
e8:89:57:ca:9f:f3:de:2e:f3:86:a7:d4:1b:68:b2:ae:65:86:
ac:a7:49:d0:61:75:bc:ec:d5:83:4b:b0:eb:fb:9b:6e:c8:42:
cc:99:f3:0a:f7:8a:a6:e6:47:a2:8b:00:f5:d9:fa:2b:c6:64:
1d:6d:aa:ff:18:af:9f:fc:a1:21:26:33:79:8a:c8:ef:f8:39:
47:cc:1c:f0:c8:a2:3d:37:61:d9:f2:01:b4:60:22:b1:a6:f2:
57:63:49:1e:a1:23:80:f8:7f:6c:8d:b1:8a:f7:5c:24:7d:ed:
f5:06:ea:ce:d9:68:c2:12:39:b6:e2:b1:2e:57:0c:21:c9:07:
c0:ba:07:f6:94:02:a4:04:19:a8:70:fc:64:86:07:f8:19:1d:
84:02:5a:69:6e:1d:d0:43:bc:4b:ea:fe:c8:94:1e:16:76:88:
a1:a8:ce:c0:d0:86:97:94:ba:63:82:46:27:38:dc:45:b8:4c:
7a:fd:7f:bd:46:57:e7:2b:d1:c6:84:e7:dd:0a:c0:5f:c5:c3:
33:4c:7e:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org