Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/AlxWuPNpstaUCh2G-NdjJLtprt8.roa
File: AlxWuPNpstaUCh2G-NdjJLtprt8.roa (raw, json)
Hash identifier: HIZOaTvRtZoRXMOZ/5JRESDql0ypZrxaGXfmfWvpebY=
Subject key identifier: 02:5C:56:B8:F3:69:B2:D6:94:0A:1D:86:F8:D7:63:24:BB:69:AE:DF
Certificate issuer: /CN=f811fa5eff370bc36d0e3929625e3414081a2392
Certificate serial: 36CFE807
Authority key identifier: F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/AlxWuPNpstaUCh2G-NdjJLtprt8.roa
Signing time: Sat 01 Jan 2022 08:54:16 +0000
ROA not before: Sat 01 Jan 2022 08:54:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59831
IP address blocks: 94.127.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 919595015 (0x36cfe807)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f811fa5eff370bc36d0e3929625e3414081a2392
Validity
Not Before: Jan 1 08:54:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=025c56b8f369b2d6940a1d86f8d76324bb69aedf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:e5:52:53:51:2a:f1:6b:70:0a:6f:0a:ce:
32:49:fc:37:42:e4:a7:61:fd:f1:5b:9e:04:43:46:
de:15:e8:f1:95:11:76:67:3b:51:2e:06:3d:d9:79:
71:a5:e2:99:fb:21:00:8d:32:d6:70:7c:8b:4f:e9:
8f:64:bc:be:51:2e:d7:98:41:e1:14:09:6b:0e:76:
53:31:b3:4d:7f:bd:1e:54:bd:0b:13:13:87:94:00:
18:46:64:f3:f9:3e:14:57:99:64:6d:04:51:35:32:
b3:71:42:0b:32:d7:14:78:60:9b:b9:c0:f4:6c:b1:
c2:45:24:d9:10:59:a8:28:4f:41:8f:bf:0e:36:43:
54:01:e9:7d:53:5a:13:bc:7f:c5:c8:25:52:e1:51:
05:55:96:70:dd:16:a6:76:7c:92:22:04:73:c0:5c:
a6:cf:ea:b9:b3:74:72:37:14:80:6d:7e:04:a9:93:
48:da:3b:a0:bb:95:9b:51:ec:8b:d0:9b:d4:9d:c0:
91:65:d1:6f:9b:4e:a7:80:0c:33:52:36:71:cc:de:
b8:53:60:b6:03:8e:ca:ef:1d:bf:d2:ea:03:5b:73:
e4:c0:58:78:d4:e7:fa:f0:44:26:5e:98:60:43:7e:
9f:93:09:ed:1b:85:49:ad:8d:44:da:46:5b:41:6c:
f6:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5C:56:B8:F3:69:B2:D6:94:0A:1D:86:F8:D7:63:24:BB:69:AE:DF
X509v3 Authority Key Identifier:
keyid:F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/AlxWuPNpstaUCh2G-NdjJLtprt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/1-BH6Xv83C8NtDjkpYl40FAgaI5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.127.95.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:02:4c:61:4f:a1:ac:00:0d:ce:0b:2b:84:25:53:1d:40:b6:
ed:54:84:19:fe:d1:25:40:0c:bf:ca:e2:72:7e:71:ab:b9:ca:
04:1c:98:1d:b8:fb:46:66:2f:e3:56:7d:35:85:45:bf:cd:8e:
47:5a:c0:ab:70:5b:bc:c7:d6:f5:a2:e2:fc:cc:57:f2:48:57:
3d:19:b5:ee:ee:b8:98:47:fc:5f:75:7d:3c:c2:ea:e8:01:6d:
cf:28:04:3b:aa:e2:8b:1f:17:1b:21:82:b7:55:0e:14:93:59:
7e:79:f6:74:26:fc:61:dc:78:aa:91:83:19:d6:27:83:33:fd:
71:6c:4c:a7:ee:b5:a0:8a:a5:ea:95:e7:9b:b8:52:42:72:8d:
12:dd:e1:a7:e4:0b:e7:36:ae:fc:7d:99:fa:1c:06:36:5b:0f:
c2:0e:01:86:98:39:ac:37:7a:70:fe:2a:bb:e2:ac:02:2e:fa:
60:91:2f:e5:2a:28:60:be:2a:96:ca:43:1e:e4:46:3a:81:89:
6e:31:1c:1f:07:e3:3d:2a:8f:36:38:b6:09:05:c4:1d:57:e5:
2c:fc:61:e3:a3:6f:c7:64:e1:dc:66:53:9d:ee:d1:98:35:26:
0d:70:9f:a2:da:3f:4a:f8:62:37:15:15:ad:93:54:e4:ad:fd:
eb:c7:42:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:25 2023 by rpki-client on console-fra.rpki-client.org