Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/d-LyWAr2OFDDf2PXordYu6U7kW0.roa
File: d-LyWAr2OFDDf2PXordYu6U7kW0.roa (raw, json)
Hash identifier: 5KyCLAJskMspWisdaXLaSC6g+CMNCcZ0l7d/JFsvbY0=
Subject key identifier: 77:E2:F2:58:0A:F6:38:50:C3:7F:63:D7:A2:B7:58:BB:A5:3B:91:6D
Certificate issuer: /CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Certificate serial: 05DBED3C
Authority key identifier: 6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/d-LyWAr2OFDDf2PXordYu6U7kW0.roa
Signing time: Sat 01 Jan 2022 11:02:56 +0000
ROA not before: Sat 01 Jan 2022 11:02:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 95.101.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98299196 (0x5dbed3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b5fcbbea48937a442babdb3302132c4bc9bd6aa
Validity
Not Before: Jan 1 11:02:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77e2f2580af63850c37f63d7a2b758bba53b916d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:3b:5d:0f:44:8e:cd:60:c2:60:4c:ad:69:d6:
53:15:26:4d:89:c7:26:35:ae:70:55:39:72:21:d7:
d3:4d:75:1d:a3:af:d2:d5:92:70:9a:b8:bb:2c:4c:
bd:1b:ef:bf:81:cb:cc:b2:c2:8f:cc:2e:7e:f5:5f:
e4:b7:5a:0e:29:b2:4d:18:ad:5b:3a:a6:6d:e8:f2:
16:6b:f7:cf:d7:4b:f4:f3:9f:9f:ba:2f:1c:f6:b2:
9d:25:14:4f:40:a3:86:09:08:99:d5:37:bc:03:04:
9a:a4:69:03:2f:7b:20:00:f9:a6:7c:e3:da:bb:42:
ec:55:cd:c1:ff:05:f7:5f:b8:d4:76:33:a0:8d:75:
72:e3:89:5e:65:78:29:e7:3c:f0:95:04:99:82:19:
92:29:cd:15:ce:2a:af:08:15:b1:29:8d:fd:fa:cb:
60:95:11:8d:be:75:2f:ca:46:92:16:68:e8:c4:28:
33:d0:c5:b1:42:d2:f7:11:5f:fc:7a:e3:ca:ac:50:
ba:6a:bc:e4:a9:a1:36:37:18:32:15:cb:bf:41:ed:
0c:5a:b4:07:f0:b9:47:04:8e:01:a5:c0:c0:c9:79:
d1:a9:74:d1:66:a8:00:f0:74:fc:a4:3c:94:d5:11:
8b:e4:79:f4:71:ee:84:b2:0a:24:37:c1:ee:08:bc:
69:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E2:F2:58:0A:F6:38:50:C3:7F:63:D7:A2:B7:58:BB:A5:3B:91:6D
X509v3 Authority Key Identifier:
keyid:6B:5F:CB:BE:A4:89:37:A4:42:BA:BD:B3:30:21:32:C4:BC:9B:D6:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1_LvqSJN6RCur2zMCEyxLyb1qo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/d-LyWAr2OFDDf2PXordYu6U7kW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/042188-dfb6-4ad4-91a4-88d1cac9e4f1/1/a1_LvqSJN6RCur2zMCEyxLyb1qo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.101.235.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:b5:72:40:c9:b0:cb:45:c7:88:e9:b5:80:b4:df:56:0f:b5:
f7:79:85:f4:a8:96:0c:0c:fb:0c:11:c8:a9:bc:89:fa:e9:47:
ef:12:45:5b:ba:4a:d3:4c:83:fc:eb:34:55:91:55:53:b4:5b:
9e:81:7f:55:93:3a:40:f0:47:5b:de:a6:37:04:e5:76:7f:55:
bc:66:8c:74:18:c0:12:c5:f4:2a:51:97:25:96:fe:16:ca:de:
54:d5:a6:a9:86:e0:45:3d:0e:2e:65:51:82:2f:81:34:ce:e5:
d6:df:46:67:2b:91:3b:31:7c:71:ce:82:ee:a1:ba:37:89:a3:
2d:30:0c:fb:dd:d1:16:cc:8b:61:df:2c:3f:d6:38:dd:38:85:
bb:08:1e:99:f6:e0:57:cd:90:6c:73:bb:31:bb:8f:ad:7a:ae:
02:c2:a7:a3:15:0e:53:d7:e9:ad:c4:e3:4f:69:5e:7d:3f:39:
37:46:a0:1c:a3:59:6f:d2:6a:21:50:ed:58:aa:e6:13:78:2f:
f9:a3:f8:58:cd:0d:ea:3b:9f:a8:03:94:2b:35:2f:38:b6:43:
eb:ef:d0:fe:7a:c0:af:66:d1:a4:b7:c2:72:50:ee:8d:cc:75:
21:ab:dc:10:61:de:e6:15:cd:3b:b8:d1:08:3d:69:f7:61:87:
7f:9b:31:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:23 2023 by rpki-client on console-ams.rpki-client.org