Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/5ccfu6FpcTaqBkKj8W1y8kcjQu8.roa
File: 5ccfu6FpcTaqBkKj8W1y8kcjQu8.roa (raw, json)
Hash identifier: XLuuYPW696I2VxUSnnqR5pws8wgvWzEVUUUmsNr+q9w=
Subject key identifier: E5:C7:1F:BB:A1:69:71:36:AA:06:42:A3:F1:6D:72:F2:47:23:42:EF
Certificate issuer: /CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Certificate serial: 01821F8A270731A196957BFF0B349E239EE3
Authority key identifier: 7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/5ccfu6FpcTaqBkKj8W1y8kcjQu8.roa
Signing time: Thu 21 Jul 2022 06:55:23 +0000
ROA not before: Thu 21 Jul 2022 06:55:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 195.64.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:8a:27:07:31:a1:96:95:7b:ff:0b:34:9e:23:9e:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cf589a31174b884a64fd091ad5c2cba5545bbdc
Validity
Not Before: Jul 21 06:55:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5c71fbba1697136aa0642a3f16d72f2472342ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:8b:78:bd:24:9b:f7:e1:cb:61:ea:28:25:8e:
48:e7:95:ad:7d:7c:9c:6f:54:63:02:4b:6d:30:83:
3f:2c:f4:b1:81:6d:87:b3:e8:65:3f:11:ac:23:f0:
69:85:3d:0f:77:ae:15:00:33:47:15:17:94:cb:39:
74:40:8f:40:21:65:c1:08:ca:4b:73:78:77:32:c9:
0f:d9:a1:10:d5:b1:89:65:31:5d:17:76:1c:c2:e3:
7b:7e:80:eb:b1:c8:61:0c:47:9e:24:f7:f1:91:58:
56:ee:c5:8a:28:89:22:ab:86:d4:af:0c:fc:3b:41:
16:65:57:f9:d4:0a:dd:dd:1f:00:54:e1:67:1e:6a:
c0:1e:62:8a:75:82:f1:d6:3f:cb:af:16:88:f7:89:
78:95:30:ee:1c:1b:d6:e5:1d:c0:29:39:05:84:c1:
38:c1:1b:7d:68:6c:c7:36:b2:7c:7a:c5:1a:d3:7e:
e1:64:3c:a8:2e:2f:67:0a:29:c6:07:8d:c0:22:55:
22:c6:44:e7:4a:0b:51:80:ea:5a:3b:f9:42:5b:16:
cc:50:c4:8d:82:f7:97:15:70:42:9c:c1:7b:a9:9f:
4c:3a:6b:cf:e5:4a:b1:3b:74:5c:1b:26:56:c5:8b:
cd:1e:72:2b:d9:3b:5d:44:43:0a:5c:b3:26:02:2b:
2f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:C7:1F:BB:A1:69:71:36:AA:06:42:A3:F1:6D:72:F2:47:23:42:EF
X509v3 Authority Key Identifier:
keyid:7C:F5:89:A3:11:74:B8:84:A6:4F:D0:91:AD:5C:2C:BA:55:45:BB:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fPWJoxF0uISmT9CRrVwsulVFu9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/5ccfu6FpcTaqBkKj8W1y8kcjQu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/c8d54b-e586-4595-93e2-868babc6dd32/1/fPWJoxF0uISmT9CRrVwsulVFu9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.64.125.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ed:64:be:8e:85:be:51:d0:15:4a:d6:76:94:13:a6:9d:ed:
23:3d:6d:3a:98:9c:83:0b:3c:0c:6d:48:0e:1f:01:50:0b:ea:
e2:b7:fd:b2:0d:17:43:22:21:cb:fc:a5:7d:68:b7:d3:49:47:
85:f7:ac:0b:b8:84:8f:ea:04:e5:3e:3c:1d:52:2b:d7:08:40:
9b:62:bf:ba:14:57:c7:50:91:8a:f4:bd:b5:7a:eb:d7:e4:10:
72:b2:da:9a:0c:a5:52:6a:94:92:76:4e:d2:88:2b:11:5e:b5:
cb:0f:f5:4c:64:d2:0a:ef:d9:09:8c:94:e9:85:be:5e:bd:45:
49:67:50:8b:1a:7f:00:ea:63:ad:e0:fb:46:99:6c:ad:d8:72:
ce:d3:43:63:27:b5:eb:4b:00:19:ec:3f:6e:c6:bf:fd:9c:27:
83:ec:a3:cd:14:20:f3:d6:26:f4:20:79:65:73:30:57:b3:4c:
83:ce:42:de:92:c1:7e:ab:cd:c3:57:c3:b4:3f:00:43:12:0e:
c5:11:4a:74:81:dd:ed:d4:f9:34:fd:0a:3c:3c:4d:d8:b1:c9:
ed:c6:08:2c:db:4c:d9:fc:6f:83:2f:eb:4f:e4:54:66:0f:f7:
2d:9e:68:33:b2:ae:99:37:48:3e:d3:34:cf:3f:ab:de:46:dc:
16:ce:c1:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org