Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/30b2aa-2467-4a62-b123-23fffae2cfc5/1/vT9EZwEANUS4hNgo1iTGQuCiDJM.roa
File: vT9EZwEANUS4hNgo1iTGQuCiDJM.roa (raw, json)
Hash identifier: ysng36d3oOVX599HuIrRgpBYVfieTjaKoie/Az0Q2Ic=
Subject key identifier: BD:3F:44:67:01:00:35:44:B8:84:D8:28:D6:24:C6:42:E0:A2:0C:93
Certificate issuer: /CN=7dbccd4a9b22e2995f6fca554cfd494e421e565e
Certificate serial: 81191D
Authority key identifier: 7D:BC:CD:4A:9B:22:E2:99:5F:6F:CA:55:4C:FD:49:4E:42:1E:56:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fbzNSpsi4plfb8pVTP1JTkIeVl4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/30b2aa-2467-4a62-b123-23fffae2cfc5/1/vT9EZwEANUS4hNgo1iTGQuCiDJM.roa
Signing time: Sat 01 Jan 2022 00:55:44 +0000
ROA not before: Sat 01 Jan 2022 00:55:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24940
IP address blocks: 195.96.156.0/24 maxlen: 24
2a12:e00::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8460573 (0x81191d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dbccd4a9b22e2995f6fca554cfd494e421e565e
Validity
Not Before: Jan 1 00:55:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd3f446701003544b884d828d624c642e0a20c93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:72:7f:65:40:38:ac:97:bc:c2:d0:1a:39:11:
7f:0f:7c:72:51:e6:1a:aa:a8:81:17:88:d0:7b:ae:
1e:41:ea:62:65:af:22:91:c6:75:b4:24:ed:7e:f9:
43:07:9c:95:d5:06:f6:18:28:99:09:ca:43:65:e7:
b8:22:2e:af:ac:35:89:d1:9b:b7:25:c5:6b:0b:6a:
b7:f6:e0:62:28:a7:80:cd:66:24:f3:83:47:ba:a5:
a3:61:c8:d5:46:33:ca:4a:09:df:28:54:21:40:35:
0b:e0:09:46:4b:01:a4:39:b7:50:8f:a9:ef:ce:39:
01:8f:f0:f8:f3:bd:33:cf:81:74:b8:6c:1e:8b:86:
99:cf:20:d0:b8:66:84:34:a6:a7:e6:67:fc:bc:c4:
68:9a:75:7f:30:e5:04:85:4a:b8:d6:2f:11:aa:2d:
a6:81:40:17:77:64:d3:6b:66:73:4a:1a:a9:68:6f:
5b:3c:4f:38:4c:c7:2c:a9:84:53:ac:66:e9:7f:11:
d2:c4:d5:2c:97:4f:ab:66:a5:1b:68:cc:cc:24:2a:
ae:34:a7:ca:bd:58:e8:f9:b8:8f:82:26:4f:6f:d4:
9c:84:fa:d9:1d:06:1e:7f:77:4b:ce:5d:c4:44:94:
97:5b:d0:98:b3:e5:98:ca:8f:79:ea:ce:9b:50:e2:
4b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:3F:44:67:01:00:35:44:B8:84:D8:28:D6:24:C6:42:E0:A2:0C:93
X509v3 Authority Key Identifier:
keyid:7D:BC:CD:4A:9B:22:E2:99:5F:6F:CA:55:4C:FD:49:4E:42:1E:56:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fbzNSpsi4plfb8pVTP1JTkIeVl4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/30b2aa-2467-4a62-b123-23fffae2cfc5/1/vT9EZwEANUS4hNgo1iTGQuCiDJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/30b2aa-2467-4a62-b123-23fffae2cfc5/1/fbzNSpsi4plfb8pVTP1JTkIeVl4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.156.0/24
IPv6:
2a12:e00::/29
Signature Algorithm: sha256WithRSAEncryption
2c:53:57:d5:d1:0d:13:3d:ea:38:46:bf:75:f4:07:32:ff:40:
1c:e9:c1:e7:24:9c:5b:c9:69:42:d0:53:e4:cb:da:5a:bf:e8:
8a:54:19:4f:ba:93:b1:bc:20:7b:45:4c:47:02:7e:67:56:b1:
ea:47:02:65:00:42:c6:f1:27:62:b3:74:a9:f3:33:80:c0:63:
22:6e:90:e8:4c:06:fb:0b:fd:3b:4d:9f:40:83:c1:42:50:9b:
7b:32:f0:8c:23:ca:e6:40:ce:d2:10:14:f6:d7:42:47:26:12:
7a:48:af:98:bc:0c:7f:35:71:df:f2:25:41:23:e3:06:1d:16:
33:46:d0:f0:6a:0f:9a:d2:59:ab:64:09:05:97:7c:6c:9b:11:
0f:fd:3a:97:ff:9b:c7:b9:e5:17:22:d9:61:e8:92:26:65:f2:
c0:3a:b4:74:09:44:15:a3:bb:d4:4c:bb:9a:ca:18:86:b0:b8:
7e:23:1b:f2:58:68:d0:64:99:c3:c7:1f:0f:b6:2b:c1:bc:b9:
ef:a5:fa:b5:e3:7a:06:02:9a:ef:cb:f7:5b:c2:77:52:a1:12:
ff:21:4e:28:9b:13:9d:99:59:03:61:33:32:d6:55:48:e1:12:
12:b8:6e:84:cd:71:35:85:b8:75:b5:e1:0e:de:ad:32:f0:0e:
3d:9d:61:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-ams.rpki-client.org