Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/EHZXNm7ZKrEkWpfR_RQFRjiR9oA.roa
File: EHZXNm7ZKrEkWpfR_RQFRjiR9oA.roa (raw, json)
Hash identifier: 4Wh3W6bA096oA0lBMwFukAgAVxvQk/MTZLt7Hy8L6r0=
Subject key identifier: 10:76:57:36:6E:D9:2A:B1:24:5A:97:D1:FD:14:05:46:38:91:F6:80
Certificate issuer: /CN=e45b9daeaa034255ea33114f58b88c1c3e3c7caf
Certificate serial: 010F6C
Authority key identifier: E4:5B:9D:AE:AA:03:42:55:EA:33:11:4F:58:B8:8C:1C:3E:3C:7C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5FudrqoDQlXqMxFPWLiMHD48fK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/EHZXNm7ZKrEkWpfR_RQFRjiR9oA.roa
Signing time: Wed 23 Mar 2022 12:35:06 +0000
ROA not before: Wed 23 Mar 2022 12:35:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41632
IP address blocks: 195.138.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69484 (0x10f6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e45b9daeaa034255ea33114f58b88c1c3e3c7caf
Validity
Not Before: Mar 23 12:35:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=107657366ed92ab1245a97d1fd1405463891f680
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a5:26:ff:75:1c:0b:20:cf:3d:eb:a4:dd:f1:
38:a8:d4:26:50:eb:c5:09:d2:98:3f:cd:54:b5:e3:
99:95:b1:db:50:40:81:6f:92:cb:23:5e:06:01:8d:
d8:55:38:d4:c1:17:95:42:aa:f5:0c:28:cd:8f:a8:
24:5a:3a:81:1e:84:d6:80:35:ef:0c:be:71:79:38:
5d:a2:ad:45:de:fd:c5:78:47:39:a9:62:6f:8b:7b:
44:42:72:e2:92:0a:ff:f5:05:d4:6c:15:05:3b:64:
b2:87:20:55:14:92:37:52:df:ea:3e:fc:e4:e0:f5:
b2:a2:ec:53:64:10:29:8f:0f:48:4f:21:33:68:37:
ee:20:2b:84:7d:b8:0e:aa:e8:24:d4:6d:00:2e:7b:
81:51:43:38:c3:75:a1:d2:a4:3f:75:13:d1:2b:01:
41:a4:15:1d:cb:df:14:ff:22:ff:d0:e9:fb:fe:81:
47:49:92:b7:6a:ca:61:eb:df:67:c6:3f:02:89:3a:
42:f6:b2:6e:4e:d9:d1:16:b2:8c:14:9e:f9:8e:c9:
91:a8:b4:5e:71:9d:4a:14:a3:35:c2:8f:c5:dc:d0:
4d:42:08:9f:6c:11:14:f7:12:00:0d:2f:cb:bb:36:
28:bb:c5:c9:04:3a:ff:75:a4:ac:86:5f:c3:33:6a:
74:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:76:57:36:6E:D9:2A:B1:24:5A:97:D1:FD:14:05:46:38:91:F6:80
X509v3 Authority Key Identifier:
keyid:E4:5B:9D:AE:AA:03:42:55:EA:33:11:4F:58:B8:8C:1C:3E:3C:7C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5FudrqoDQlXqMxFPWLiMHD48fK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/EHZXNm7ZKrEkWpfR_RQFRjiR9oA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/4d6b88-20c6-4c42-8799-4b917592357c/1/5FudrqoDQlXqMxFPWLiMHD48fK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.138.215.0/24
Signature Algorithm: sha256WithRSAEncryption
69:77:1e:06:60:61:01:fd:4e:c2:24:c0:46:b8:33:b3:a3:b1:
49:dd:10:ad:27:b8:1b:d4:38:12:e6:af:cd:91:61:32:9b:6b:
9b:7c:7d:a6:b8:bf:7f:74:95:47:0f:52:68:1d:07:d2:0d:fb:
d7:46:3b:ee:98:3e:cf:44:de:7b:24:25:58:fd:8c:62:a5:f0:
41:da:f7:db:05:95:62:6b:43:37:ea:52:db:36:8e:08:ed:77:
84:c6:a9:d2:eb:03:30:4e:eb:32:b9:b1:c4:ac:e9:e9:47:17:
1e:1b:ca:35:96:20:99:25:67:56:e4:08:c7:be:b3:a2:16:97:
1e:df:39:18:0e:ea:aa:5c:77:be:11:41:95:72:fc:38:7d:c9:
06:71:67:53:df:2f:63:6c:69:72:b6:20:40:e3:bf:f3:cc:23:
5e:55:40:0c:32:7c:68:d4:cc:64:ae:3f:06:27:bf:3d:a3:24:
c5:5e:33:45:f9:97:de:12:28:32:bd:18:fd:83:7f:96:7f:68:
84:4e:41:7f:22:d6:5b:67:2d:cd:39:4d:5a:02:ac:7c:9a:40:
2c:e7:50:2a:ac:c8:5e:45:ca:c0:9c:16:f6:61:4b:81:ea:8f:
1d:6b:14:d1:c4:0b:ee:43:2d:1f:04:08:d3:c2:8a:34:68:f2:
5b:ad:e9:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:00 2023 by rpki-client on console-ams.rpki-client.org