Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/791640-c1ef-466a-96ae-0b07204bfb33/1/Vxoi8ujuFENmdV29iFiQ3LJ724Y.roa
File: Vxoi8ujuFENmdV29iFiQ3LJ724Y.roa (raw, json)
Hash identifier: cvYMCH/exDO8iOKBGJh/Wnx/iPvS7deVVlTxKMpX5Ks=
Subject key identifier: 57:1A:22:F2:E8:EE:14:43:66:75:5D:BD:88:58:90:DC:B2:7B:DB:86
Certificate issuer: /CN=dfb543d0fc797d172aaa9c3d77f943265b3989ad
Certificate serial: 06C22167
Authority key identifier: DF:B5:43:D0:FC:79:7D:17:2A:AA:9C:3D:77:F9:43:26:5B:39:89:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/37VD0Px5fRcqqpw9d_lDJls5ia0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/791640-c1ef-466a-96ae-0b07204bfb33/1/Vxoi8ujuFENmdV29iFiQ3LJ724Y.roa
Signing time: Sat 01 Jan 2022 15:05:21 +0000
ROA not before: Sat 01 Jan 2022 15:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207788
IP address blocks: 195.47.212.0/24 maxlen: 24
195.47.210.0/24 maxlen: 24
195.43.159.0/24 maxlen: 24
195.47.216.0/24 maxlen: 24
2a0f:b6c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113385831 (0x6c22167)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfb543d0fc797d172aaa9c3d77f943265b3989ad
Validity
Not Before: Jan 1 15:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=571a22f2e8ee144366755dbd885890dcb27bdb86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:58:d3:bc:06:93:26:82:56:09:81:10:0f:a1:
4a:bc:44:73:79:a6:df:7b:d6:5a:35:39:4a:94:10:
92:6e:09:b3:60:f2:a0:14:89:0d:4b:61:a4:49:7b:
0d:c5:d2:67:83:f0:6c:a8:a5:d1:14:62:a9:ea:c1:
6c:e6:af:75:17:aa:7b:a2:57:0f:0c:11:85:1d:c9:
ba:76:34:6e:f1:6b:49:f9:22:ca:2a:10:32:f4:40:
36:4a:7d:23:67:00:45:ae:50:9d:15:66:a5:0e:73:
12:c8:45:4b:b0:8b:f0:83:43:98:1a:46:cc:7e:68:
98:74:e0:d0:d1:6c:91:dc:b7:db:0f:6d:1f:f1:48:
cf:d5:1b:f1:87:71:be:ac:bc:d0:3e:39:d2:91:0e:
be:5d:7d:06:89:34:08:a8:50:f3:a9:a7:38:5f:9a:
ef:0f:7c:6c:d0:40:e2:74:2b:c5:d9:33:71:6d:70:
a7:54:10:b5:54:81:74:81:13:f4:dd:4a:b9:f3:31:
4e:13:69:50:d9:31:c4:e5:ca:97:07:06:86:82:97:
97:98:2a:09:1d:0c:89:d6:f1:8e:a0:f6:3a:63:36:
48:dd:56:77:58:5c:13:fe:c8:3c:22:b0:d6:3a:55:
59:e9:ba:d4:5e:dd:26:61:98:c3:49:e0:6d:1f:6c:
53:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:1A:22:F2:E8:EE:14:43:66:75:5D:BD:88:58:90:DC:B2:7B:DB:86
X509v3 Authority Key Identifier:
keyid:DF:B5:43:D0:FC:79:7D:17:2A:AA:9C:3D:77:F9:43:26:5B:39:89:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/37VD0Px5fRcqqpw9d_lDJls5ia0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/791640-c1ef-466a-96ae-0b07204bfb33/1/Vxoi8ujuFENmdV29iFiQ3LJ724Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/791640-c1ef-466a-96ae-0b07204bfb33/1/37VD0Px5fRcqqpw9d_lDJls5ia0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.159.0/24
195.47.210.0/24
195.47.212.0/24
195.47.216.0/24
IPv6:
2a0f:b6c0::/29
Signature Algorithm: sha256WithRSAEncryption
74:ba:4d:0c:30:7d:3f:80:bf:ba:1c:af:10:16:11:61:14:71:
77:27:48:0f:5f:1d:8f:22:26:dc:ac:a3:81:04:f3:12:f5:f7:
3b:71:dc:e5:fb:6e:1c:66:ae:94:c2:55:c5:d4:b3:75:1c:c7:
ed:5b:d9:d8:aa:ce:6e:5d:88:ed:32:a2:60:17:bb:38:ac:8e:
3c:3e:7a:93:f3:66:96:8c:84:4a:49:61:67:32:40:15:50:87:
fc:7a:9d:2b:41:da:82:d5:0b:c9:04:6a:17:f9:7d:66:3d:0a:
88:7a:5f:c8:e8:8b:61:ec:69:c4:5d:bb:fd:20:ea:96:c9:2d:
2e:3a:87:a1:08:d1:20:6b:77:38:58:7a:7a:b0:37:a3:54:cf:
1a:96:69:cd:c7:92:5e:c4:4a:aa:db:8b:5a:31:bf:4d:33:fd:
20:42:b6:0b:09:8e:5a:d0:a5:5b:50:8b:3f:6d:a9:05:19:09:
90:7d:90:d2:1a:7a:ba:9f:0e:fc:45:df:d5:cb:b5:87:51:63:
7d:3b:80:9c:46:6c:a6:40:e9:df:91:1e:41:06:d0:de:3e:8f:
2c:33:5f:af:f8:f8:32:1d:38:a6:f0:49:e8:44:99:21:39:85:
ce:3a:49:51:31:8e:07:02:02:8a:91:3d:16:cb:e8:59:6d:b9:
66:92:9d:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:20 2023 by rpki-client on console-ams.rpki-client.org