Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/f090be-422b-4f2a-864f-9fca29decda8/1/7yJL9b7APrGpFQO_IFh1xP4wujw.roa
File: 7yJL9b7APrGpFQO_IFh1xP4wujw.roa (raw, json)
Hash identifier: b9Vyv8yx+d/aAt5q0BBSvdvJtUia4RnsRDhQsu+te+c=
Subject key identifier: EF:22:4B:F5:BE:C0:3E:B1:A9:15:03:BF:20:58:75:C4:FE:30:BA:3C
Certificate issuer: /CN=ae0327bf1e7b7bfbdd2f214c8ef629aa29e4d66f
Certificate serial: 0785A02B
Authority key identifier: AE:03:27:BF:1E:7B:7B:FB:DD:2F:21:4C:8E:F6:29:AA:29:E4:D6:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rgMnvx57e_vdLyFMjvYpqink1m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/f090be-422b-4f2a-864f-9fca29decda8/1/7yJL9b7APrGpFQO_IFh1xP4wujw.roa
Signing time: Sat 01 Jan 2022 00:57:33 +0000
ROA not before: Sat 01 Jan 2022 00:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50402
IP address blocks: 195.47.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126197803 (0x785a02b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae0327bf1e7b7bfbdd2f214c8ef629aa29e4d66f
Validity
Not Before: Jan 1 00:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef224bf5bec03eb1a91503bf205875c4fe30ba3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:65:72:de:fa:fc:6b:b7:be:93:72:37:aa:f8:
3a:a8:9f:00:de:9c:65:cb:35:6a:72:c0:1f:95:d8:
04:2e:ea:da:4f:bc:5b:3b:2b:4c:14:65:c3:3e:03:
9c:cd:e0:25:d3:92:72:98:50:e8:ad:57:54:ed:a6:
c7:35:0c:49:1d:e7:a8:d0:7a:73:3f:6f:01:8f:bc:
d9:1b:cc:42:e9:4c:e4:c5:68:70:5b:b7:86:01:12:
c8:eb:01:8e:2d:2a:35:9c:2f:ef:73:df:11:bb:dd:
6d:50:97:7b:c3:eb:e6:41:8b:80:39:86:15:e6:a1:
04:0d:ee:74:a5:5d:9b:04:e5:98:c0:0c:07:36:17:
cb:88:77:43:02:b2:1d:53:82:47:14:6e:63:c5:bc:
5c:4d:2e:0c:c4:60:d8:d2:8f:5e:41:3d:e0:3b:b4:
5d:b5:71:96:e1:84:51:a1:d8:64:2e:c4:df:6d:e2:
19:7f:e2:19:86:a1:1a:bb:bb:6d:bc:8a:cf:dc:e8:
21:1c:fe:2b:7c:e0:ce:c2:bd:9d:3e:5b:18:35:96:
c4:c1:fd:09:42:55:6d:49:49:ed:b3:4f:0a:41:dd:
68:97:15:52:a3:3a:93:58:af:27:e2:da:0a:6c:39:
b9:90:19:0d:55:21:4d:ac:63:46:c8:0f:49:fa:b4:
d3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:22:4B:F5:BE:C0:3E:B1:A9:15:03:BF:20:58:75:C4:FE:30:BA:3C
X509v3 Authority Key Identifier:
keyid:AE:03:27:BF:1E:7B:7B:FB:DD:2F:21:4C:8E:F6:29:AA:29:E4:D6:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rgMnvx57e_vdLyFMjvYpqink1m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f090be-422b-4f2a-864f-9fca29decda8/1/7yJL9b7APrGpFQO_IFh1xP4wujw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/f090be-422b-4f2a-864f-9fca29decda8/1/rgMnvx57e_vdLyFMjvYpqink1m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.47.214.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:b2:44:aa:df:f5:01:1a:b3:b8:cd:81:86:47:c9:c9:0b:0d:
6a:1e:92:35:eb:b2:11:e6:5b:1e:e7:13:09:1b:62:9a:dd:f8:
95:e9:c1:03:1d:a9:d6:b2:9d:22:76:67:a9:75:fe:a8:d3:e6:
76:84:d3:5d:d8:cc:2e:14:b5:61:ac:aa:4b:08:98:90:ae:9f:
78:1a:53:e5:fa:de:f6:88:0e:8a:21:5d:a6:60:e4:80:ff:03:
44:2b:27:73:43:53:65:c8:61:f2:0b:ae:f0:c1:e3:9b:39:51:
dc:a9:28:bf:15:35:3a:1d:e4:99:3c:39:9a:d7:db:3d:d3:f7:
84:ed:21:c2:f5:9d:e3:62:3f:5f:d2:a2:72:65:e4:4a:74:08:
b9:30:db:bb:87:29:bd:cd:95:52:21:4e:68:00:54:a7:8b:cc:
bd:08:a9:32:a3:57:88:26:a1:09:36:f4:b0:1f:a3:20:e5:25:
87:13:c5:6c:73:f8:4b:62:d8:b3:12:58:b4:40:61:13:29:31:
0e:cc:ee:0b:81:51:83:1e:07:53:c1:6c:e3:dc:b2:82:5c:07:
59:e4:67:67:65:4b:21:58:3f:cf:6f:60:0b:e6:8d:60:93:eb:
b8:39:c0:2e:9a:b6:e6:93:7e:76:46:54:bd:6d:8c:27:cd:bb:
c1:48:ec:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:51 2024 by rpki-client on console-fra.rpki-client.org