Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/f4a5ba-cf81-419f-a2c0-b76112f0c771/1/l7YggNj4rkwXjTHwvqsfpA8WhMA.roa
File: l7YggNj4rkwXjTHwvqsfpA8WhMA.roa (raw, json)
Hash identifier: sZ8c1DP23A4fiMI872J8MJhYAD79ENLz84c7da55/PQ=
Subject key identifier: 97:B6:20:80:D8:F8:AE:4C:17:8D:31:F0:BE:AB:1F:A4:0F:16:84:C0
Certificate issuer: /CN=54334e53a20624ee7f0a0d88c1a9f0af05bf166e
Certificate serial: 01017546
Authority key identifier: 54:33:4E:53:A2:06:24:EE:7F:0A:0D:88:C1:A9:F0:AF:05:BF:16:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDNOU6IGJO5_Cg2IwanwrwW_Fm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/f4a5ba-cf81-419f-a2c0-b76112f0c771/1/l7YggNj4rkwXjTHwvqsfpA8WhMA.roa
Signing time: Mon 02 May 2022 11:45:04 +0000
ROA not before: Mon 02 May 2022 11:45:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 195.69.163.0/24 maxlen: 24
2a12:3e40::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16872774 (0x1017546)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54334e53a20624ee7f0a0d88c1a9f0af05bf166e
Validity
Not Before: May 2 11:45:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97b62080d8f8ae4c178d31f0beab1fa40f1684c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e2:f0:f2:d1:d1:d8:b4:bf:17:9f:3a:5c:22:
c3:c9:90:0f:1a:13:5f:db:01:b9:8e:f4:4d:2d:17:
a6:a3:4d:f3:e5:c7:84:b4:2d:3d:fc:a0:7b:cc:ec:
45:2a:2a:bb:c6:03:39:0a:0b:d3:81:e6:16:6b:ce:
86:1a:99:6b:26:9c:64:76:5b:63:48:12:e5:7e:3c:
28:a9:f3:a4:b8:40:1a:34:4e:da:73:a9:36:f4:86:
32:bb:df:03:d5:d5:19:53:07:bd:b4:66:01:f0:fd:
97:8f:25:43:ee:64:82:63:0a:38:e3:eb:54:93:70:
9f:9a:ec:ba:3c:8c:0b:4e:e6:6f:32:50:c8:22:98:
40:52:5b:00:87:b7:60:e0:a5:b1:56:77:d0:37:20:
aa:08:8d:00:38:50:25:14:8a:3b:0f:6e:82:80:09:
e4:45:8e:1e:d7:d6:e9:5a:4b:46:25:e7:4c:27:81:
27:dd:db:2f:d3:c5:b9:cf:ca:99:6b:67:ad:5a:6b:
e2:1f:1e:29:2c:08:3f:b5:2c:3e:a6:52:59:36:f6:
f9:77:d4:d0:af:6a:30:fa:45:08:84:92:07:a3:65:
a0:c7:e5:b2:d0:15:00:a9:bb:42:d0:f5:f5:7b:68:
cd:09:7e:70:da:83:ed:2c:db:f2:df:cf:ad:bd:a9:
18:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B6:20:80:D8:F8:AE:4C:17:8D:31:F0:BE:AB:1F:A4:0F:16:84:C0
X509v3 Authority Key Identifier:
keyid:54:33:4E:53:A2:06:24:EE:7F:0A:0D:88:C1:A9:F0:AF:05:BF:16:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDNOU6IGJO5_Cg2IwanwrwW_Fm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f4a5ba-cf81-419f-a2c0-b76112f0c771/1/l7YggNj4rkwXjTHwvqsfpA8WhMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/f4a5ba-cf81-419f-a2c0-b76112f0c771/1/VDNOU6IGJO5_Cg2IwanwrwW_Fm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.69.163.0/24
IPv6:
2a12:3e40::/44
Signature Algorithm: sha256WithRSAEncryption
95:c0:56:2e:c6:8b:2f:36:03:3a:60:ee:6b:6f:6b:76:f5:c9:
65:0a:a2:f7:b9:b1:93:41:49:e1:0c:2c:4b:50:cc:3e:e7:39:
c8:bb:76:d0:1a:96:80:e8:fc:7c:e1:a0:ff:d1:18:a5:29:d4:
6c:62:7b:3f:69:cf:c8:12:77:80:9f:f1:40:36:e7:e7:12:9e:
90:0e:db:6f:d2:e5:bd:96:a1:db:5d:63:b4:d8:91:4f:53:e0:
60:15:17:4d:18:f5:4c:af:c5:c6:0b:e0:ea:a2:3f:56:5e:9a:
37:cf:2f:11:13:92:3c:8b:ac:96:bc:70:3d:cd:d7:1f:e9:cf:
83:43:c7:05:ff:5f:f3:6a:35:01:f8:a8:b6:83:4f:4c:f9:ab:
c4:13:bf:94:e8:59:3a:98:cc:ba:26:13:bb:e4:e4:95:4f:22:
f3:57:4e:ff:8c:2b:56:e9:1b:6a:9c:b1:ad:0e:42:3c:11:b2:
52:7e:aa:88:fb:e2:94:2b:ef:9b:c8:8c:df:59:f7:7c:48:af:
84:c6:fe:2b:15:78:de:56:73:f3:a5:2c:d4:39:79:bc:ae:5d:
6d:63:b2:85:70:05:b1:55:db:d9:4f:4e:a2:c4:aa:de:3d:dd:
5a:a4:39:0f:a6:28:15:ed:60:07:96:b2:1e:ef:d3:c8:ce:bd:
14:1d:5b:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org