Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/7PzxgAtTqtSHK65seDF5cvXlm8U.roa
File: 7PzxgAtTqtSHK65seDF5cvXlm8U.roa (raw, json)
Hash identifier: 2vGDqwwANd4y6Wvjvu8xTdrGVXbQICxsyuA3FHesk0I=
Subject key identifier: EC:FC:F1:80:0B:53:AA:D4:87:2B:AE:6C:78:31:79:72:F5:E5:9B:C5
Certificate issuer: /CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Certificate serial: 8EE8F4
Authority key identifier: 2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/7PzxgAtTqtSHK65seDF5cvXlm8U.roa
Signing time: Mon 21 Feb 2022 10:11:36 +0000
ROA not before: Mon 21 Feb 2022 10:11:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 195.95.204.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9365748 (0x8ee8f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e82963ff1aa70ab10d1d33e86b1d6d494d6ce51
Validity
Not Before: Feb 21 10:11:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecfcf1800b53aad4872bae6c78317972f5e59bc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:43:90:3f:2b:ac:87:9f:ed:9a:c2:e4:a3:ed:
45:fa:8e:41:77:e2:17:30:ee:cf:28:97:5a:cb:63:
07:b6:0c:92:32:0e:83:ae:ce:dc:21:67:b1:fd:0d:
35:ea:10:49:25:e2:5f:b1:2e:39:7e:e5:61:f2:4e:
f9:8d:81:5d:16:b0:71:af:99:e4:fe:0b:2b:cb:17:
f1:bd:d0:68:2e:a9:04:46:1f:84:41:78:57:4e:7a:
e7:e1:64:a0:8e:e1:8a:9a:1c:cc:1c:5c:0e:06:65:
91:11:4f:24:d7:ef:5b:88:c0:3c:5b:33:64:5c:fc:
da:7d:f6:9f:a6:67:30:fe:3f:f5:7d:ce:3f:cf:30:
ba:9a:43:70:a4:16:fb:f4:78:ad:91:36:01:e7:cb:
34:38:49:63:5b:7d:53:c5:f7:d6:1e:76:0d:b8:84:
1b:5a:f3:bb:47:fc:fc:d9:64:05:ae:c0:7b:5a:d0:
73:af:04:17:7f:49:22:cd:04:fb:0e:8c:37:fb:4d:
db:f3:9d:07:64:58:4d:35:5c:a0:8c:6e:52:4a:33:
b3:83:d3:dd:ee:91:8b:e2:7b:b0:37:76:48:77:98:
b1:98:44:49:25:e9:7f:f5:7b:3e:22:dc:db:50:88:
a6:48:2a:b7:20:df:7a:76:bf:0b:61:d2:45:d5:28:
0f:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FC:F1:80:0B:53:AA:D4:87:2B:AE:6C:78:31:79:72:F5:E5:9B:C5
X509v3 Authority Key Identifier:
keyid:2E:82:96:3F:F1:AA:70:AB:10:D1:D3:3E:86:B1:D6:D4:94:D6:CE:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/7PzxgAtTqtSHK65seDF5cvXlm8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/957c68-6f27-40ed-abed-df64f0e82360/1/LoKWP_GqcKsQ0dM-hrHW1JTWzlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.95.204.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:60:a7:30:21:4b:d1:a7:a8:1e:20:26:9c:85:b4:55:25:46:
b3:f8:e5:02:5e:7a:91:6c:03:12:0a:1f:26:6f:cb:b9:55:6b:
53:d4:7b:21:de:20:04:b6:96:81:cf:35:8c:26:d6:34:ab:0f:
6d:5f:de:29:dc:d4:39:7e:ed:82:b5:f8:88:32:74:ff:42:f8:
1b:9e:a7:c2:8b:87:31:59:d1:0e:25:e2:76:65:b9:69:6a:fa:
26:37:25:36:24:1f:04:07:6e:31:fb:d6:a4:7c:22:2c:c2:90:
ed:08:4c:5f:ad:fa:42:9f:85:0d:50:07:4e:57:19:cc:13:63:
98:c8:59:ac:1c:e1:87:e0:71:ff:02:1c:cb:d3:a1:03:f1:0e:
81:8c:f4:db:e7:cf:7f:b3:2c:b3:96:ff:62:0c:f0:ab:0d:75:
ff:88:ca:d5:fb:e3:89:81:12:37:9b:6a:0d:3b:0d:44:db:e8:
fd:a1:f2:6f:bd:0d:39:8b:0a:21:f1:8b:f6:1c:99:dd:cb:28:
d5:aa:40:2a:fd:8b:5a:ba:c0:ee:81:dd:51:42:95:1e:a4:d6:
cc:50:6b:39:bd:6d:13:29:e1:e3:4a:96:1e:f9:b0:65:7e:84:
30:aa:f5:90:8b:eb:fa:ca:d9:11:fb:ef:6f:97:72:08:99:29:
d7:12:e4:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:30 2023 by rpki-client on console-ams.rpki-client.org