Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/571GMLMtof25yMrl6TX6cgLEsIU.roa
File: 571GMLMtof25yMrl6TX6cgLEsIU.roa (raw, json)
Hash identifier: 1bxhVmVmiopar3Auyxhp6taRu9cjfo3Mxijc0UQiSNA=
Subject key identifier: E7:BD:46:30:B3:2D:A1:FD:B9:C8:CA:E5:E9:35:FA:72:02:C4:B0:85
Certificate issuer: /CN=2cf022ce4dc81f03b3b30730a6c23eaf342ecc5e
Certificate serial: 018382A9795CBBE65BE8D9B24CD2C8C1EAE8
Authority key identifier: 2C:F0:22:CE:4D:C8:1F:03:B3:B3:07:30:A6:C2:3E:AF:34:2E:CC:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/571GMLMtof25yMrl6TX6cgLEsIU.roa
Signing time: Wed 28 Sep 2022 05:54:48 +0000
ROA not before: Wed 28 Sep 2022 05:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47472
IP address blocks: 195.242.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:82:a9:79:5c:bb:e6:5b:e8:d9:b2:4c:d2:c8:c1:ea:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cf022ce4dc81f03b3b30730a6c23eaf342ecc5e
Validity
Not Before: Sep 28 05:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7bd4630b32da1fdb9c8cae5e935fa7202c4b085
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:68:12:5f:61:0c:5a:79:38:c1:dc:6e:bc:95:
91:5c:01:98:13:e7:b3:ed:3d:01:86:0c:12:e7:73:
c5:69:1b:72:7c:32:7d:f3:78:29:e6:ff:e5:0b:a3:
a8:ba:4c:1d:3b:5d:c1:ee:4e:63:5b:78:41:3d:7b:
17:ee:a2:d3:00:60:0c:50:0c:ae:64:64:f4:68:cd:
82:c1:73:91:83:3d:f9:2e:32:69:34:7c:66:4d:e9:
ec:07:0e:ab:42:fe:82:76:d2:e8:d1:7e:e5:ff:bf:
a8:f5:35:28:0c:af:65:2a:e7:2a:3a:09:26:43:18:
f1:c9:be:79:3a:df:74:d2:b5:e7:15:97:2a:72:25:
4d:45:5b:a7:c5:9f:36:64:cf:35:59:e6:69:34:8e:
6b:e5:03:3d:38:39:49:2d:4f:ee:71:29:7c:f2:78:
2d:08:fd:54:f7:e9:e9:7d:f1:c6:5b:86:a6:c2:35:
c5:1b:97:2c:78:23:2f:f3:96:83:a6:71:73:da:fd:
ba:22:db:08:fb:43:aa:0b:8d:4d:7f:f4:d2:3d:a5:
e9:41:31:dd:f6:14:bc:34:cd:73:9c:d2:82:6c:4b:
66:9a:d7:f5:13:b1:50:19:e0:0f:4a:b6:72:6b:4b:
c2:c1:a3:58:f4:51:03:5a:26:97:5d:1d:c5:23:17:
09:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BD:46:30:B3:2D:A1:FD:B9:C8:CA:E5:E9:35:FA:72:02:C4:B0:85
X509v3 Authority Key Identifier:
keyid:2C:F0:22:CE:4D:C8:1F:03:B3:B3:07:30:A6:C2:3E:AF:34:2E:CC:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LPAizk3IHwOzswcwpsI-rzQuzF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/571GMLMtof25yMrl6TX6cgLEsIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/9307f6-1458-432f-9915-ca4ed8097970/1/LPAizk3IHwOzswcwpsI-rzQuzF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.180.0/24
Signature Algorithm: sha256WithRSAEncryption
63:4c:9d:35:e0:9e:91:37:c1:6d:bb:b4:ca:2e:ca:ab:a4:87:
ea:7a:4b:ed:53:0a:de:03:79:15:a9:68:12:98:f0:cb:ce:d9:
b2:98:f6:04:74:ee:df:18:63:21:6b:3d:76:8c:fa:86:a2:32:
75:49:d2:b5:72:74:97:72:5a:af:d0:48:2d:84:58:23:e0:37:
b9:03:c3:f5:1f:7d:b1:c1:fc:85:70:00:c3:e9:ed:f0:fb:07:
39:57:c9:e5:c8:6a:90:be:f2:65:c7:bd:41:fe:48:d0:9c:dd:
86:f7:62:0f:7c:26:da:4f:ca:53:89:8a:c6:a2:19:d6:35:87:
20:64:f0:c2:8a:1c:65:28:d4:df:58:b2:cd:7c:7b:19:8c:49:
27:e3:20:6b:ab:c1:79:32:b5:e7:46:1f:12:9e:30:16:d8:6a:
a3:dd:0f:9a:32:65:55:9c:a1:5f:44:d4:6d:ae:7f:aa:63:81:
31:62:a1:89:3f:92:34:c5:2b:8a:50:5a:2b:93:ed:11:b3:da:
3f:b7:e5:cc:5c:11:38:1a:83:af:90:8f:9d:fe:ee:7a:8d:ca:
59:cd:dc:f9:39:d1:21:cf:d1:84:9f:6f:7f:5b:a2:74:e9:99:
e8:ef:80:a5:dc:60:b2:4a:fa:0b:ac:77:6a:3b:4a:22:cc:8e:
97:30:fb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:12 2024 by rpki-client on console-fra.rpki-client.org