Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/5vbLHvt1nxfL_mGypwnIIcX40bw.roa
File: 5vbLHvt1nxfL_mGypwnIIcX40bw.roa (raw, json)
Hash identifier: HxTjlM4+GJKayOb07trBbfdhQ18/J6eHCgZBJp+U6hY=
Subject key identifier: E6:F6:CB:1E:FB:75:9F:17:CB:FE:61:B2:A7:09:C8:21:C5:F8:D1:BC
Certificate issuer: /CN=073cc18fc706df5a9933b0be20dccb04675bf474
Certificate serial: 03A2C7F6
Authority key identifier: 07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/5vbLHvt1nxfL_mGypwnIIcX40bw.roa
Signing time: Sat 01 Jan 2022 01:57:52 +0000
ROA not before: Sat 01 Jan 2022 01:57:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29686
IP address blocks: 195.43.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60999670 (0x3a2c7f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073cc18fc706df5a9933b0be20dccb04675bf474
Validity
Not Before: Jan 1 01:57:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6f6cb1efb759f17cbfe61b2a709c821c5f8d1bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:06:68:11:9f:d6:54:48:1e:b2:17:b0:12:5a:
a1:26:ad:f3:0e:9e:bf:97:1f:df:d2:8a:03:e4:53:
d0:45:c0:4a:4d:ac:95:e3:66:9e:0c:85:d3:7a:0e:
9b:8b:46:c0:db:b3:a6:bd:16:12:96:a3:05:4e:ef:
8b:5d:c9:42:2b:d6:70:f5:33:42:43:41:a8:15:c3:
b5:de:53:6b:1b:aa:db:1e:80:d0:b7:6f:c5:a0:ad:
37:de:63:cb:9f:bf:e4:09:a1:e1:7f:6a:e8:37:a0:
50:35:61:3c:4c:5c:74:e4:20:fc:7d:ad:dd:c1:99:
df:6e:1c:0f:38:2d:fb:26:3a:6a:c3:f4:b3:3c:c6:
6d:81:4a:f1:0d:e2:49:48:28:48:35:37:f3:a8:fe:
98:d9:2c:95:31:95:0e:2f:6c:42:95:8d:bd:6a:53:
27:df:c0:49:28:cd:f2:35:f3:64:e5:38:61:2d:a0:
82:a1:03:83:ab:c5:4e:1c:23:e5:c4:38:a0:3c:78:
fe:fe:ce:a3:06:79:77:28:d7:db:3c:1d:8c:78:15:
01:6c:75:e8:e7:84:ce:46:7a:30:8b:f7:00:92:91:
b5:bb:a6:bc:9d:7b:13:a5:48:4d:6d:15:d5:22:89:
be:94:44:f9:42:6b:87:8c:c8:f0:fe:2f:9c:86:27:
cf:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F6:CB:1E:FB:75:9F:17:CB:FE:61:B2:A7:09:C8:21:C5:F8:D1:BC
X509v3 Authority Key Identifier:
keyid:07:3C:C1:8F:C7:06:DF:5A:99:33:B0:BE:20:DC:CB:04:67:5B:F4:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BzzBj8cG31qZM7C-INzLBGdb9HQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/5vbLHvt1nxfL_mGypwnIIcX40bw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/433c47-bf3e-4728-8b93-b070ec34d4c1/1/BzzBj8cG31qZM7C-INzLBGdb9HQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.43.141.0/24
Signature Algorithm: sha256WithRSAEncryption
61:bd:9c:23:ef:8d:90:90:ba:6a:f2:f4:99:0c:c4:12:ae:d8:
a7:82:0e:92:f1:b6:a4:68:80:85:6a:ab:af:40:3f:bb:a3:50:
24:d8:a4:12:d2:0b:a3:e2:67:c9:8c:d2:5d:5f:96:56:47:a0:
8c:5c:45:f9:a3:ea:b3:ae:e9:89:ff:ca:c2:fb:7a:96:9e:b1:
06:44:3c:ec:6d:00:78:f6:5f:b1:bf:43:c9:bc:39:dc:2e:33:
2a:96:35:80:97:c8:9e:7f:ee:f2:47:2c:dd:c8:e3:b5:c7:ee:
9e:e2:77:f0:43:b9:1c:52:dd:ac:fe:0b:68:88:2b:3e:4d:df:
33:3a:c0:85:9e:87:d9:d2:f2:5e:6f:75:66:82:fe:a5:fb:d1:
b3:5f:81:cc:4e:d7:73:ba:d6:a2:6b:f2:9d:42:26:26:29:f0:
68:af:8c:07:19:a4:6e:5f:cb:be:37:d2:17:9c:3f:a8:8c:1d:
82:82:6b:86:01:d4:86:30:3b:ff:55:1c:99:05:73:c3:ea:f5:
49:f3:0c:87:e9:69:61:51:76:23:97:11:a9:ae:06:9d:7f:43:
4d:6e:2f:76:72:04:ae:8a:1b:29:c8:87:1f:b1:64:b9:9d:60:
e6:d4:87:c5:cf:d0:10:47:08:1c:e6:00:78:68:e9:99:35:9e:
78:a8:2c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:31 2024 by rpki-client on console-ams.rpki-client.org