Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/dFM1TNDjHZSBec2mJM43MCml7fs.roa
File: dFM1TNDjHZSBec2mJM43MCml7fs.roa (raw, json)
Hash identifier: eAbhQgGUUMLnommaYY611VIY/kiSW7S1y8UlrP4e9Lg=
Subject key identifier: 74:53:35:4C:D0:E3:1D:94:81:79:CD:A6:24:CE:37:30:29:A5:ED:FB
Certificate issuer: /CN=f416539e74934d23a0572f6625dbfdb54e820873
Certificate serial: 308BA7F8
Authority key identifier: F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/dFM1TNDjHZSBec2mJM43MCml7fs.roa
Signing time: Sat 01 Jan 2022 14:04:58 +0000
ROA not before: Sat 01 Jan 2022 14:04:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56782
IP address blocks: 95.107.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 814458872 (0x308ba7f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f416539e74934d23a0572f6625dbfdb54e820873
Validity
Not Before: Jan 1 14:04:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7453354cd0e31d948179cda624ce373029a5edfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:1f:27:7c:f4:d1:07:2c:6b:80:35:ad:bb:4e:
d6:fa:f6:76:8a:5c:58:ab:fb:54:7c:41:52:bf:21:
bb:bf:6e:6e:41:06:38:70:a8:f0:71:bc:69:73:50:
ca:6e:c7:64:a4:21:98:c1:fa:c8:3b:cc:a5:25:8f:
2d:85:33:84:e9:30:19:5c:f2:9d:d7:9a:85:83:6d:
a5:55:a9:f7:3e:aa:52:70:3d:0a:24:9b:49:13:d8:
ef:29:76:d7:c7:04:ee:d1:69:41:89:88:2a:4e:4e:
16:35:cc:5a:a4:e0:d2:b1:56:f9:83:c1:e3:01:ca:
43:eb:58:2e:e9:20:cb:5e:fa:a9:c7:1b:0c:3d:af:
56:d8:eb:65:10:66:0d:72:1e:14:50:94:5e:05:25:
91:e5:9e:9e:7e:e9:c9:b2:34:e4:f2:bd:03:22:64:
78:62:5e:60:a2:f7:85:9c:05:f3:b9:f1:d6:d2:d6:
16:be:0c:be:e5:19:e8:25:28:8e:b4:19:ea:02:1e:
16:f5:9c:cb:9d:f8:55:98:29:42:b7:9e:66:32:70:
c7:6d:c2:53:c8:a9:eb:e0:a7:34:fe:c8:ed:2f:33:
a7:e8:1a:92:78:f2:55:e9:4d:4b:23:76:aa:24:7a:
23:ca:a9:d2:df:c0:f0:95:13:78:de:1d:0e:bb:ff:
58:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:53:35:4C:D0:E3:1D:94:81:79:CD:A6:24:CE:37:30:29:A5:ED:FB
X509v3 Authority Key Identifier:
keyid:F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/dFM1TNDjHZSBec2mJM43MCml7fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/9BZTnnSTTSOgVy9mJdv9tU6CCHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.107.175.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:4d:51:92:a3:02:cc:51:52:3b:d6:16:ee:67:04:89:fd:33:
13:13:1f:a0:f6:37:14:76:4f:55:e7:13:de:6e:0d:cf:1d:4f:
ec:f3:cb:85:6e:31:fd:27:cb:4d:3e:dc:e0:7c:fe:26:1c:f0:
25:84:6a:08:6d:e6:01:29:be:45:7e:d8:29:ad:ac:2f:87:72:
f0:a0:18:cd:ad:87:0e:ec:ef:ac:ca:f3:1b:00:e6:52:69:df:
7c:cd:37:b8:58:fc:e5:37:e8:2b:14:fe:fd:e1:33:e9:b9:fb:
c7:be:d8:a3:92:86:72:3b:04:29:11:02:59:65:01:7d:71:e9:
31:7f:7f:3c:ff:27:09:2d:92:ea:04:ba:96:ca:db:48:0e:8f:
e7:27:21:c1:51:1e:a8:af:a0:60:91:93:ed:2c:b7:19:61:e5:
c3:86:6c:88:2a:e4:43:06:5d:4f:eb:68:8a:d2:bc:cc:8f:00:
c2:9f:40:51:4a:f4:86:35:95:a5:ae:a1:b1:fd:c8:55:b1:43:
f6:c3:d0:f8:a0:04:26:0e:42:9d:47:9d:33:17:ff:eb:87:6c:
5c:12:3d:ef:45:6b:14:de:48:85:a8:24:eb:14:89:f3:7e:da:
94:42:3c:3b:68:74:3e:23:5a:19:c3:1b:44:1b:72:07:7b:68:
a2:75:f4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:29 2023 by rpki-client on console-fra.rpki-client.org