Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/ad6c83-e5fd-4417-bff9-eb68efc4748b/1/XYlTfJ27g766ney99Djo5e9_pqQ.roa
File: XYlTfJ27g766ney99Djo5e9_pqQ.roa (raw, json)
Hash identifier: vYMd+wLkHiIib4fM61mv4x0GzWgMnasRgu0iKaKmOHk=
Subject key identifier: 5D:89:53:7C:9D:BB:83:BE:BA:9D:EC:BD:F4:38:E8:E5:EF:7F:A6:A4
Certificate issuer: /CN=ca37af095113dadd5bc51bdebbf0ad34d6eedb64
Certificate serial: 02FCCBFF
Authority key identifier: CA:37:AF:09:51:13:DA:DD:5B:C5:1B:DE:BB:F0:AD:34:D6:EE:DB:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjevCVET2t1bxRveu_CtNNbu22Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/ad6c83-e5fd-4417-bff9-eb68efc4748b/1/XYlTfJ27g766ney99Djo5e9_pqQ.roa
Signing time: Sat 01 Jan 2022 15:03:24 +0000
ROA not before: Sat 01 Jan 2022 15:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29551
IP address blocks: 195.114.10.0/23 maxlen: 24
2001:67c:6fc::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50121727 (0x2fccbff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca37af095113dadd5bc51bdebbf0ad34d6eedb64
Validity
Not Before: Jan 1 15:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d89537c9dbb83beba9decbdf438e8e5ef7fa6a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:c1:26:e8:2b:7d:ea:c2:61:14:83:89:b3:68:
19:64:53:cb:dc:f8:94:d4:55:8f:dc:6f:c0:70:93:
5e:65:29:1e:de:7c:91:33:97:45:6d:55:55:1f:73:
8f:aa:d0:34:3f:c9:14:31:da:38:4c:80:d3:18:a8:
06:56:2e:0e:41:08:8c:26:ac:3e:1c:87:a1:a4:32:
9d:21:04:5a:35:11:4e:ef:07:4d:e6:45:06:02:61:
72:53:24:c8:37:b5:c0:3d:33:56:af:79:16:78:89:
08:0a:bb:1b:84:ef:e6:90:e5:e6:c6:b5:1e:bf:66:
e2:a2:37:2d:8c:cb:bb:9f:e3:8a:f8:c5:a9:9a:bf:
15:73:d6:9e:77:eb:13:8c:4c:e3:9d:94:e6:71:c3:
d9:2c:84:52:e7:ee:63:e8:f8:80:ae:c0:69:85:4e:
70:5c:78:d7:f5:be:ea:45:3e:4e:7b:29:05:52:f0:
6d:21:a5:d0:ae:df:92:f0:e5:3a:1c:40:54:33:97:
3d:0a:05:cf:9f:c0:70:ca:26:aa:cb:03:2c:92:f6:
5c:4e:8b:8d:40:b2:85:7a:f9:f4:7b:e4:94:d5:27:
1e:cd:11:14:d2:7a:dc:44:d1:11:96:35:8d:f6:0d:
7d:b2:4d:70:ca:52:20:3e:cd:f1:49:df:51:bb:ef:
b8:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:89:53:7C:9D:BB:83:BE:BA:9D:EC:BD:F4:38:E8:E5:EF:7F:A6:A4
X509v3 Authority Key Identifier:
keyid:CA:37:AF:09:51:13:DA:DD:5B:C5:1B:DE:BB:F0:AD:34:D6:EE:DB:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjevCVET2t1bxRveu_CtNNbu22Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ad6c83-e5fd-4417-bff9-eb68efc4748b/1/XYlTfJ27g766ney99Djo5e9_pqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/ad6c83-e5fd-4417-bff9-eb68efc4748b/1/yjevCVET2t1bxRveu_CtNNbu22Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.114.10.0/23
IPv6:
2001:67c:6fc::/48
Signature Algorithm: sha256WithRSAEncryption
03:ff:05:b6:61:df:da:c2:60:18:73:2a:54:3d:e8:5f:1b:87:
5b:f4:0c:19:55:f1:32:9e:e7:4b:1c:31:05:66:f9:7d:fd:5e:
54:d0:34:e9:73:06:1b:b5:28:4b:3c:db:56:ac:6f:3d:61:ed:
ba:8f:c0:29:b1:4a:cb:cc:90:a2:78:f0:c1:b5:6d:69:98:cf:
10:2b:8e:b1:77:2f:8a:7e:26:1c:af:82:f1:1e:a4:b6:80:51:
2e:2f:0a:cb:df:4a:2b:f7:82:c8:32:e2:44:6d:8b:7b:d8:19:
b5:8d:1e:fb:8b:a5:95:bb:7b:c1:4d:a9:59:b1:d6:dd:ed:66:
c2:e9:f4:db:dc:71:7b:6f:9f:27:5a:b4:22:03:cb:fe:39:d8:
79:06:57:fb:4d:0e:9f:5b:f8:54:02:98:b0:54:ef:bf:34:c5:
03:6e:92:dc:67:88:10:ba:e4:06:61:e1:f4:0c:36:73:9f:38:
61:3b:8f:77:e0:5f:07:89:d9:46:43:a5:d3:9c:d0:17:da:f7:
68:7d:b0:80:80:bd:a6:20:a3:fb:b2:a4:d4:93:b9:a4:5b:47:
60:82:c9:c4:e0:53:c2:72:a1:2e:53:da:89:13:d2:1d:83:95:
0c:50:ea:80:2e:71:24:cf:6d:62:58:71:d5:d1:49:25:cd:f7:
41:ef:72:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:58 2024 by rpki-client on console-ams.rpki-client.org