Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/vAm2_Y-M2dRc9V-a7Vh41UFzqBs.roa
File: vAm2_Y-M2dRc9V-a7Vh41UFzqBs.roa (raw, json)
Hash identifier: kR6hp/C4mCSCdvohEdfOJYHKKl3VAHHPPnfND3cb0kY=
Subject key identifier: BC:09:B6:FD:8F:8C:D9:D4:5C:F5:5F:9A:ED:58:78:D5:41:73:A8:1B
Certificate issuer: /CN=e12b5d0d85b1eee9187f987a4209a94d8bf31af0
Certificate serial: 01848B42317A3E2AD0D8F45566ED18DCFD0F
Authority key identifier: E1:2B:5D:0D:85:B1:EE:E9:18:7F:98:7A:42:09:A9:4D:8B:F3:1A:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4StdDYWx7ukYf5h6QgmpTYvzGvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/vAm2_Y-M2dRc9V-a7Vh41UFzqBs.roa
Signing time: Fri 18 Nov 2022 15:01:21 +0000
ROA not before: Fri 18 Nov 2022 15:01:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58075
IP address blocks: 195.96.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:42:31:7a:3e:2a:d0:d8:f4:55:66:ed:18:dc:fd:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e12b5d0d85b1eee9187f987a4209a94d8bf31af0
Validity
Not Before: Nov 18 15:01:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc09b6fd8f8cd9d45cf55f9aed5878d54173a81b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6e:45:6f:26:21:3b:af:8b:ac:03:f6:22:5e:
dc:dc:d8:c5:a3:75:c4:64:ac:b8:e3:4b:5f:49:11:
f1:d2:91:c3:8d:e2:30:dc:c7:ec:67:60:f9:47:cb:
72:91:ce:b6:18:5e:35:e2:c0:0f:3d:dd:c9:1b:c8:
43:8e:13:bb:cd:45:8e:aa:22:af:4e:db:59:17:71:
13:0a:b1:6e:3a:83:46:68:fa:1d:3f:8b:53:5c:c4:
c4:3b:dd:f2:fd:53:96:b9:1d:60:3f:ba:8e:17:62:
34:ac:f8:7d:cd:5e:1f:72:c4:20:a2:bb:73:67:e0:
f0:96:11:43:6c:6f:fc:71:a1:67:41:fd:f8:32:3b:
4a:6d:04:86:38:58:69:b6:27:03:2e:6e:2b:63:16:
b5:e1:32:a2:20:5d:82:da:af:89:aa:0c:3d:19:27:
94:57:17:c5:2b:07:4f:90:7e:a2:fe:32:d0:8f:98:
41:e2:dd:46:53:8e:15:26:73:af:57:70:ca:74:eb:
5c:74:38:25:9e:d6:cd:e3:02:fe:5e:65:cc:2b:6f:
08:6e:82:d2:c4:02:44:22:38:13:56:88:2f:83:7f:
f7:78:62:c5:12:e1:3f:d9:02:91:f5:ba:be:99:9e:
e7:22:82:91:c9:20:81:e7:59:60:c2:0f:97:d0:1d:
a1:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:09:B6:FD:8F:8C:D9:D4:5C:F5:5F:9A:ED:58:78:D5:41:73:A8:1B
X509v3 Authority Key Identifier:
keyid:E1:2B:5D:0D:85:B1:EE:E9:18:7F:98:7A:42:09:A9:4D:8B:F3:1A:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4StdDYWx7ukYf5h6QgmpTYvzGvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/vAm2_Y-M2dRc9V-a7Vh41UFzqBs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/d67dd5-afbe-4c66-bc19-f2d79c8c046e/1/4StdDYWx7ukYf5h6QgmpTYvzGvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.158.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:00:40:72:69:29:27:df:f9:4a:c8:dd:30:96:c1:f6:43:4b:
13:2d:9f:32:08:47:03:aa:42:e2:51:3d:2a:67:51:67:ec:38:
c7:59:22:72:01:80:ca:38:6e:17:9f:30:6d:14:d6:17:04:a2:
ea:d9:5b:0f:11:32:e6:97:26:1d:0a:14:c1:f1:42:85:c7:d7:
90:b4:3f:ab:cd:6d:65:1b:df:fc:2d:b0:1d:05:06:3f:fe:5b:
f9:50:1a:45:e0:a3:51:df:62:07:17:1f:ce:11:d9:7b:0f:69:
98:b0:0f:f9:6d:f4:9b:9b:cc:33:4a:e6:ea:21:5e:e1:43:7e:
31:b2:6b:e1:0e:c4:f6:a6:4c:66:5a:a6:e6:03:91:af:7d:36:
5b:6e:56:c1:9f:cd:32:15:d2:61:54:f9:f5:e6:0a:75:75:59:
18:1d:60:a5:bd:f3:fd:a6:dc:21:99:25:ba:d5:64:e8:04:bc:
02:e4:8f:73:03:29:1b:ec:59:63:d9:54:27:4a:38:4a:ed:de:
b7:db:03:55:ce:01:80:9a:4b:9e:e5:1f:de:37:0b:94:e9:f8:
f6:a0:0e:ae:cf:80:ae:3e:1b:2a:f0:5c:61:87:8e:c7:9e:9b:
60:84:d8:07:f8:86:a2:28:d8:65:0d:7b:a5:4e:ad:20:22:4a:
9d:ea:a4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:41 2023 by rpki-client on console-fra.rpki-client.org