Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/71wwF-SNvDk1Lz-zcrVoKdEXn5Y.roa
File: 71wwF-SNvDk1Lz-zcrVoKdEXn5Y.roa (raw, json)
Hash identifier: y0b9kpFIj6/GhlgAtbxa6pUN4zn2nY5KLp2SSsVQLmo=
Subject key identifier: EF:5C:30:17:E4:8D:BC:39:35:2F:3F:B3:72:B5:68:29:D1:17:9F:96
Certificate issuer: /CN=e6502200a6e63f76397adb94dfd834c116809b9f
Certificate serial: 01842E4F26884D75C02AD96BF36698903409
Authority key identifier: E6:50:22:00:A6:E6:3F:76:39:7A:DB:94:DF:D8:34:C1:16:80:9B:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5lAiAKbmP3Y5etuU39g0wRaAm58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/71wwF-SNvDk1Lz-zcrVoKdEXn5Y.roa
Signing time: Mon 31 Oct 2022 13:50:49 +0000
ROA not before: Mon 31 Oct 2022 13:50:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34450
IP address blocks: 195.238.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2e:4f:26:88:4d:75:c0:2a:d9:6b:f3:66:98:90:34:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6502200a6e63f76397adb94dfd834c116809b9f
Validity
Not Before: Oct 31 13:50:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef5c3017e48dbc39352f3fb372b56829d1179f96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:9a:ae:7f:ae:b1:ff:73:c9:1f:9f:be:a9:76:
c9:fc:50:aa:4c:f5:48:5d:81:79:58:01:89:85:d0:
34:e3:61:fc:ed:3b:52:d4:cd:2b:15:51:de:81:77:
ac:2d:8d:fd:f2:49:cc:54:85:9b:f7:75:14:ea:4b:
a1:0b:23:5c:a4:d2:a1:09:82:df:26:d9:b3:33:31:
59:44:e2:fe:7c:44:6e:71:42:db:eb:e4:7f:37:cd:
41:07:0a:2f:4b:3e:8e:4b:25:75:20:c9:e3:02:66:
cd:46:e3:cb:7d:7a:86:44:72:8d:03:a7:d9:46:3a:
59:38:ba:f3:37:a7:22:08:32:8f:51:9d:e7:75:3d:
27:d2:c7:dc:ff:3a:e0:0e:09:68:1c:eb:be:d3:44:
34:f2:71:8a:af:28:87:35:16:74:52:f8:f6:c6:10:
43:2a:5e:8e:5b:19:c4:04:b7:31:83:2b:39:34:9c:
5d:26:fc:10:dc:fe:6a:14:37:ce:40:28:bd:67:0a:
92:7d:8e:08:ef:f2:a6:2b:a8:0f:94:d5:76:d7:24:
30:07:e4:5d:b2:b3:cd:84:a6:bd:f2:94:34:76:7e:
79:8b:37:16:c2:cc:7e:70:b7:d9:ae:3a:73:66:82:
c9:9e:1a:59:97:44:7d:86:c5:e6:4b:98:c2:90:c7:
be:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:5C:30:17:E4:8D:BC:39:35:2F:3F:B3:72:B5:68:29:D1:17:9F:96
X509v3 Authority Key Identifier:
keyid:E6:50:22:00:A6:E6:3F:76:39:7A:DB:94:DF:D8:34:C1:16:80:9B:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5lAiAKbmP3Y5etuU39g0wRaAm58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/71wwF-SNvDk1Lz-zcrVoKdEXn5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/9ff602-b0bd-4c3f-af94-2fc34ad9dd47/1/5lAiAKbmP3Y5etuU39g0wRaAm58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.238.91.0/24
Signature Algorithm: sha256WithRSAEncryption
69:05:7c:0a:aa:7e:7b:c0:9a:c9:b2:e5:4d:6d:7f:49:3a:c0:
be:3f:68:3e:cb:a1:b4:45:f7:fb:d9:80:a9:e7:e9:89:66:8d:
e5:a6:a5:6b:08:25:d5:c8:e7:3c:74:42:ee:27:85:27:59:2d:
59:2d:43:ff:f2:c9:b8:37:f5:48:4a:14:57:11:13:ef:60:97:
23:fa:b4:42:11:93:cb:32:31:30:0e:2f:59:de:fe:87:77:e5:
44:f5:b7:56:d1:39:ea:39:d4:64:5d:f6:ab:0e:dd:8c:66:ef:
3f:14:69:cd:bf:c1:a1:8b:1f:51:68:4f:dc:01:65:56:db:fe:
83:2a:0e:16:62:96:8d:c9:68:a2:94:fd:8a:f8:f9:12:e2:b7:
2c:e7:6a:0e:a4:3d:8d:e7:cd:33:74:87:b2:eb:6c:93:bc:f1:
03:19:88:d9:ab:9e:40:85:27:ed:1f:d3:a4:bb:21:68:3b:7d:
e6:9a:c1:21:6c:b5:f6:6c:17:a9:45:c9:7c:41:53:6e:1f:c5:
91:94:0b:17:72:60:a1:96:b4:96:9e:b1:20:e6:00:f2:8c:a8:
6c:1f:87:cd:c8:6c:eb:ae:08:1e:0f:d0:5f:82:55:6d:55:16:
11:02:3c:63:e3:61:f9:53:a2:ff:4e:03:0f:88:57:ca:61:b6:
58:1c:95:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:55 2023 by rpki-client on console-ams.rpki-client.org