Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/JYMJDAEkB3yvOQwgCLxF_N5AbX4.roa
File: JYMJDAEkB3yvOQwgCLxF_N5AbX4.roa (raw, json)
Hash identifier: jzOJt9KEnJ7mCtFz/bLtdpSOqkPHrsW4ifWY+8vhn7s=
Subject key identifier: 25:83:09:0C:01:24:07:7C:AF:39:0C:20:08:BC:45:FC:DE:40:6D:7E
Certificate issuer: /CN=c9b232958097b5863eafd047bb315171eaa01fb7
Certificate serial: 390E8DF5
Authority key identifier: C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/JYMJDAEkB3yvOQwgCLxF_N5AbX4.roa
Signing time: Fri 29 Apr 2022 05:19:05 +0000
ROA not before: Fri 29 Apr 2022 05:19:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202842
IP address blocks: 95.128.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 957255157 (0x390e8df5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b232958097b5863eafd047bb315171eaa01fb7
Validity
Not Before: Apr 29 05:19:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2583090c0124077caf390c2008bc45fcde406d7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:09:99:9b:3e:31:20:4b:ca:00:93:95:bc:2a:
87:a4:90:95:4f:38:70:c0:54:8f:1f:55:67:23:5a:
39:34:fe:15:f7:29:d7:7c:3d:ab:cb:4b:13:44:10:
d3:3f:8a:bc:c5:fd:53:48:6b:47:e8:ca:c5:5e:75:
6f:eb:f6:70:2c:d0:af:17:aa:1b:4f:47:34:68:44:
f8:11:a2:5e:37:02:b1:13:d8:68:e3:3b:63:3e:b2:
82:21:66:f1:a4:41:cc:10:a4:f8:17:3c:89:2c:64:
40:2b:60:33:b1:01:86:4c:d7:03:43:1a:89:1f:e3:
12:1a:10:e8:b7:4c:74:48:28:26:57:a4:c8:3b:78:
28:e1:87:11:78:d2:24:38:5a:a1:0b:d6:ed:c6:0f:
d2:1f:2d:b3:24:bf:c1:38:2f:da:1d:ec:08:9f:e6:
7b:72:40:83:9d:52:3b:9f:8d:6a:a2:b2:d0:6c:ec:
fc:14:1e:b5:46:17:5e:95:2f:02:3c:18:76:88:5d:
20:3d:49:3e:44:77:0b:ad:4d:c9:6e:f8:58:fd:0b:
f1:97:5b:60:39:3c:cc:c3:04:7e:9b:9c:16:0f:4a:
7c:45:c1:f9:37:45:4b:a2:29:46:bb:a1:09:4b:5e:
65:34:83:f0:9d:2d:6f:5a:b9:3d:78:55:e1:2d:73:
3a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:83:09:0C:01:24:07:7C:AF:39:0C:20:08:BC:45:FC:DE:40:6D:7E
X509v3 Authority Key Identifier:
keyid:C9:B2:32:95:80:97:B5:86:3E:AF:D0:47:BB:31:51:71:EA:A0:1F:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybIylYCXtYY-r9BHuzFRceqgH7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/JYMJDAEkB3yvOQwgCLxF_N5AbX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f35432-cf99-4f19-a76e-07b7fef0858f/1/ybIylYCXtYY-r9BHuzFRceqgH7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.174.0/24
Signature Algorithm: sha256WithRSAEncryption
65:93:da:05:70:ae:d8:c0:48:72:fd:68:44:8d:a1:ee:ab:87:
90:a5:43:4e:31:bb:2c:91:b3:70:53:4e:40:d4:96:f9:ff:7a:
a7:af:bf:10:f2:5c:82:35:e9:f7:b4:9e:36:2d:46:c5:b1:85:
0b:da:46:c1:e5:a3:92:29:c6:43:c8:d6:b0:dd:77:1e:2e:61:
19:5a:0b:16:b2:ab:ec:00:08:c5:08:86:39:d2:0a:a7:a5:f6:
bf:f9:4c:d1:e1:ad:a5:24:79:b1:9e:48:a3:d2:55:87:c9:4c:
21:c4:20:ca:fc:d4:c6:f7:e7:01:4a:0e:05:76:1b:31:10:3d:
71:e7:78:98:04:3d:a6:0b:ac:c6:c3:65:f4:ce:4b:27:97:98:
09:f9:d9:4f:4f:b2:db:68:64:e5:f0:e7:fe:b7:7f:1b:fb:26:
e5:1d:d5:b4:b3:ca:1b:0b:ca:ce:b1:56:4a:44:43:7b:58:89:
b7:da:b6:a8:2b:55:1e:6b:ed:05:b2:77:21:2f:8b:14:9f:22:
f5:e8:e8:3a:25:12:a8:b5:24:40:fa:90:d5:aa:54:76:d3:37:
d8:3b:93:00:5d:e9:ca:88:6e:7e:0d:0d:23:52:07:8f:7b:de:
e4:e9:e2:3f:ec:a7:da:45:51:1e:86:7f:fc:55:b6:67:66:42:
3e:dc:32:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:56 2023 by rpki-client on console-ams.rpki-client.org