Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/sVlcSpletSl-YybKOynaKytx6kU.roa
File: sVlcSpletSl-YybKOynaKytx6kU.roa (raw, json)
Hash identifier: sGgyGiUBTDwWVdPmBtNxpd+XaVFS4NKwVSqvDc1YL8A=
Subject key identifier: B1:59:5C:4A:99:5E:B5:29:7E:63:26:CA:3B:29:DA:2B:2B:71:EA:45
Certificate issuer: /CN=01292e03a731796e1d7b148b1dd235d144352f5d
Certificate serial: 74923B
Authority key identifier: 01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/sVlcSpletSl-YybKOynaKytx6kU.roa
Signing time: Sat 01 Jan 2022 02:51:37 +0000
ROA not before: Sat 01 Jan 2022 02:51:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210547
IP address blocks: 195.96.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7639611 (0x74923b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01292e03a731796e1d7b148b1dd235d144352f5d
Validity
Not Before: Jan 1 02:51:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1595c4a995eb5297e6326ca3b29da2b2b71ea45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b0:d5:72:3d:6c:97:8b:64:81:65:95:ca:1a:
f3:0a:3c:7c:c4:f0:4f:8f:fb:01:7e:ba:98:6c:90:
bf:01:01:90:c3:c7:65:54:95:9c:39:8e:16:61:81:
09:be:b5:1b:69:3c:98:48:25:f9:4e:5e:a2:76:00:
89:c6:d9:76:d6:2e:61:78:65:9f:02:56:2a:8c:f6:
3b:18:d2:9b:cc:dc:46:dd:7c:02:fc:3c:4c:22:61:
4c:4e:1b:a5:05:75:f0:14:90:f6:91:ae:7c:cd:7a:
07:c3:a4:28:f7:d4:8c:7f:bf:aa:00:4c:1b:d6:15:
57:67:ce:3e:40:ff:9f:7a:fd:52:bf:1f:1c:30:3f:
d3:5f:cd:b2:42:8c:7b:a7:dd:f0:9e:9f:b7:92:61:
d4:f2:f3:11:e0:6b:2d:d8:05:df:12:a7:89:96:aa:
fb:bd:06:e8:7f:f1:7f:7b:21:ad:36:08:0f:fd:c8:
1e:02:dc:64:cb:12:7f:ed:e1:61:94:6b:7b:13:7f:
41:c0:36:88:74:a2:bd:19:ce:6c:24:d5:49:a3:fd:
95:c1:aa:28:38:6a:dd:6f:51:0a:71:17:c5:30:bf:
3a:53:9d:45:f7:ad:ca:62:8e:6c:2d:6a:32:f6:3f:
3f:8b:7e:c5:fd:36:29:95:fc:88:c0:d8:91:42:20:
48:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:59:5C:4A:99:5E:B5:29:7E:63:26:CA:3B:29:DA:2B:2B:71:EA:45
X509v3 Authority Key Identifier:
keyid:01:29:2E:03:A7:31:79:6E:1D:7B:14:8B:1D:D2:35:D1:44:35:2F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ASkuA6cxeW4dexSLHdI10UQ1L10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/sVlcSpletSl-YybKOynaKytx6kU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/3aa0f5-eae5-49a3-8ee9-0df7df4d5b01/1/ASkuA6cxeW4dexSLHdI10UQ1L10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.96.153.0/24
Signature Algorithm: sha256WithRSAEncryption
26:58:09:65:46:eb:f6:14:25:9c:69:e2:b7:33:4f:c2:05:53:
5c:6b:bc:68:70:c3:3f:d8:ad:65:da:f9:54:d1:c9:2d:f9:22:
a5:63:21:34:59:a4:84:5c:4e:10:6b:51:1a:27:69:e7:b7:20:
1f:65:d9:a2:83:b1:d0:7d:33:4e:c2:f2:df:8d:d0:5c:a9:cb:
ba:94:4d:a4:04:19:d3:90:50:ec:b4:68:c5:db:69:cd:4b:41:
79:42:e3:0a:15:3e:38:9c:1e:e8:6c:0d:ad:51:1e:d0:00:03:
14:cc:43:f9:ef:d2:20:e7:05:c7:92:91:03:61:16:cd:42:37:
5f:6f:ac:00:f0:2d:a3:73:d6:22:fb:b4:43:d5:d2:95:16:9f:
2b:ff:09:39:8f:43:47:62:16:04:50:90:07:e2:3c:5a:9d:07:
31:64:a0:c5:f4:e6:19:ee:f8:3b:2d:e0:a7:b6:be:aa:8d:b8:
ff:bd:da:7a:b7:1e:e7:85:aa:24:b9:16:4b:e3:de:52:7b:61:
3a:8e:08:48:c0:53:52:d2:8e:27:c9:44:0c:e2:e7:6e:10:1c:
87:2f:24:2b:3a:65:6f:67:ca:96:13:b3:20:78:d3:a7:5c:c2:
78:f8:3e:ef:f0:62:78:f1:92:83:f8:30:57:f0:e3:28:bf:7b:
6f:38:9b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:25 2023 by rpki-client on console-fra.rpki-client.org