Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/9uEs_FEkLpDa_pKU0emeMHkV9pI.roa
File: 9uEs_FEkLpDa_pKU0emeMHkV9pI.roa (raw, json)
Hash identifier: 9LxHNHKX2ut3QFz6KRi19Dv0jHIJBI17ad1cn+0CSxo=
Subject key identifier: F6:E1:2C:FC:51:24:2E:90:DA:FE:92:94:D1:E9:9E:30:79:15:F6:92
Certificate issuer: /CN=c185d7243ae986cde48414e6ad81f2229c0a57d8
Certificate serial: 057AA9F5
Authority key identifier: C1:85:D7:24:3A:E9:86:CD:E4:84:14:E6:AD:81:F2:22:9C:0A:57:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wYXXJDrphs3khBTmrYHyIpwKV9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/9uEs_FEkLpDa_pKU0emeMHkV9pI.roa
Signing time: Sat 01 Jan 2022 10:01:31 +0000
ROA not before: Sat 01 Jan 2022 10:01:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 195.216.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91924981 (0x57aa9f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c185d7243ae986cde48414e6ad81f2229c0a57d8
Validity
Not Before: Jan 1 10:01:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6e12cfc51242e90dafe9294d1e99e307915f692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:76:bb:ba:fe:4a:fd:71:20:e8:15:2c:4b:
d6:c8:92:1d:e9:c5:5f:c7:94:e8:33:f1:4d:e4:51:
11:9e:b2:53:42:ae:4a:5a:05:7f:cd:dc:b9:70:95:
cc:33:81:14:70:31:e3:de:af:10:3a:32:8c:53:ed:
46:35:69:cd:da:a6:e4:72:d2:4a:41:c6:00:b0:81:
a2:85:a3:68:d3:87:0f:98:6c:c4:4e:6a:3d:65:fe:
eb:9f:14:85:14:0f:b2:d2:0b:d7:73:9c:c5:05:01:
73:83:b8:83:d7:2e:9b:c9:8a:df:98:32:84:44:9f:
f4:cb:7a:c5:ba:34:d8:81:39:9d:5a:66:a8:83:d3:
9a:f9:11:03:bd:9c:b0:d3:cc:e4:44:96:c4:58:89:
ef:05:9e:72:8e:4b:c4:ad:29:02:06:67:4a:17:35:
21:6e:c0:dc:fb:14:7e:c3:39:22:40:a1:da:a1:cf:
24:87:71:64:6a:5b:ba:bd:c6:a0:b2:04:fd:da:84:
a6:22:dc:1d:9a:27:8e:92:cd:41:5c:04:9f:5f:27:
fe:8b:e7:46:c8:a5:a8:3d:61:cd:79:1e:32:56:74:
f2:98:37:16:7c:de:42:5f:44:74:0e:b6:5b:18:ba:
80:b8:c3:95:4d:00:84:1e:bf:8e:a9:62:c6:ab:35:
89:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:E1:2C:FC:51:24:2E:90:DA:FE:92:94:D1:E9:9E:30:79:15:F6:92
X509v3 Authority Key Identifier:
keyid:C1:85:D7:24:3A:E9:86:CD:E4:84:14:E6:AD:81:F2:22:9C:0A:57:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wYXXJDrphs3khBTmrYHyIpwKV9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/9uEs_FEkLpDa_pKU0emeMHkV9pI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/fc392a-6a3e-4da5-b7b9-a7edb7d3f537/1/wYXXJDrphs3khBTmrYHyIpwKV9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.216.227.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:e7:71:84:69:3b:a2:89:9c:25:c2:99:be:3e:5a:8e:2b:d0:
c8:4f:26:2e:5e:4a:2b:c4:0b:4d:31:ec:10:1c:6a:32:3a:af:
ac:80:8c:4f:f4:f2:06:23:8a:3d:4e:04:1a:87:3b:07:74:0e:
99:7d:de:d8:35:4f:5d:a9:be:f0:20:3d:84:86:1b:9a:70:ca:
74:c4:53:55:3b:fb:50:6a:d8:50:b4:ca:30:71:91:8d:b0:df:
6d:08:be:7c:76:b3:06:de:5a:40:0c:92:81:ca:2e:b1:87:43:
81:07:a1:16:59:ff:f1:f5:cd:fa:4a:9d:99:6f:01:06:55:37:
12:d2:a0:c2:88:db:66:c9:d7:08:72:3f:58:7f:3e:15:45:26:
07:5c:59:35:fa:d8:0b:d5:09:c7:5b:56:58:d2:5b:98:c6:ac:
c5:a1:f6:8f:95:f7:16:1c:19:6c:70:88:73:00:c5:88:80:d9:
fb:c3:d7:ca:95:c7:b1:be:61:0a:82:52:bb:34:8d:88:e5:b1:
44:25:78:5e:ae:77:26:77:09:e0:a8:4f:7d:d7:00:c5:b5:45:
84:af:c6:ef:e7:c6:34:83:d2:cb:f9:44:23:b5:32:81:bf:da:
d3:ef:29:48:24:75:12:03:28:7a:f2:b9:74:3a:b3:94:9e:99:
5b:d6:4a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:41 2023 by rpki-client on console-ams.rpki-client.org