Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/XyM403-iZ7r-_jKYnejTkKb6duU.roa
File: XyM403-iZ7r-_jKYnejTkKb6duU.roa (raw, json)
Hash identifier: t7TFWmKVUIZsGJRg/1MP9KAHL5zn/y5FaxdDeSw2+JI=
Subject key identifier: 5F:23:38:D3:7F:A2:67:BA:FE:FE:32:98:9D:E8:D3:90:A6:FA:76:E5
Certificate issuer: /CN=3c2afa5c706d3eb0a92da89b5d41b936eb49ccb8
Certificate serial: 01F9713A
Authority key identifier: 3C:2A:FA:5C:70:6D:3E:B0:A9:2D:A8:9B:5D:41:B9:36:EB:49:CC:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PCr6XHBtPrCpLaibXUG5NutJzLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/XyM403-iZ7r-_jKYnejTkKb6duU.roa
Signing time: Sat 01 Jan 2022 15:58:00 +0000
ROA not before: Sat 01 Jan 2022 15:58:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51328
IP address blocks: 195.226.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33124666 (0x1f9713a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c2afa5c706d3eb0a92da89b5d41b936eb49ccb8
Validity
Not Before: Jan 1 15:58:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f2338d37fa267bafefe32989de8d390a6fa76e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e2:55:e5:44:f2:65:06:f8:c7:ee:bc:7b:76:
e2:51:e3:8c:8d:b0:97:e6:4d:f6:ca:d1:c5:26:10:
5c:e8:5e:a5:19:04:4d:c6:62:63:b4:fb:c7:75:50:
60:85:00:33:6d:e6:54:25:51:24:52:af:61:08:1f:
72:fa:f6:0f:3d:27:84:97:c7:26:4c:f0:e7:83:28:
e5:4f:a0:5d:04:05:27:16:7b:01:b3:7f:2f:c2:83:
a5:bc:cb:43:ef:75:b2:a5:d3:cf:60:37:8a:29:42:
41:b9:bb:7e:f1:4a:5c:d7:f3:f0:61:42:a8:87:9a:
46:a8:22:61:93:39:18:ad:1a:e0:6f:58:ae:50:18:
ba:a2:67:15:a8:83:e0:1c:cf:6f:f1:88:0f:0f:9d:
19:35:1f:45:35:2c:fb:f7:c0:a5:92:bf:77:9c:5a:
c9:c6:c8:38:ab:c4:6e:14:82:2e:3f:1b:e5:2e:82:
dd:3b:75:56:95:63:fe:10:4b:6e:66:c6:21:1e:2d:
18:15:8f:e5:0f:6d:90:1a:59:40:9b:a4:f2:48:13:
db:08:58:ae:d5:fd:d6:98:6d:d0:dd:69:ef:d5:64:
e0:64:17:be:02:5a:9e:19:46:c5:b8:f1:de:25:cb:
39:a5:ad:d6:ee:67:52:5b:ce:ff:c3:33:a7:a7:31:
e4:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:23:38:D3:7F:A2:67:BA:FE:FE:32:98:9D:E8:D3:90:A6:FA:76:E5
X509v3 Authority Key Identifier:
keyid:3C:2A:FA:5C:70:6D:3E:B0:A9:2D:A8:9B:5D:41:B9:36:EB:49:CC:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PCr6XHBtPrCpLaibXUG5NutJzLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/XyM403-iZ7r-_jKYnejTkKb6duU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/eb1c4f-fd80-4919-b185-f7833a3f2485/1/PCr6XHBtPrCpLaibXUG5NutJzLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.226.206.0/24
Signature Algorithm: sha256WithRSAEncryption
44:da:b5:db:0c:91:b6:63:a2:fc:cb:4b:4b:73:a8:5a:d9:5f:
0d:90:5a:ae:ca:20:a7:17:44:74:dd:68:26:19:b4:60:55:37:
29:e6:25:37:15:53:36:8c:fe:ee:d6:6b:0a:e1:1a:8d:b6:6a:
84:ce:e2:95:0c:22:a3:16:7b:9b:6f:99:53:9e:1b:6d:4f:2e:
af:17:a2:c1:0f:9e:a9:c9:c4:80:09:01:7d:b7:55:98:ae:f0:
f5:b8:5b:9d:48:1b:cb:28:fd:48:7d:57:ef:85:85:7c:02:6d:
93:02:48:1a:c2:7b:3e:a6:25:14:bd:46:b2:11:76:94:01:5a:
e7:50:0b:a2:9d:73:6a:69:54:27:4a:f9:54:8c:da:9f:d0:71:
ff:2f:82:f7:9e:61:45:bd:61:da:fe:e8:58:3d:39:67:0e:fe:
4d:cf:4e:6e:bf:94:d8:2f:85:be:d7:39:ee:69:bd:73:26:51:
d2:6d:4f:d9:b9:b5:7e:6a:ec:c4:7f:7c:a8:12:71:c9:f1:0b:
c8:dd:49:23:0f:5a:f3:3d:3d:4e:67:e7:a6:51:ea:f7:28:2e:
b5:bf:1d:55:01:45:ea:c8:ce:80:37:76:15:2d:04:b5:0e:3f:
2f:32:31:4a:77:80:4b:cd:fa:70:45:7a:70:66:26:d0:72:be:
2b:74:4e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:53 2023 by rpki-client on console-ams.rpki-client.org