Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/1Yf2tEskWBZkXDEXbH-fYtUIDv0.roa
File: 1Yf2tEskWBZkXDEXbH-fYtUIDv0.roa (raw, json)
Hash identifier: WSLPmZEC+q1hiaInt+KEq5TaLg8kz92suLxJJor0GdY=
Subject key identifier: D5:87:F6:B4:4B:24:58:16:64:5C:31:17:6C:7F:9F:62:D5:08:0E:FD
Certificate issuer: /CN=953a45de2807acc45cd252ed42f1383db7397ddb
Certificate serial: 0185627BD8FF530A5D6A42D7DCF1E95B5313
Authority key identifier: 95:3A:45:DE:28:07:AC:C4:5C:D2:52:ED:42:F1:38:3D:B7:39:7D:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lTpF3igHrMRc0lLtQvE4Pbc5fds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/1Yf2tEskWBZkXDEXbH-fYtUIDv0.roa
Signing time: Fri 30 Dec 2022 10:02:41 +0000
ROA not before: Fri 30 Dec 2022 10:02:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21094
IP address blocks: 193.109.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:7b:d8:ff:53:0a:5d:6a:42:d7:dc:f1:e9:5b:53:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=953a45de2807acc45cd252ed42f1383db7397ddb
Validity
Not Before: Dec 30 10:02:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d587f6b44b245816645c31176c7f9f62d5080efd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:37:cb:eb:9d:e1:df:4f:dd:ef:54:48:8c:a1:
f7:1a:0c:15:99:0c:07:2f:e1:50:ea:66:96:96:e6:
25:77:22:c0:9f:e6:12:3d:5c:34:52:37:fb:ec:69:
b5:9c:c7:55:82:6f:6b:8e:99:a9:1e:a9:90:06:fb:
4b:1c:33:e0:53:fc:7c:92:2e:90:ac:82:24:65:b4:
96:be:a8:22:12:70:9b:f1:8b:c7:0d:d6:e9:01:ad:
39:9f:fb:6a:4a:fe:3d:91:8c:86:97:49:50:b4:79:
25:0b:e4:d8:4f:0e:2c:8e:84:81:1e:d7:3d:58:d2:
af:82:5e:6f:1d:5f:ce:2f:f8:ce:62:86:6b:32:65:
98:b1:77:83:ed:4e:f7:01:0a:de:c8:47:cb:a0:3f:
ab:be:5f:e7:80:77:3d:48:49:86:d2:4d:0f:60:53:
4c:67:80:0e:00:be:02:67:fa:24:28:0e:b9:ef:5b:
3f:d5:79:2a:a1:53:2d:b0:a7:08:66:3e:5c:42:68:
94:dd:e7:d8:4f:af:43:2c:a0:6f:64:7a:a6:a8:7c:
f9:f4:30:6d:88:66:4c:ab:90:22:c0:c8:0d:8b:20:
7d:43:02:b0:65:25:3f:a1:98:f3:76:ab:d2:c1:3e:
40:12:66:f9:28:7b:3f:18:71:37:9b:ca:19:bd:f5:
7c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:87:F6:B4:4B:24:58:16:64:5C:31:17:6C:7F:9F:62:D5:08:0E:FD
X509v3 Authority Key Identifier:
keyid:95:3A:45:DE:28:07:AC:C4:5C:D2:52:ED:42:F1:38:3D:B7:39:7D:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lTpF3igHrMRc0lLtQvE4Pbc5fds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/1Yf2tEskWBZkXDEXbH-fYtUIDv0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/f9ed9f-6912-4fbb-957b-d54a1f02bcba/1/lTpF3igHrMRc0lLtQvE4Pbc5fds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.87.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:d5:24:33:a2:71:b5:8e:6a:20:06:84:93:2f:2b:b8:9f:77:
62:42:eb:7f:07:07:ac:39:d4:93:ba:2c:46:1e:97:c8:43:59:
fa:5a:f0:3e:fe:10:c8:30:d9:af:13:f1:38:dc:59:ba:40:fd:
b5:1a:61:0f:3e:96:e0:29:3e:cb:55:68:2c:a8:9e:49:c8:1f:
3f:7c:2f:ae:5d:a8:58:fe:f9:a5:02:93:4f:fe:4e:77:4e:c8:
4d:fa:bd:58:76:b8:8a:7f:c8:7e:f1:dd:9d:c4:14:cb:70:d3:
84:bb:3a:95:c0:7a:be:cb:e3:0d:34:a1:44:8e:96:8d:3e:16:
72:2e:6a:52:da:3b:08:76:03:64:b0:52:8e:cf:86:01:c7:69:
53:cd:50:f5:9d:dc:3e:1d:b3:12:7b:ca:23:44:a5:2d:63:65:
39:bf:af:13:01:3c:72:71:69:2a:b9:41:26:81:35:6f:c9:34:
8a:89:e5:6d:de:eb:62:ed:dd:7d:b9:b6:e5:69:b7:35:2c:1e:
bf:2b:ba:e8:5f:0a:c6:94:ea:c2:d3:28:39:c7:8f:03:cd:c3:
bf:3b:b8:ef:f8:a1:06:35:5c:e5:0c:ee:d6:18:74:25:bf:23:
6d:75:48:47:4b:41:c1:10:f9:e4:b7:20:6f:01:42:68:56:ef:
c3:d7:cc:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:41 2023 by rpki-client on console.sobornost.net