Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cb27a0-94d2-49aa-85ea-ae91e4662d93/1/bVmWtD08EXZBxSXVc6UwSmNrrps.roa
File: bVmWtD08EXZBxSXVc6UwSmNrrps.roa (raw, json)
Hash identifier: mbDWOUao6t8xX5m/6XF0BiwlQH/LqndNzIVKgr7jl7I=
Subject key identifier: 6D:59:96:B4:3D:3C:11:76:41:C5:25:D5:73:A5:30:4A:63:6B:AE:9B
Certificate issuer: /CN=a40a081fba8fb33efb46259ef93f6878d70150eb
Certificate serial: 0183214FD53C8723EE48C2C00F79FBD05044
Authority key identifier: A4:0A:08:1F:BA:8F:B3:3E:FB:46:25:9E:F9:3F:68:78:D7:01:50:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pAoIH7qPsz77RiWe-T9oeNcBUOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cb27a0-94d2-49aa-85ea-ae91e4662d93/1/bVmWtD08EXZBxSXVc6UwSmNrrps.roa
Signing time: Fri 09 Sep 2022 08:13:43 +0000
ROA not before: Fri 09 Sep 2022 08:13:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25238
IP address blocks: 195.234.206.0/23 maxlen: 23
195.234.204.0/23 maxlen: 23
2001:67c:2620::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:4f:d5:3c:87:23:ee:48:c2:c0:0f:79:fb:d0:50:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a40a081fba8fb33efb46259ef93f6878d70150eb
Validity
Not Before: Sep 9 08:13:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d5996b43d3c117641c525d573a5304a636bae9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:31:cf:8b:e4:e4:dd:f4:b9:8a:44:74:c2:98:
ff:d0:70:75:5a:64:09:34:8a:c1:ea:2c:ea:ab:99:
fd:da:62:66:b5:e6:e0:e1:f6:ad:45:3b:70:f3:ba:
3e:a4:43:5d:e4:75:97:1d:8d:8b:2a:87:1e:e7:21:
72:00:29:35:0c:3f:95:51:6f:7b:9d:ca:df:e2:03:
7d:37:47:20:80:7b:b9:0c:4f:2f:b9:a7:f6:73:60:
63:c8:f9:55:aa:7f:a1:ed:83:73:1e:6a:d2:34:4f:
95:95:9f:9d:15:3b:fd:01:3b:ef:4e:e0:3e:75:06:
52:25:54:b6:b2:54:33:b1:ed:e0:26:57:4d:f9:03:
ee:63:77:75:22:9a:89:45:b7:a0:bc:bb:a7:eb:b1:
05:11:b0:58:14:bd:2d:7d:fd:41:af:db:50:94:b3:
09:1a:11:f7:76:5f:71:07:3c:5f:79:81:25:88:7a:
eb:3c:8d:d8:cf:fa:e2:a6:4d:08:5f:90:58:bf:db:
a4:c4:b9:c1:86:33:ba:be:39:3a:3b:85:50:eb:fa:
38:09:af:34:71:41:d4:ec:c7:b1:35:49:c4:57:2f:
09:6c:0e:c6:08:e7:a9:2b:7f:14:26:46:c9:b7:cc:
e8:d0:83:b2:1c:67:ce:5f:dd:8d:33:27:17:db:0e:
95:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:59:96:B4:3D:3C:11:76:41:C5:25:D5:73:A5:30:4A:63:6B:AE:9B
X509v3 Authority Key Identifier:
keyid:A4:0A:08:1F:BA:8F:B3:3E:FB:46:25:9E:F9:3F:68:78:D7:01:50:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pAoIH7qPsz77RiWe-T9oeNcBUOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb27a0-94d2-49aa-85ea-ae91e4662d93/1/bVmWtD08EXZBxSXVc6UwSmNrrps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cb27a0-94d2-49aa-85ea-ae91e4662d93/1/pAoIH7qPsz77RiWe-T9oeNcBUOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.234.204.0/22
IPv6:
2001:67c:2620::/48
Signature Algorithm: sha256WithRSAEncryption
5c:6d:46:4c:da:78:38:c4:87:7f:d7:03:d2:ed:d6:27:68:87:
3e:cf:c3:d9:27:e1:b3:d9:73:e2:1c:d0:99:7e:92:9f:e5:50:
0f:ad:4c:a7:51:4d:bd:bd:6d:f5:77:fc:04:95:c1:82:5f:f1:
68:78:5a:ef:aa:ad:ac:72:da:08:68:8b:74:e8:1b:57:14:7a:
53:92:27:9f:2b:99:58:9f:8a:fc:cf:d0:f7:66:aa:4e:43:20:
9f:b6:1c:98:01:b8:16:f2:98:e7:ed:bd:d8:5a:9d:11:1e:df:
91:a3:43:3e:5b:e3:36:ae:9a:11:d4:aa:1a:2b:70:34:0e:cf:
86:af:32:79:2a:85:56:0c:84:4f:f9:6c:31:53:4b:cc:7f:fb:
45:38:41:6c:bf:56:11:8e:87:47:68:0c:83:e0:0f:61:b8:89:
6d:f7:7b:77:60:b5:88:9d:31:82:2d:da:e1:11:3f:9f:f1:e4:
b3:cb:51:fa:cb:89:d9:fd:f2:ab:90:4b:82:dd:0f:c8:8e:42:
f1:b8:93:d9:09:fd:c6:b6:75:a2:c8:69:1c:9c:e0:e0:22:14:
65:cb:48:73:28:ed:5d:cd:80:77:63:ba:c6:90:3f:80:b1:45:
6a:f4:d1:f6:ad:ad:cd:4a:70:a4:c5:4d:55:ee:02:8c:92:3f:
07:a5:3e:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:50 2023 by rpki-client on console.sobornost.net