Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/ce0077-c701-4ced-9d53-6c5c34586f6e/1/7WC9b213HVCFxzd0Zf_9oBxA-BA.roa
File: 7WC9b213HVCFxzd0Zf_9oBxA-BA.roa (raw, json)
Hash identifier: QeixF7BjVF5XxxJ12ES10oeBuARdWbw/uKJELhoNnEI=
Subject key identifier: ED:60:BD:6F:6D:77:1D:50:85:C7:37:74:65:FF:FD:A0:1C:40:F8:10
Certificate issuer: /CN=bdf5b712f2e4932c1c030312d194a597883f3d5e
Certificate serial: 0183ACCE217D52D20A9F57756CD55D4DAC30
Authority key identifier: BD:F5:B7:12:F2:E4:93:2C:1C:03:03:12:D1:94:A5:97:88:3F:3D:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfW3EvLkkywcAwMS0ZSll4g_PV4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/ce0077-c701-4ced-9d53-6c5c34586f6e/1/7WC9b213HVCFxzd0Zf_9oBxA-BA.roa
Signing time: Thu 06 Oct 2022 10:18:53 +0000
ROA not before: Thu 06 Oct 2022 10:18:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29117
IP address blocks: 195.85.200.0/24 maxlen: 24
195.234.61.0/24 maxlen: 24
2001:67c:195c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:ce:21:7d:52:d2:0a:9f:57:75:6c:d5:5d:4d:ac:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf5b712f2e4932c1c030312d194a597883f3d5e
Validity
Not Before: Oct 6 10:18:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed60bd6f6d771d5085c7377465fffda01c40f810
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c8:ab:a3:55:0f:5b:9c:9b:12:5f:0a:f7:b0:
db:c2:67:4e:27:3c:06:87:80:4e:7f:d7:0d:a9:67:
28:7d:4b:e2:55:c3:66:60:e9:30:93:10:42:81:1b:
b9:3d:5a:de:88:ce:0d:24:16:3c:c0:38:02:1c:6e:
88:ae:2d:f9:9d:6d:fb:78:eb:90:67:f8:c7:45:80:
aa:87:a2:9b:29:08:55:83:a1:4f:10:24:12:d3:88:
40:1a:a9:a4:ce:35:93:15:bf:80:5a:46:7f:25:a4:
da:e2:27:bf:e8:b8:ba:f0:40:48:93:ad:e3:64:97:
a6:6d:57:1b:97:00:82:13:31:d5:0a:c3:d8:39:ae:
9b:da:eb:a2:f4:cf:b4:4b:9d:a4:b4:e4:46:e4:e0:
8a:b7:ba:1b:11:14:dd:38:42:92:c5:15:3c:77:fa:
c1:64:61:f6:8c:04:f3:4f:67:ba:c1:e5:9d:8d:b5:
66:db:db:f4:fe:84:20:08:e1:d8:fe:ec:95:75:3f:
9a:b4:a4:f9:fd:6b:61:7c:af:a8:12:4d:e8:68:ec:
bb:fa:e6:5e:76:d1:79:63:95:a5:07:90:54:74:0a:
40:22:ae:4b:a2:b1:f6:00:01:c0:6e:dd:0a:ae:38:
0b:ff:0b:45:e8:94:35:07:72:c4:5f:1c:fa:2a:c2:
91:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:60:BD:6F:6D:77:1D:50:85:C7:37:74:65:FF:FD:A0:1C:40:F8:10
X509v3 Authority Key Identifier:
keyid:BD:F5:B7:12:F2:E4:93:2C:1C:03:03:12:D1:94:A5:97:88:3F:3D:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfW3EvLkkywcAwMS0ZSll4g_PV4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/ce0077-c701-4ced-9d53-6c5c34586f6e/1/7WC9b213HVCFxzd0Zf_9oBxA-BA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/ce0077-c701-4ced-9d53-6c5c34586f6e/1/vfW3EvLkkywcAwMS0ZSll4g_PV4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.200.0/24
195.234.61.0/24
IPv6:
2001:67c:195c::/48
Signature Algorithm: sha256WithRSAEncryption
2d:54:7e:8e:fd:dd:9e:b0:3b:90:9b:51:7d:a8:ae:ea:e6:0c:
24:a2:06:0e:75:5e:97:d1:f5:c9:24:cb:8e:bd:98:95:3e:7e:
fa:3f:ec:9e:ca:2e:c4:b8:24:08:87:95:73:56:f0:76:9c:b4:
55:88:eb:ed:c4:a4:9d:57:02:e6:62:ac:04:69:d1:2d:8e:a8:
82:30:09:54:7f:38:2d:71:ff:92:49:ae:66:c6:e7:5c:08:85:
84:06:e7:46:1e:38:8e:7e:8a:73:e9:02:5c:a7:37:ef:db:19:
03:ef:a0:d4:92:8c:a3:a1:db:f0:df:d7:55:17:ab:60:ed:87:
b2:d3:1b:be:fe:a4:36:ac:a1:11:25:5d:f8:f2:d5:9a:44:17:
3b:eb:6b:ce:c5:58:cb:16:34:1c:f1:7d:e4:aa:f9:84:ab:80:
10:29:cc:7b:4f:bb:fa:e0:37:96:e6:3a:d5:7f:cf:8d:17:da:
e1:e9:a7:7f:96:b9:48:94:ef:dc:3c:6d:8b:b6:66:82:61:e6:
bb:d9:d0:7a:28:ca:b0:68:64:18:e1:0d:bf:4c:2e:e3:44:c0:
85:04:19:22:90:9e:3e:7c:e5:40:48:5e:ec:27:b7:90:b1:68:
0d:b6:35:60:44:f3:cc:1d:7e:fd:5a:8e:ff:f8:67:56:14:1b:
8b:e7:59:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:47 2023 by rpki-client on console.sobornost.net