Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/9af87c-e272-4f84-9143-6682f7827df0/1/e7g6MGJ9BaRRn_mZRJKzAMDS3Ms.roa
File: e7g6MGJ9BaRRn_mZRJKzAMDS3Ms.roa (raw, json)
Hash identifier: uJNZDkOaVjWe98sBpN3BNG+Q+utVHtX50yzS+xvooiA=
Subject key identifier: 7B:B8:3A:30:62:7D:05:A4:51:9F:F9:99:44:92:B3:00:C0:D2:DC:CB
Certificate issuer: /CN=15cce061d2408d9a8f6b2b94162d1f74fac3dcac
Certificate serial: 021CDF81
Authority key identifier: 15:CC:E0:61:D2:40:8D:9A:8F:6B:2B:94:16:2D:1F:74:FA:C3:DC:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FczgYdJAjZqPayuUFi0fdPrD3Kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/9af87c-e272-4f84-9143-6682f7827df0/1/e7g6MGJ9BaRRn_mZRJKzAMDS3Ms.roa
Signing time: Wed 15 Jun 2022 06:48:44 +0000
ROA not before: Wed 15 Jun 2022 06:48:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34975
IP address blocks: 95.129.57.0/24 maxlen: 24
95.129.56.0/24 maxlen: 24
95.129.58.0/24 maxlen: 24
185.18.20.0/22 maxlen: 22
95.129.60.0/22 maxlen: 22
95.129.59.0/24 maxlen: 24
95.143.17.0/24 maxlen: 24
95.143.16.0/24 maxlen: 24
95.143.20.0/24 maxlen: 24
95.143.19.0/24 maxlen: 24
95.143.24.0/21 maxlen: 21
95.143.18.0/24 maxlen: 24
95.143.23.0/24 maxlen: 24
95.143.22.0/24 maxlen: 24
95.143.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35446657 (0x21cdf81)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15cce061d2408d9a8f6b2b94162d1f74fac3dcac
Validity
Not Before: Jun 15 06:48:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bb83a30627d05a4519ff9994492b300c0d2dccb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ae:88:92:c9:2e:a7:12:49:73:16:8c:81:36:
07:17:25:64:21:d8:79:f2:de:8b:1b:4e:a9:1f:79:
49:c9:e9:2a:b3:00:47:f6:27:81:0c:54:26:5b:02:
84:76:c5:eb:3b:d7:0c:2e:0a:e4:3e:59:f5:57:74:
be:61:c7:fa:98:08:84:00:be:39:28:6a:7b:ac:93:
9b:18:a4:0e:d3:0c:84:43:c3:5d:1b:37:36:d1:86:
71:af:36:10:ad:b4:4b:96:26:e9:c6:24:7e:b5:80:
b1:19:67:a7:ff:ed:20:8f:0c:ea:2c:56:fe:fa:f4:
f0:ba:85:e0:8c:3c:ea:67:64:9a:bb:23:ff:90:7f:
af:3d:b8:82:2c:bb:c5:dc:97:eb:ef:c3:d6:f1:08:
7d:73:32:ef:57:e3:f6:e0:de:e0:f7:33:5b:1f:90:
9e:3f:30:75:3e:eb:5a:fc:5e:da:64:a2:11:72:8f:
18:19:dd:ec:f9:93:bc:8c:78:ce:7b:54:cb:3b:cb:
37:6b:42:5f:a9:fc:2b:d4:cf:88:17:2d:eb:1b:75:
a7:b0:80:59:a7:64:d9:71:3b:e7:eb:7c:a6:17:05:
c2:bd:8b:2c:3e:05:d9:89:cd:f4:49:41:82:26:4b:
79:82:ac:23:db:e4:df:a2:d5:f7:83:8c:06:8b:e4:
db:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B8:3A:30:62:7D:05:A4:51:9F:F9:99:44:92:B3:00:C0:D2:DC:CB
X509v3 Authority Key Identifier:
keyid:15:CC:E0:61:D2:40:8D:9A:8F:6B:2B:94:16:2D:1F:74:FA:C3:DC:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FczgYdJAjZqPayuUFi0fdPrD3Kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/9af87c-e272-4f84-9143-6682f7827df0/1/e7g6MGJ9BaRRn_mZRJKzAMDS3Ms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/9af87c-e272-4f84-9143-6682f7827df0/1/FczgYdJAjZqPayuUFi0fdPrD3Kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.129.56.0/21
95.143.16.0/20
185.18.20.0/22
Signature Algorithm: sha256WithRSAEncryption
64:56:ce:c5:fb:90:c7:84:02:92:fd:17:e7:b4:65:a0:59:4c:
97:2e:b2:a6:c6:ba:b5:9c:23:0e:9f:ef:e6:d9:8c:1a:99:e9:
c3:9b:7f:66:c4:4e:d7:8f:4d:a7:99:f0:28:fc:af:a0:8d:e7:
a4:62:f1:3d:d5:e7:6f:26:9e:a4:7b:ae:38:6d:6a:20:38:7c:
0e:a7:9c:25:d7:dc:f5:80:06:a3:3f:06:28:e5:2d:bf:34:af:
ff:e7:36:bb:73:b3:39:1b:60:7f:cb:e4:ab:75:a6:ec:90:09:
25:26:55:a4:d1:b5:dd:ed:4f:48:07:99:63:3f:6f:f3:aa:18:
4f:de:ca:e0:a4:27:b6:d7:3a:7b:11:e4:38:15:c9:1d:36:ec:
4c:e4:2b:ac:a2:d9:66:3f:5d:83:37:d0:e8:12:02:9f:c9:d7:
57:a9:a0:97:e0:b8:5c:ea:b3:2f:f5:4c:14:64:e9:46:8d:03:
1c:53:49:58:53:1d:ff:21:d8:49:70:9c:df:53:8f:a5:7a:58:
6c:c6:36:45:5f:c2:d0:c9:0b:97:d8:a2:b7:a9:bb:85:1c:3c:
d7:56:9b:0f:66:20:10:53:3d:2c:c1:15:eb:ce:54:37:68:62:
54:24:a6:32:fa:4f:ee:32:5d:23:c4:97:e2:f8:b6:3d:05:a7:
84:92:df:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:55 2024 by rpki-client on console-ams.rpki-client.org