Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/fc5766-aebf-4529-8e3f-4105f8a3bb9c/1/wzWeROeaK9z67id5X7elIrrZ9h0.roa
File: wzWeROeaK9z67id5X7elIrrZ9h0.roa (raw, json)
Hash identifier: JZfCnIwdPYpuxpPC5997vK7Q4nWwfNzVYv7jy2SPjnw=
Subject key identifier: C3:35:9E:44:E7:9A:2B:DC:FA:EE:27:79:5F:B7:A5:22:BA:D9:F6:1D
Certificate issuer: /CN=df77662f60b5c41032e0535ee727184e3adb7b77
Certificate serial: 04A6A0D2
Authority key identifier: DF:77:66:2F:60:B5:C4:10:32:E0:53:5E:E7:27:18:4E:3A:DB:7B:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/33dmL2C1xBAy4FNe5ycYTjrbe3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/fc5766-aebf-4529-8e3f-4105f8a3bb9c/1/wzWeROeaK9z67id5X7elIrrZ9h0.roa
Signing time: Sat 01 Jan 2022 16:05:27 +0000
ROA not before: Sat 01 Jan 2022 16:05:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213314
IP address blocks: 95.214.168.0/22 maxlen: 24
2a09:ea80::/29 maxlen: 56
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78029010 (0x4a6a0d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df77662f60b5c41032e0535ee727184e3adb7b77
Validity
Not Before: Jan 1 16:05:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3359e44e79a2bdcfaee27795fb7a522bad9f61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:50:2b:fc:3d:25:7b:23:78:95:57:79:b6:52:
55:77:a0:a1:9a:b9:c3:8a:5d:a2:fe:83:8d:12:8e:
31:cd:5e:f7:86:74:33:3e:d8:2d:6f:d6:3b:08:85:
e6:fc:85:0f:34:0b:31:09:73:f3:ba:14:2c:d8:0e:
9e:70:53:17:13:fa:fc:ef:ac:27:0b:4b:78:52:64:
3c:d5:32:ce:22:2c:cb:ec:4a:f0:84:e6:e6:02:75:
94:31:83:d8:94:e3:e2:24:fe:cf:ce:24:19:5b:e4:
d2:0b:f6:39:cb:f5:e9:d1:26:b5:56:17:3f:66:03:
cd:14:7f:02:d4:5e:10:2b:c6:72:70:80:45:23:4d:
0a:80:d9:d8:bd:c4:fa:b3:80:0c:a9:b4:a0:94:e4:
6b:8f:f1:13:c0:92:3f:73:a6:bc:f2:3e:e8:a4:82:
5e:9d:e1:5f:d9:83:d8:7c:52:59:21:97:30:85:64:
f5:69:62:c8:cb:a2:86:82:c5:b2:ab:28:28:98:17:
c4:62:1b:8d:3c:28:fc:2d:df:39:8a:6d:5b:ac:ce:
1b:de:23:71:71:59:f3:58:37:dc:53:8f:d3:f2:f2:
d4:75:72:d6:6d:e3:a4:9b:79:47:65:5f:de:8a:b2:
f6:9d:24:a8:b2:7d:56:dc:d1:d0:41:ac:a6:4b:82:
b7:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:35:9E:44:E7:9A:2B:DC:FA:EE:27:79:5F:B7:A5:22:BA:D9:F6:1D
X509v3 Authority Key Identifier:
keyid:DF:77:66:2F:60:B5:C4:10:32:E0:53:5E:E7:27:18:4E:3A:DB:7B:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/33dmL2C1xBAy4FNe5ycYTjrbe3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/fc5766-aebf-4529-8e3f-4105f8a3bb9c/1/wzWeROeaK9z67id5X7elIrrZ9h0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/fc5766-aebf-4529-8e3f-4105f8a3bb9c/1/33dmL2C1xBAy4FNe5ycYTjrbe3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.168.0/22
IPv6:
2a09:ea80::/29
Signature Algorithm: sha256WithRSAEncryption
0c:fc:17:db:ca:f8:69:3f:5b:00:55:11:78:84:b9:06:33:e9:
c7:63:4f:b5:aa:ad:19:2f:8b:1b:ad:eb:19:95:42:57:63:2d:
16:a5:fc:21:33:e6:bf:07:99:d5:de:a8:cd:cb:eb:fc:53:59:
39:16:cb:b1:84:a2:f7:5a:e1:da:af:7f:35:4d:75:1d:88:b1:
ee:84:aa:54:cd:e1:ff:d3:89:46:02:a2:95:e0:7a:60:60:1f:
d4:28:ab:1d:97:f5:e9:1d:1f:29:a6:4f:a2:cb:4e:e5:b5:7d:
68:90:c9:8d:46:62:74:af:3e:87:35:5b:dc:b8:2e:22:43:97:
93:34:d3:b4:46:5a:4a:16:54:aa:d3:f7:1e:6e:6d:14:30:60:
dc:44:73:63:55:3a:2e:97:97:76:a5:9e:95:05:bc:fb:80:2b:
21:39:03:2e:4f:c6:6a:4a:c1:63:c5:fa:37:92:7d:6b:ea:9c:
65:c5:7a:35:77:8d:2c:3d:2c:ec:ba:07:11:ca:15:5c:cb:b4:
be:26:bc:a1:08:4c:13:5e:92:84:c6:b7:39:43:a3:1a:b4:18:
98:70:40:69:25:29:9b:8b:d0:d3:9a:67:29:e7:97:e7:f0:1d:
76:f0:a7:b6:fe:8d:6f:79:4f:1d:3c:23:34:d1:3a:af:19:4f:
27:68:72:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:36 2024 by rpki-client on console-ams.rpki-client.org