Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/e25269-cfc9-4848-b1e5-7f786bb34344/1/3GrmFHIimMv_yu1wVWESptQG8Ys.roa
File: 3GrmFHIimMv_yu1wVWESptQG8Ys.roa (raw, json)
Hash identifier: fT43a87iy5ttYj7g556nbj+iRpBD6w0oWds9RlUVb+U=
Subject key identifier: DC:6A:E6:14:72:22:98:CB:FF:CA:ED:70:55:61:12:A6:D4:06:F1:8B
Certificate issuer: /CN=3076e9855f9bca3017a10137b443ee8c528ca952
Certificate serial: 0C21EB3E
Authority key identifier: 30:76:E9:85:5F:9B:CA:30:17:A1:01:37:B4:43:EE:8C:52:8C:A9:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHbphV-byjAXoQE3tEPujFKMqVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/e25269-cfc9-4848-b1e5-7f786bb34344/1/3GrmFHIimMv_yu1wVWESptQG8Ys.roa
Signing time: Sat 01 Jan 2022 02:57:28 +0000
ROA not before: Sat 01 Jan 2022 02:57:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206539
IP address blocks: 95.169.64.0/21 maxlen: 21
95.169.76.0/22 maxlen: 22
95.169.72.0/22 maxlen: 22
95.169.84.0/22 maxlen: 22
95.169.88.0/22 maxlen: 24
95.169.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 203549502 (0xc21eb3e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3076e9855f9bca3017a10137b443ee8c528ca952
Validity
Not Before: Jan 1 02:57:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc6ae614722298cbffcaed70556112a6d406f18b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:98:ec:b5:ab:00:97:fd:ff:49:5e:e2:43:c2:
96:20:0e:7a:8f:f1:2d:99:3e:7f:67:2d:9f:75:bd:
79:47:cc:36:e3:c0:12:ce:01:e2:bf:2f:65:d0:f7:
eb:97:3e:36:95:71:c2:84:a0:bd:52:fb:d2:57:56:
dd:f3:44:ce:d1:91:a5:2c:cd:f0:e7:c0:78:98:bb:
5f:4b:2e:d4:76:c3:16:42:a2:b7:9e:43:0e:e6:bb:
1c:72:4d:67:01:9f:af:4f:ec:20:e4:68:e2:3c:3f:
38:74:fa:3c:02:12:9d:9c:bd:0d:59:a7:c8:f2:5c:
c5:8e:a0:52:20:57:98:29:da:f9:b0:08:4d:ab:66:
dd:ed:a3:b3:ce:84:bf:90:c5:f4:d1:75:87:d6:6c:
a0:6d:cb:20:89:a0:2e:33:68:c1:83:c6:87:cb:29:
b9:ef:4c:46:ca:1c:03:b7:10:13:13:16:04:17:a7:
50:b7:f0:5e:c3:62:df:ec:cd:e2:05:bb:36:b5:ce:
bf:d3:b5:14:1b:d0:a4:6c:b9:24:5f:c6:81:e9:4d:
33:d4:da:84:60:5e:76:82:cf:04:86:9f:04:e4:1d:
c6:15:da:1e:fd:1f:de:c2:fb:93:21:25:2e:3e:bd:
69:ea:21:8e:37:ad:4a:64:c6:3c:eb:56:2e:c9:6b:
4a:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:6A:E6:14:72:22:98:CB:FF:CA:ED:70:55:61:12:A6:D4:06:F1:8B
X509v3 Authority Key Identifier:
keyid:30:76:E9:85:5F:9B:CA:30:17:A1:01:37:B4:43:EE:8C:52:8C:A9:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHbphV-byjAXoQE3tEPujFKMqVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e25269-cfc9-4848-b1e5-7f786bb34344/1/3GrmFHIimMv_yu1wVWESptQG8Ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/e25269-cfc9-4848-b1e5-7f786bb34344/1/MHbphV-byjAXoQE3tEPujFKMqVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.169.64.0/20
95.169.84.0-95.169.95.255
Signature Algorithm: sha256WithRSAEncryption
1b:8c:67:f4:e7:71:1b:2f:ca:c5:ae:87:28:35:e3:32:f9:9a:
b5:53:0a:e9:76:77:49:c0:15:51:e8:a2:96:00:ce:85:08:cb:
ce:c2:24:1a:92:42:c5:c9:a5:c6:ac:aa:cd:42:60:6a:6b:91:
76:a1:4c:a2:35:aa:0f:2d:6f:80:3a:c6:c6:2b:4a:1d:fb:cc:
1a:09:14:27:9d:24:3a:44:51:4a:c4:e4:42:9e:2f:1e:32:2c:
67:d3:5f:c0:32:da:dd:e3:34:9b:79:cc:48:be:db:46:d9:6b:
26:f2:1a:e6:69:6a:47:ee:07:6f:eb:6d:1e:0b:d8:03:6e:69:
b6:3d:0c:a3:16:54:9f:c0:2a:4d:56:61:4f:0f:fb:67:f0:a3:
73:7a:5c:19:b1:ab:ca:51:ab:94:35:f5:9f:fb:6e:45:43:8e:
65:cb:88:68:ef:a5:a8:dd:92:2a:97:62:51:f5:a4:9b:c8:ff:
0c:2e:14:c8:7f:e5:6c:1e:32:9d:dc:f0:3a:1a:b8:61:c2:6d:
87:fb:aa:57:08:bd:4c:e6:a7:e7:45:a7:ec:23:5e:08:9a:52:
4f:9c:af:7c:6f:c0:58:db:60:bb:eb:70:70:c4:a6:2f:90:78:
10:e8:03:1e:49:af:ec:53:bb:cd:19:1e:38:42:db:34:1e:ca:
37:2d:cb:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:47 2024 by rpki-client on console-fra.rpki-client.org