Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/9-__Ra1qiY2NCzCqc1W51eLE73M.roa
File: 9-__Ra1qiY2NCzCqc1W51eLE73M.roa (raw, json)
Hash identifier: 1Edeo8afwysiPYLpjxdhIUrzhCusqtc5/l7/iVpzoLU=
Subject key identifier: F7:EF:FF:45:AD:6A:89:8D:8D:0B:30:AA:73:55:B9:D5:E2:C4:EF:73
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 180217EF
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/9-__Ra1qiY2NCzCqc1W51eLE73M.roa
Signing time: Sat 01 Jan 2022 04:00:30 +0000
ROA not before: Sat 01 Jan 2022 04:00:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197050
IP address blocks: 95.43.232.0/22 maxlen: 22
213.16.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402790383 (0x180217ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f7efff45ad6a898d8d0b30aa7355b9d5e2c4ef73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d9:4e:b0:20:5c:bd:52:38:1c:46:0e:1e:00:
8b:ab:13:e7:67:56:7d:d5:9c:a0:e4:60:fa:73:2f:
23:26:0e:04:47:57:47:d9:dc:73:16:eb:e7:6e:92:
53:61:53:61:94:61:bd:d7:50:1c:e7:31:c6:df:15:
c5:95:9f:13:73:69:be:c3:b7:5c:0b:17:b2:e3:06:
93:12:34:d5:ef:54:32:d8:ad:cf:3c:d0:7d:53:bd:
31:d2:b0:7a:c5:ee:aa:ef:b4:b8:e8:b3:8c:ac:a0:
8a:43:ff:1d:65:14:69:f0:58:d0:ca:51:85:76:d3:
22:5a:0e:97:ec:62:49:c0:e2:42:dd:e9:10:66:0b:
dc:27:e3:ea:c2:4f:0e:19:40:56:7c:f2:2c:b7:ef:
60:e3:06:bf:7d:b7:65:1d:d0:bb:3d:52:5e:ab:c8:
39:de:11:1f:40:40:cb:99:4a:6a:c2:f2:33:cd:c5:
ef:cc:97:78:c0:8e:93:80:d5:a7:f4:ec:9c:cd:85:
60:5c:23:5b:08:bc:bb:62:69:d0:19:8b:63:35:1b:
2f:45:0b:23:01:9f:b9:3c:84:4d:a6:22:76:aa:19:
bd:d0:12:76:01:f3:64:42:24:49:ae:9e:93:1d:d7:
15:c6:7c:4d:b2:83:54:2c:3e:e5:2a:a7:bd:91:21:
71:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:EF:FF:45:AD:6A:89:8D:8D:0B:30:AA:73:55:B9:D5:E2:C4:EF:73
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/9-__Ra1qiY2NCzCqc1W51eLE73M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.232.0/22
213.16.45.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:5d:6f:1e:64:9e:a3:46:8f:bc:4b:ba:79:21:6c:e2:a5:3b:
80:3b:26:c7:20:07:ac:5b:15:8f:06:19:97:15:ce:e5:8a:7d:
0c:ef:d4:bc:94:39:2f:42:fa:fc:94:5d:8f:3d:6c:8c:a8:1e:
a1:f3:aa:28:63:64:82:b4:db:c4:85:5e:d4:a2:f6:df:eb:7c:
e6:38:de:44:f5:3e:6e:c5:d1:f1:0c:94:f4:7a:2a:6b:aa:96:
33:b7:82:90:72:42:4f:ea:24:16:f1:c2:4d:1b:46:3b:5e:d4:
13:87:2d:c3:22:59:9d:7e:0a:db:82:a4:34:db:b3:66:c2:34:
fd:4f:b4:5a:53:5c:c4:8e:70:a2:c0:fd:ce:35:a3:6b:8a:32:
9a:16:32:f6:24:6c:02:d0:3b:59:1a:06:b6:f1:e9:66:92:f8:
aa:aa:b9:11:9d:6b:d9:3f:e6:6d:71:ae:e3:2b:12:3b:d5:be:
70:8b:dc:ab:15:ec:b0:ef:e0:08:68:6f:b1:10:3a:25:ca:61:
21:12:bb:13:dd:10:07:f9:0e:d6:82:0b:63:a7:4d:7c:94:7b:
fe:c1:f9:8d:e0:0e:05:c5:7a:4c:31:93:35:8c:f3:a6:df:e0:
fd:f2:1e:1b:27:97:a3:81:1c:ab:3a:ba:52:15:a9:89:94:8c:
0e:d8:68:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org