Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/KvI-rBscwc_fYES3oAMB-pu8gSE.roa
File: KvI-rBscwc_fYES3oAMB-pu8gSE.roa (raw, json)
Hash identifier: BY8VPfUlBA7cWnQIC/3VsRHA04Mm7vXdmSiCw9RHuwM=
Subject key identifier: 2A:F2:3E:AC:1B:1C:C1:CF:DF:60:44:B7:A0:03:01:FA:9B:BC:81:21
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17DE5411
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/KvI-rBscwc_fYES3oAMB-pu8gSE.roa
Signing time: Sat 01 Jan 2022 03:59:50 +0000
ROA not before: Sat 01 Jan 2022 03:59:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8734
IP address blocks: 95.43.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400446481 (0x17de5411)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2af23eac1b1cc1cfdf6044b7a00301fa9bbc8121
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ec:fe:7d:18:d0:14:50:47:6c:96:1a:48:33:
22:6f:15:dd:19:4f:7c:40:8c:67:b3:d4:47:a0:14:
d1:48:38:30:c3:73:96:cd:79:c7:9e:33:a5:89:3f:
21:d8:8e:38:1e:f2:0a:d4:58:0e:37:1e:53:86:24:
d5:d9:ce:15:65:2f:63:bd:64:05:ca:fb:bf:62:79:
a5:6e:73:d8:00:d2:22:28:f5:f2:5e:4e:15:6a:1b:
d2:39:91:7a:9c:17:63:f3:fe:1d:94:10:d1:41:4a:
2e:fb:4f:49:27:5e:2e:c0:32:59:56:ee:9f:6e:e9:
53:c0:57:e1:13:46:a5:19:63:e5:28:bf:ad:4d:66:
a6:ac:86:49:da:d3:49:7d:ea:40:33:32:d8:f5:b8:
b4:70:7f:b4:9b:10:41:cf:0e:c9:b8:33:c5:a9:d4:
12:e8:c9:f4:24:13:9a:7b:5e:1a:41:6b:fd:3b:99:
c1:a4:bc:99:b8:99:79:76:6b:3e:d8:58:e4:fb:e1:
b4:9c:79:29:fc:e1:57:1b:61:3d:2e:d0:29:78:93:
cd:42:05:bd:b2:db:f8:43:a9:94:31:f6:78:de:10:
35:4c:d1:7e:a6:9c:a7:7d:1a:f8:f2:16:77:ed:56:
af:ed:09:a5:54:51:41:9d:51:db:be:77:70:ac:3e:
24:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:F2:3E:AC:1B:1C:C1:CF:DF:60:44:B7:A0:03:01:FA:9B:BC:81:21
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/KvI-rBscwc_fYES3oAMB-pu8gSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.206.0/24
Signature Algorithm: sha256WithRSAEncryption
86:2a:3b:9d:29:48:f1:5d:9a:ac:9e:11:ee:c2:0d:2d:c0:23:
67:29:13:3a:4e:24:7d:e4:77:ae:fa:bb:57:2a:6f:2d:6d:46:
c7:9a:8f:e7:61:ce:4b:bd:f6:4d:49:db:6d:5f:02:1b:f5:cc:
fc:c5:75:94:fb:2c:90:64:4e:2a:7b:a5:ad:f6:05:4d:0c:fd:
b8:21:a9:59:b4:65:cb:75:f6:af:80:17:8c:37:b9:b0:f2:e5:
87:af:e0:55:8a:75:56:cf:dd:ab:9c:0e:01:7a:d7:f9:6d:72:
40:98:d3:f4:da:d9:67:d3:a5:21:30:6b:39:01:44:a3:7f:04:
1e:45:c0:39:57:56:3e:c6:1b:93:d4:68:1c:92:5c:24:cc:ce:
66:e6:7f:d7:91:0a:92:56:c2:6e:1d:15:e0:36:c0:36:32:a9:
30:bb:42:b9:2f:2a:b6:33:1b:31:0c:0a:51:71:b5:7e:74:53:
d2:31:c5:cb:66:40:d7:2e:d0:30:0c:53:f4:95:be:27:b2:dd:
bf:a7:c4:8c:55:b3:a0:85:08:0a:0a:c6:09:38:41:78:02:85:
ba:8b:95:7f:8b:d2:6b:19:2a:be:19:06:bf:38:fc:6b:52:8b:
02:ea:25:23:88:53:03:c9:1a:89:ef:20:97:09:ee:ac:03:c1:
36:f7:e0:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org