Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/pDRywI20DnTk__fSj4e6bl0XHdY.roa
File: pDRywI20DnTk__fSj4e6bl0XHdY.roa (raw, json)
Hash identifier: 2DqZlsAuJ426eGTSjoFAHVG9jQu6eyIcNj/wRr3uw3Q=
Subject key identifier: A4:34:72:C0:8D:B4:0E:74:E4:FF:F7:D2:8F:87:BA:6E:5D:17:1D:D6
Certificate issuer: /CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Certificate serial: 186496D9
Authority key identifier: B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/pDRywI20DnTk__fSj4e6bl0XHdY.roa
Signing time: Sat 01 Jan 2022 04:02:23 +0000
ROA not before: Sat 01 Jan 2022 04:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61157
IP address blocks: 95.174.80.0/21 maxlen: 21
2a04:2f80::/42 maxlen: 42
2a04:2f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409245401 (0x186496d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ffee7dbf7f4566ea9e30546b2c2a2e7336f2f4
Validity
Not Before: Jan 1 04:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a43472c08db40e74e4fff7d28f87ba6e5d171dd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:83:34:fb:10:cd:19:c9:b6:bf:30:da:15:23:
af:18:ec:9d:33:18:2c:9c:fc:c1:9a:1c:71:6c:3d:
f3:03:7b:73:49:af:1e:5d:16:8a:36:59:1e:bf:f8:
28:2d:4a:23:af:d2:91:3a:55:46:ef:d5:58:a3:c2:
da:9c:87:b4:de:78:ba:e4:40:bc:1d:bd:f0:ab:0c:
de:d5:9d:7b:8b:a7:44:6b:2e:4c:f7:a1:06:12:7c:
86:71:2b:a9:f4:95:18:ba:5d:6f:e7:a0:bc:e6:a1:
fe:e6:c8:03:02:e5:b9:1c:bb:ca:ee:ef:6d:02:d8:
9c:b1:1f:e4:14:79:bc:36:f2:0e:f0:fa:7d:30:40:
6b:d3:06:59:a3:9b:cc:36:39:8a:74:f6:11:cc:e8:
1f:28:e4:a3:d2:35:69:56:9f:20:30:9c:a2:21:e4:
5b:ee:c1:77:a2:2e:1c:4f:4d:e6:9b:34:c7:ce:68:
ef:70:b6:b1:88:80:43:e3:dc:29:2b:15:d1:fa:5e:
55:5d:5e:3e:4a:b0:c9:29:fb:d3:e0:d5:b4:9b:20:
6a:14:a4:db:0f:95:15:f1:9b:a0:68:9e:bd:09:05:
cf:7d:6a:44:39:26:03:b4:72:6e:17:85:88:f1:d9:
aa:0b:80:4e:71:3b:48:dd:ba:0e:e9:82:4a:ec:e7:
57:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:34:72:C0:8D:B4:0E:74:E4:FF:F7:D2:8F:87:BA:6E:5D:17:1D:D6
X509v3 Authority Key Identifier:
keyid:B1:FF:EE:7D:BF:7F:45:66:EA:9E:30:54:6B:2C:2A:2E:73:36:F2:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sf_ufb9_RWbqnjBUaywqLnM28vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/pDRywI20DnTk__fSj4e6bl0XHdY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fcbb2-c3c0-4b1e-8ad5-7f5f78346d6f/1/sf_ufb9_RWbqnjBUaywqLnM28vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.174.80.0/21
IPv6:
2a04:2f80::/29
Signature Algorithm: sha256WithRSAEncryption
5e:7a:b1:6e:96:39:3a:ed:3a:a2:fa:32:4f:03:17:eb:3f:6a:
02:3b:dc:71:a5:b2:ea:ed:f5:f0:4e:cf:68:e2:ed:c9:f0:17:
ba:8a:95:e2:0e:10:c9:3b:99:24:6d:d3:9b:72:f3:f3:31:c8:
30:2b:de:a1:f8:d4:42:63:60:fc:a5:3d:56:76:44:75:5e:dd:
55:ac:63:7a:9c:84:16:96:bf:5d:22:55:f1:18:d2:90:b7:24:
4e:23:45:60:72:38:21:72:aa:2c:13:d9:fe:4f:52:7b:6d:77:
46:2c:59:01:b7:aa:c5:f8:f1:a3:0f:eb:99:94:1c:4c:9c:89:
f0:c8:6c:e5:9f:6b:71:68:a7:ef:32:43:94:95:76:88:67:18:
3d:5c:5e:b1:de:1e:b8:e9:89:01:4d:6b:3f:a6:d7:79:ad:bd:
1c:78:1f:0b:d9:d8:5d:28:02:26:be:c8:49:11:78:6c:cd:52:
57:ce:1a:52:90:43:c9:a4:a6:b0:65:98:1b:02:e5:dd:5b:ef:
c1:c0:47:82:1e:c7:6c:22:b0:8f:09:c0:a9:fb:28:a7:f4:bf:
d7:1e:52:f0:e7:40:70:db:95:2a:c6:5d:79:15:6d:07:e4:af:
73:40:35:08:b7:02:3e:23:6a:b1:bc:f9:c8:49:c5:bf:a8:5c:
82:72:62:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:27 2024 by rpki-client on console-fra.rpki-client.org