Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/8c-PGQX-Eku4lX91tbFXxYpbyEc.roa
File: 8c-PGQX-Eku4lX91tbFXxYpbyEc.roa (raw, json)
Hash identifier: lkJhJOF+YfedHSC1qUwlkta3LAqwz0lDMFoprxLSpss=
Subject key identifier: F1:CF:8F:19:05:FE:12:4B:B8:95:7F:75:B5:B1:57:C5:8A:5B:C8:47
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01868AE4
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/8c-PGQX-Eku4lX91tbFXxYpbyEc.roa
Signing time: Thu 19 May 2022 13:05:29 +0000
ROA not before: Thu 19 May 2022 13:05:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 95.214.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25594596 (0x1868ae4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: May 19 13:05:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1cf8f1905fe124bb8957f75b5b157c58a5bc847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:ad:44:fd:d0:ea:28:b2:b7:60:fb:2e:34:74:
9b:e4:01:ab:bd:e7:63:0e:7f:b8:58:46:f0:ce:ed:
eb:a6:a9:11:c8:72:22:66:4d:d5:d1:7e:be:cf:91:
eb:ea:b7:51:46:a3:df:98:a8:4d:48:69:d3:8b:c7:
38:f3:8f:c8:85:53:e7:fe:aa:07:97:8a:4c:09:63:
4e:fd:e9:f0:49:29:a0:85:ed:c3:9f:1b:ce:4d:1e:
94:e1:c6:0a:1f:9a:4a:30:b8:85:57:2f:87:b9:53:
fd:d0:40:7b:c3:33:60:07:d2:1a:bc:dc:00:c6:1c:
f4:73:50:ac:42:66:fb:50:d0:c6:24:4e:e3:9e:f5:
54:11:5f:36:7f:0f:23:51:3a:d7:76:c3:6e:6e:2a:
cb:a8:f4:c5:d8:c5:da:5b:11:40:f1:4b:11:d5:f8:
e6:34:c7:dd:35:0b:41:9a:d0:aa:28:f9:99:7b:78:
82:25:94:a8:02:c1:cd:2f:ca:2b:6f:68:18:38:35:
b9:1b:88:9e:2d:76:7d:97:e7:3d:5e:65:2b:c5:af:
f7:79:86:c4:58:6b:f1:bb:e0:4e:44:d1:67:b5:39:
f6:a8:6e:92:40:97:44:d6:46:b9:82:be:61:0f:ac:
4c:7a:74:40:96:2d:16:e6:5a:8f:80:aa:f7:69:ab:
56:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CF:8F:19:05:FE:12:4B:B8:95:7F:75:B5:B1:57:C5:8A:5B:C8:47
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/8c-PGQX-Eku4lX91tbFXxYpbyEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
75:d9:20:71:34:90:db:18:83:2d:ce:0d:7f:47:1d:dd:ee:38:
ae:e2:d0:b3:14:a5:9b:81:94:04:11:0b:d3:d1:6d:8f:9b:da:
62:1c:be:ce:5f:ea:89:91:64:e7:d0:ef:f0:31:ce:22:d4:e5:
43:af:86:32:8b:92:b8:bb:93:8d:c1:7a:5b:95:59:43:03:eb:
3a:36:04:28:68:7b:9c:79:c5:af:ea:5a:fd:b8:fa:d1:fb:48:
b0:32:06:94:24:09:b1:6f:e4:3e:bf:1d:b9:06:dc:64:68:d1:
e2:94:cb:06:50:b2:07:87:56:37:c4:20:a2:84:f4:8d:24:2c:
5a:64:b7:47:ad:34:62:a5:a9:39:50:e7:9a:ac:a4:fb:28:25:
57:ce:79:5c:e1:c2:73:da:ea:d8:91:bb:a2:91:12:77:04:a2:
8c:b3:4b:c8:46:30:91:78:60:5d:a9:3e:b5:52:3b:85:e7:95:
e5:94:eb:9b:d4:02:e5:3a:d1:45:3d:fc:c6:aa:0c:52:91:cb:
a8:53:1c:c6:fd:5e:a9:2e:41:7c:7d:6d:45:5b:dc:36:fe:3a:
92:e6:53:14:2a:5c:27:86:ba:b8:3b:da:04:87:63:ef:4b:bc:
36:14:dd:c5:3f:a5:72:60:08:00:e3:27:96:32:1d:65:60:7a:
06:61:15:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:14 2023 by rpki-client on console-ams.rpki-client.org