Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/9j2v-sYxhMD26fWx2WIbCD3lkq8.roa
File: 9j2v-sYxhMD26fWx2WIbCD3lkq8.roa (raw, json)
Hash identifier: 9EKgO5aKfWlX7smDMDvr+8v0uKJtZiRdAkLsEqGM3Ac=
Subject key identifier: F6:3D:AF:FA:C6:31:84:C0:F6:E9:F5:B1:D9:62:1B:08:3D:E5:92:AF
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0183EFDC
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/9j2v-sYxhMD26fWx2WIbCD3lkq8.roa
Signing time: Thu 19 May 2022 13:04:00 +0000
ROA not before: Thu 19 May 2022 13:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 95.214.172.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25423836 (0x183efdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: May 19 13:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f63daffac63184c0f6e9f5b1d9621b083de592af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4a:80:45:64:e7:a2:b1:04:18:5f:a8:6d:c7:
16:1b:e5:34:ed:0f:49:cb:d8:11:35:83:2f:f7:52:
73:07:10:1d:cd:fa:26:3e:10:9e:54:a4:be:d7:a5:
88:45:f9:e7:a3:44:0a:8f:cc:60:04:2e:d6:68:b3:
25:1a:92:06:e5:6d:d1:31:99:4d:7e:89:a4:8f:f0:
fb:55:db:9b:37:28:6c:a1:1b:76:b6:6d:2d:09:7a:
02:ef:29:89:ce:5a:19:53:11:23:a3:f2:e6:57:09:
9f:54:92:9b:be:19:ff:ce:b6:db:7e:a2:ab:e9:b7:
81:13:53:f6:a5:8b:21:16:2a:3f:1b:b3:23:13:d9:
f7:9f:6c:28:51:a4:a1:6b:09:d6:e7:56:fc:bd:74:
7e:0c:0c:58:a8:ae:95:ed:a0:a6:0f:89:1b:95:9c:
44:c9:e7:74:90:b9:de:0b:27:2b:21:78:94:51:94:
a9:17:f4:1b:d4:d7:15:85:12:12:ac:94:02:27:ba:
7a:fa:a2:9d:dd:dc:82:63:c0:49:89:59:8a:dc:30:
a8:e6:70:2e:01:7e:a1:40:d3:37:1f:13:12:7d:54:
e9:02:ff:f0:bf:fc:9e:db:fd:42:45:ba:00:0b:33:
91:7b:44:d2:ab:08:99:12:52:01:3e:0b:e8:cf:ec:
90:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:3D:AF:FA:C6:31:84:C0:F6:E9:F5:B1:D9:62:1B:08:3D:E5:92:AF
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/9j2v-sYxhMD26fWx2WIbCD3lkq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.172.0/22
Signature Algorithm: sha256WithRSAEncryption
08:34:b2:1f:1a:b7:57:ab:69:f0:10:82:e6:4f:63:be:42:85:
c2:f8:40:c9:a4:82:09:14:31:5d:bd:72:89:82:d5:b9:fc:3b:
1a:d1:71:66:59:f3:24:f1:fc:22:ef:a5:71:cb:66:22:0d:30:
3c:a2:89:31:d0:8b:26:95:55:a2:7c:fc:79:92:e4:b6:48:da:
b4:67:11:80:a6:a2:1e:21:64:ad:2f:0b:d2:c1:16:98:30:32:
32:5b:38:0d:40:f1:61:08:9f:74:7c:44:da:54:0c:5e:89:4f:
68:dc:1b:fe:40:f5:8f:ca:e3:59:88:0c:5e:0a:7b:0b:e2:60:
95:0d:a4:fb:50:b1:94:8b:7a:1c:b9:d9:e7:26:cc:51:56:1d:
ee:d5:27:17:b9:5e:1b:56:c6:f2:f5:2b:1a:26:4a:fa:c3:ed:
b2:70:68:a6:ba:58:f8:5b:1d:48:f6:17:d7:ef:32:fc:11:53:
da:a5:bc:55:d4:f3:89:60:b7:51:cb:e2:ca:e7:13:52:e4:0c:
e3:6d:d8:a3:a5:56:28:ce:8a:1b:31:f7:43:e7:2c:5d:fb:13:
69:12:bc:64:8b:36:ee:ca:5f:b4:00:94:8c:fd:eb:c0:1b:4e:
98:a0:c2:61:13:6c:dd:db:fb:70:0a:d0:e7:dc:5b:7a:23:45:
77:21:70:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org