Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Fz-h-vmshzlzwX13JmWPX7gAoa4.roa
File: Fz-h-vmshzlzwX13JmWPX7gAoa4.roa (raw, json)
Hash identifier: CJr0EcPz0nTJtZuiZtgwhOEUhuigVrWFzXrhJXvt4hU=
Subject key identifier: 17:3F:A1:FA:F9:AC:87:39:73:C1:7D:77:26:65:8F:5F:B8:00:A1:AE
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01823756F9DFEA0C06F116D44F7E09C656A3
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Fz-h-vmshzlzwX13JmWPX7gAoa4.roa
Signing time: Mon 25 Jul 2022 21:50:23 +0000
ROA not before: Mon 25 Jul 2022 21:50:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203758
IP address blocks: 95.214.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:37:56:f9:df:ea:0c:06:f1:16:d4:4f:7e:09:c6:56:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 25 21:50:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=173fa1faf9ac873973c17d7726658f5fb800a1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2e:95:15:a7:fb:00:f1:0f:c1:0e:dc:0e:b6:
0c:8c:9d:a1:8b:bd:00:51:25:05:5e:7c:97:e1:2e:
b6:ec:e0:0c:53:43:a3:35:b5:7e:33:f2:a5:29:ed:
b7:cb:23:ee:ca:15:33:97:b5:a7:a1:71:b0:07:85:
e3:ca:56:98:ea:44:34:45:91:04:5d:bd:1c:1f:98:
01:56:b3:56:c4:6d:d4:12:51:91:87:cc:ff:b2:fe:
70:b7:09:53:7e:74:6a:66:df:bc:9b:d3:a7:d3:fb:
d2:e8:8e:8e:28:16:f4:86:83:58:3b:d7:59:98:28:
41:6c:0e:d7:21:1d:1f:54:8c:1f:1f:df:85:62:a0:
26:de:eb:42:e3:c8:f0:4e:87:76:82:b0:7c:96:c9:
a7:7b:7c:04:86:76:1d:08:d2:c7:d2:3e:0c:a6:99:
57:2f:08:d7:33:b5:a4:c8:b0:80:54:22:75:8f:18:
da:80:cf:b0:af:62:0b:8e:d9:1e:e5:ed:12:3c:b2:
b5:e7:86:01:48:27:1a:c6:b3:1d:d8:f4:69:f5:65:
17:e1:f9:b7:a5:26:02:5e:9c:5e:61:83:f7:b3:e9:
6f:49:f9:57:1b:75:1b:ff:af:5d:08:d2:16:77:78:
c0:e9:20:09:cb:6f:f0:f2:7a:c5:c4:40:1d:8e:e0:
55:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:3F:A1:FA:F9:AC:87:39:73:C1:7D:77:26:65:8F:5F:B8:00:A1:AE
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Fz-h-vmshzlzwX13JmWPX7gAoa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.180.0/24
Signature Algorithm: sha256WithRSAEncryption
87:5f:53:e7:03:1b:10:c0:0c:35:d0:e2:3b:bc:a2:d4:90:52:
a1:eb:d3:48:f4:8c:59:66:11:14:97:0a:4f:4d:c6:be:24:77:
7a:16:d8:80:74:d1:c3:f6:4e:5e:b2:f6:b1:41:19:bd:5c:39:
3f:22:63:d7:f2:35:da:a1:4f:d1:25:f6:e5:37:ec:0f:0f:0d:
d5:db:b9:c6:ac:ab:e5:2a:52:99:24:dd:d0:90:1d:c3:01:c8:
e7:d4:97:ba:e8:e7:67:ce:66:02:7e:93:fa:1f:f5:59:ae:3e:
fa:97:aa:ea:bf:31:c5:22:00:a5:d3:34:06:f6:c8:e6:6d:e0:
12:f8:b2:82:fb:54:7e:05:f6:01:2d:d8:bf:f9:01:8f:75:e3:
8b:7a:58:c4:d8:bc:4c:f4:75:f8:e4:3c:a9:9d:56:22:54:4c:
0f:e0:98:47:8b:8a:78:e0:61:d7:9f:cc:05:78:cc:0c:c9:f7:
8d:08:df:ff:0f:f0:d9:da:0a:b0:56:b0:89:7e:0f:9c:2d:e6:
b0:55:94:87:00:8f:6e:71:7e:8e:cf:de:6d:1e:f1:74:c5:71:
df:60:58:45:3b:57:75:cf:6c:cd:a8:0b:d2:73:88:06:bb:3a:
66:55:04:4a:28:7f:bf:f2:35:37:f3:8d:27:1d:7e:93:25:dd:
b3:ac:eb:38
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYI3Vvnf6gwG8RbUT34JxlajMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjIwNzI1MjE1MDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxNzNmYTFmYWY5YWM4NzM5NzNjMTdkNzcyNjY1OGY1ZmI4MDBhMWFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlS6VFaf7APEPwQ7cDrYMjJ2hi70A
USUFXnyX4S627OAMU0OjNbV+M/KlKe23yyPuyhUzl7WnoXGwB4XjylaY6kQ0RZEE
Xb0cH5gBVrNWxG3UElGRh8z/sv5wtwlTfnRqZt+8m9On0/vS6I6OKBb0hoNYO9dZ
mChBbA7XIR0fVIwfH9+FYqAm3utC48jwTod2grB8lsmne3wEhnYdCNLH0j4MpplX
LwjXM7WkyLCAVCJ1jxjagM+wr2ILjtke5e0SPLK154YBSCcaxrMd2PRp9WUX4fm3
pSYCXpxeYYP3s+lvSflXG3Ub/69dCNIWd3jA6SAJy2/w8nrFxEAdjuBVZQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBc/ofr5rIc5c8F9dyZlj1+4AKGuMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvRnotaC12bXNoemx6d1gxM0ptV1BYN2dBb2E0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAX9a0MA0G
CSqGSIb3DQEBCwUAA4IBAQCHX1PnAxsQwAw10OI7vKLUkFKh69NI9IxZZhEUlwpP
Tca+JHd6FtiAdNHD9k5esvaxQRm9XDk/ImPX8jXaoU/RJfblN+wPDw3V27nGrKvl
KlKZJN3QkB3DAcjn1Je66OdnzmYCfpP6H/VZrj76l6rqvzHFIgCl0zQG9sjmbeAS
+LKC+1R+BfYBLdi/+QGPdeOLeljE2LxM9HX45DypnVYiVEwP4JhHi4p44GHXn8wF
eMwMyfeNCN//D/DZ2gqwVrCJfg+cLeawVZSHAI9ucX6Oz95tHvF0xXHfYFhFO1d1
z2zNqAvSc4gGuzpmVQRKKH+/8jU3840nHX6TJd2zrOs4
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org