Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/HX3BhBMv6wk0UbxhkPyP2Bqmfkg.roa
File: HX3BhBMv6wk0UbxhkPyP2Bqmfkg.roa (raw, json)
Hash identifier: OnPkhxo1V35fOrV8Y3bmWWGkrVKVKbX5i+exQyOWJ+M=
Subject key identifier: 1D:7D:C1:84:13:2F:EB:09:34:51:BC:61:90:FC:8F:D8:1A:A6:7E:48
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0182360C78EB45040B616A33210339E8293B
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/HX3BhBMv6wk0UbxhkPyP2Bqmfkg.roa
Signing time: Mon 25 Jul 2022 15:49:23 +0000
ROA not before: Mon 25 Jul 2022 15:49:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 95.214.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:36:0c:78:eb:45:04:0b:61:6a:33:21:03:39:e8:29:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 25 15:49:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d7dc184132feb093451bc6190fc8fd81aa67e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:95:d0:6e:93:be:26:e1:d5:a5:8a:1b:bb:63:
0f:40:87:0f:8b:98:5f:e6:9a:73:21:c2:9d:c5:50:
fc:d2:ff:8d:cd:a0:9e:45:61:61:13:d6:30:8c:24:
a9:1a:98:b7:3d:6c:6f:1b:0c:1c:ef:be:12:ba:df:
6c:30:a8:79:cf:3c:14:b4:7f:08:28:dd:4a:c6:fc:
7f:a0:d1:0e:2e:b2:0d:46:f6:0a:69:f9:5d:04:e1:
bd:3c:dd:90:55:d5:39:9c:e1:54:46:ef:9b:b0:1b:
ff:a3:f7:83:d0:cd:41:96:76:df:71:2a:56:37:cb:
26:43:48:ce:0c:d4:ae:b4:10:9b:83:11:8b:6e:7a:
ec:f7:55:27:d6:80:91:bc:b9:b0:d5:ec:53:fb:01:
78:b8:f8:67:2e:27:a6:07:76:36:a1:d2:81:f9:1f:
eb:79:ef:4e:1e:4c:d2:75:8f:50:5a:71:0f:92:97:
32:8a:a4:5a:d5:45:4d:c6:af:78:4a:34:8e:21:65:
f8:a3:66:f0:d3:52:1a:6d:84:09:4a:3c:08:ec:c1:
ee:8f:55:a5:26:01:d8:62:ab:d2:35:6f:8c:41:c3:
d1:b9:41:3c:65:d0:20:54:80:14:01:a6:7c:72:7c:
e4:ac:de:ab:7b:a1:ae:6c:4f:3d:e7:6f:03:7c:23:
0a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7D:C1:84:13:2F:EB:09:34:51:BC:61:90:FC:8F:D8:1A:A6:7E:48
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/HX3BhBMv6wk0UbxhkPyP2Bqmfkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.181.0/24
Signature Algorithm: sha256WithRSAEncryption
93:99:85:aa:72:e0:34:8b:1f:2d:37:c1:bd:5b:8e:12:3c:55:
b1:ab:b6:40:3d:ab:96:16:74:ec:ed:f7:cf:8d:4f:36:2c:45:
7f:c4:25:62:1c:99:1c:c3:60:79:1c:84:8d:e6:e3:f5:18:64:
d3:e7:25:1c:dc:6f:fc:55:f8:b4:71:c5:95:7f:92:ff:67:5f:
9a:97:f0:a9:49:40:d1:00:c0:e5:7c:a9:79:e9:d1:5b:46:97:
89:b5:92:6c:10:b5:60:fb:52:ae:1e:d4:c9:9a:27:58:4e:42:
c6:07:55:c2:c3:94:ea:37:3b:50:a7:05:7c:e1:96:dd:b9:32:
87:ef:22:08:84:d8:aa:22:08:e1:2c:86:cd:4d:15:39:34:e5:
24:b7:ee:2b:97:64:fa:f6:8d:b4:e8:19:a5:80:8f:df:d6:9e:
7e:de:32:61:cc:a8:66:b1:bb:ab:a3:9b:f4:8a:b1:f8:2d:36:
40:87:ee:62:b4:61:19:18:75:aa:d6:51:2e:6a:2b:b9:71:bf:
07:68:3c:e3:c0:a1:d5:22:a7:79:9a:d1:ee:8d:b6:44:db:d2:
47:11:b5:b9:1f:e8:1f:9c:84:db:a8:46:87:39:b5:62:3b:8b:
44:82:8a:2b:50:ae:64:98:51:67:2a:69:1d:20:20:b4:b1:43:
77:29:59:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org