Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/JqiVdn0arwMDl4WvL1RxebhWQ_g.roa
File: JqiVdn0arwMDl4WvL1RxebhWQ_g.roa (raw, json)
Hash identifier: iUR3GyGc+2kJ8sdg9piJccnydeEZ2GUDkXbzp5kdmYU=
Subject key identifier: 26:A8:95:76:7D:1A:AF:03:03:97:85:AF:2F:54:71:79:B8:56:43:F8
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01841A3A7C2EC7CA7B9E65F8B2596A818541
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/JqiVdn0arwMDl4WvL1RxebhWQ_g.roa
Signing time: Thu 27 Oct 2022 16:15:51 +0000
ROA not before: Thu 27 Oct 2022 16:15:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201978
IP address blocks: 95.214.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1a:3a:7c:2e:c7:ca:7b:9e:65:f8:b2:59:6a:81:85:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 27 16:15:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26a895767d1aaf03039785af2f547179b85643f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:fb:a6:e7:f9:c6:89:d4:a1:a3:c6:4b:2f:83:
a8:4b:c8:56:ac:cb:d9:f7:04:6c:7d:f8:9e:79:f4:
ce:02:d5:e6:34:7e:c4:dc:a3:e2:ad:d4:9c:b7:82:
ed:97:a6:10:75:da:88:30:f7:f2:01:86:b2:25:b0:
c7:8a:7d:61:02:78:74:1f:63:ec:05:d9:0c:e2:1f:
87:c8:78:11:be:53:70:f1:80:0b:4c:87:eb:31:ac:
44:9a:7d:35:ef:af:64:4b:e7:83:06:dc:0b:37:1b:
fb:bd:37:d6:f7:98:38:be:29:9c:07:67:1a:70:ee:
dc:2b:89:bb:4d:92:4a:89:18:35:07:c2:14:1e:b7:
bf:b9:1f:3f:25:a5:64:cd:88:94:64:3f:fe:af:92:
f9:4a:b1:7d:23:54:79:45:76:1b:20:57:49:8b:7c:
8e:12:6d:24:7e:2a:85:4b:76:48:72:24:a6:df:5d:
ac:58:20:66:fb:92:24:70:08:17:ce:71:9b:02:c1:
17:28:71:a5:dd:81:75:ad:1c:3d:f3:c7:61:1e:77:
86:b4:8b:9a:ee:4f:a4:cd:a0:a3:5d:4d:77:c1:3b:
2c:65:2a:c0:60:3b:00:54:59:33:88:1a:ce:15:3a:
27:9f:01:6a:cc:58:b8:ab:60:ec:10:b0:4e:ca:1a:
a1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:A8:95:76:7D:1A:AF:03:03:97:85:AF:2F:54:71:79:B8:56:43:F8
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/JqiVdn0arwMDl4WvL1RxebhWQ_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.181.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:ee:8d:9c:81:d1:a6:03:14:20:fe:3d:d0:13:0e:a7:05:41:
84:e3:92:64:5f:6a:34:ae:d0:9d:9f:13:8a:70:3e:b0:d9:a0:
24:60:80:c9:62:01:32:c7:63:6b:1e:d7:b5:47:98:c2:65:c8:
c4:a7:f5:ac:a5:f0:a8:95:94:30:c3:5d:ff:57:da:09:af:e7:
9d:28:f3:07:bf:39:bb:ef:48:19:33:2d:05:31:4d:1e:3e:10:
44:0b:87:fd:27:9c:a2:e1:0d:51:d7:14:dc:fd:67:6d:5f:6d:
93:26:56:08:85:6d:17:f6:32:39:56:5f:6a:1b:1b:3c:e0:df:
87:39:c5:40:a3:e4:06:99:68:64:18:03:e0:99:d0:b4:98:08:
44:80:09:06:23:0c:83:ad:19:a1:01:d6:e8:6a:e5:3d:3a:ab:
0b:45:fa:1e:ca:da:52:cb:f5:7b:c2:99:5e:ac:e1:84:b8:e1:
61:a4:e4:e4:3a:70:43:47:6b:63:51:2d:e0:52:c7:b4:9f:13:
4a:1e:d5:18:98:64:b3:3a:33:e5:2d:64:9b:5d:3d:e2:ea:0a:
47:a6:49:6d:eb:d6:fb:a2:16:df:70:b3:3e:81:72:af:af:c4:
9b:43:33:23:03:6c:e0:9b:21:0b:8d:5e:4f:54:d3:09:f9:9f:
21:04:67:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org