Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Kk_Ury12ilV9TqsNoqRDTkujexk.roa
File: Kk_Ury12ilV9TqsNoqRDTkujexk.roa (raw, json)
Hash identifier: aVIj1A3G+KeE/c/Oswi07PpRAFUqisM30P68LfFw05s=
Subject key identifier: 2A:4F:D4:AF:2D:76:8A:55:7D:4E:AB:0D:A2:A4:43:4E:4B:A3:7B:19
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0183C355B043B3D161A95BB674EEF55EDF61
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Kk_Ury12ilV9TqsNoqRDTkujexk.roa
Signing time: Mon 10 Oct 2022 19:18:36 +0000
ROA not before: Mon 10 Oct 2022 19:18:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209181
IP address blocks: 95.214.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c3:55:b0:43:b3:d1:61:a9:5b:b6:74:ee:f5:5e:df:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 10 19:18:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a4fd4af2d768a557d4eab0da2a4434e4ba37b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:92:ec:51:25:5f:e2:79:ba:13:66:7c:fb:fe:
3a:e8:c1:90:7f:64:be:ce:d1:02:0c:b8:f3:48:f2:
b5:88:00:ef:82:38:74:0c:22:d6:5b:3c:8d:e8:2a:
75:2c:ca:73:80:cc:02:43:ae:b5:6e:a5:d7:7f:94:
f5:88:21:47:37:9e:9a:15:d3:6a:6e:1e:2d:1f:d2:
7f:61:bb:ce:5c:e7:69:dd:03:77:55:10:bf:da:b0:
88:18:5d:2c:ac:71:a2:2f:02:fa:05:c5:39:d9:57:
63:27:e9:a1:65:43:0a:7d:4d:e5:68:65:1c:66:af:
cf:0c:4e:5e:ac:cf:4f:a2:a5:6f:8f:c3:b0:b8:53:
e3:0f:3f:04:28:a6:f2:7a:27:24:ea:7b:93:03:5f:
35:e1:77:0f:24:24:fb:86:71:85:fa:42:2d:ff:c3:
ca:3a:34:61:1d:bf:78:dd:70:5d:45:70:6e:35:10:
96:91:b4:60:ae:b8:a4:7c:50:ae:c3:a8:cb:ff:09:
07:0a:5c:15:3e:80:84:90:da:da:7e:4f:4e:2e:72:
55:c5:b4:1f:3f:de:8c:71:5d:b0:c3:54:05:8b:a5:
1a:e5:e2:7a:24:97:52:fb:66:a5:91:e5:63:5e:b1:
c6:02:a0:5d:72:89:03:8f:c5:aa:92:fc:e0:5e:13:
b7:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:4F:D4:AF:2D:76:8A:55:7D:4E:AB:0D:A2:A4:43:4E:4B:A3:7B:19
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Kk_Ury12ilV9TqsNoqRDTkujexk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.183.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:bc:20:b5:28:26:dd:a9:33:65:23:56:da:58:ac:6d:51:0e:
78:ca:a1:73:31:3a:1b:f3:01:16:83:ba:20:7e:2f:55:aa:91:
d1:01:94:6c:81:c0:43:88:ed:7b:6a:73:a3:67:fd:ce:e2:7f:
55:71:7e:3e:26:41:d3:1b:46:d0:07:98:b1:12:a4:b6:0a:91:
66:d3:7b:d0:f9:7d:a0:88:5b:c9:b6:65:2c:9b:fd:1e:86:ab:
53:83:bf:77:f3:89:44:75:b6:13:ff:31:ba:49:b2:04:ac:46:
6d:34:0f:f8:bf:56:e3:02:00:e1:8c:83:92:70:76:31:d3:93:
da:a4:11:d7:e7:49:92:3c:b6:65:e9:32:e7:ba:83:74:5f:78:
c8:22:12:45:68:0b:d6:11:68:fe:d0:35:56:d4:6f:15:fe:f8:
0f:a7:43:f6:be:d1:6c:d6:87:c7:b6:a6:b4:83:6c:bb:50:c4:
d6:14:41:02:04:ab:d6:19:f0:53:9a:92:02:31:79:a0:98:03:
22:c2:c6:87:ae:4f:be:8f:ab:26:4a:90:6b:fd:89:b0:24:a0:
b3:4e:36:0d:bf:ce:1d:4f:92:6a:c2:8e:40:5c:3a:90:db:0b:
f0:f9:a3:52:7f:85:8c:08:bb:e0:ee:62:ba:0e:37:8f:5b:1d:
f5:cf:9a:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org