Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Pe2M4BJHFqTb6ztiRPumFQjmEfA.roa
File: Pe2M4BJHFqTb6ztiRPumFQjmEfA.roa (raw, json)
Hash identifier: FkA8XpotUffFSASRk41Fb7VFPAnGZTj6QTavyrwlWvc=
Subject key identifier: 3D:ED:8C:E0:12:47:16:A4:DB:EB:3B:62:44:FB:A6:15:08:E6:11:F0
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0184F956B7D8F3AB733D9118D3568B26177B
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Pe2M4BJHFqTb6ztiRPumFQjmEfA.roa
Signing time: Sat 10 Dec 2022 00:02:00 +0000
ROA not before: Sat 10 Dec 2022 00:02:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 95.214.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f9:56:b7:d8:f3:ab:73:3d:91:18:d3:56:8b:26:17:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Dec 10 00:02:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ded8ce0124716a4dbeb3b6244fba61508e611f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:72:18:f9:df:70:72:f0:85:cc:ed:fd:d9:05:
c7:cc:63:aa:2c:6d:00:6b:e1:45:fd:63:c4:ad:f5:
42:48:8d:b2:02:24:74:5c:b5:0c:dd:87:1f:fd:65:
56:59:ca:84:63:3c:82:72:8c:87:54:9d:3e:83:04:
28:c7:9d:7d:35:80:cb:79:9b:e1:dc:87:01:e8:4a:
ef:09:35:a4:ef:cd:4c:fd:56:7d:64:d8:61:0c:f0:
5e:61:26:03:a2:90:41:6a:b1:ce:39:d6:ea:66:71:
b2:e7:29:05:47:51:66:cf:fc:13:59:2c:26:35:17:
df:4e:1b:d8:fa:2d:2a:43:c0:4e:1b:b4:c8:1a:09:
96:8d:a9:05:bc:31:a5:90:fb:73:8e:11:cc:20:38:
14:52:ae:a2:53:44:ca:5d:61:62:7f:ab:3e:e6:bb:
aa:50:61:29:97:5e:bb:d2:5a:89:b8:0c:3e:f4:d6:
58:27:83:0e:29:6a:59:0b:5b:b1:70:9e:64:fd:7e:
d1:b4:fa:04:54:39:b7:af:b1:f0:25:3f:17:42:b3:
39:26:08:28:da:84:32:43:08:be:07:d8:df:f2:98:
b9:81:cb:1e:ea:68:9a:02:e7:61:61:06:0e:04:10:
c5:17:06:21:58:68:8f:c3:de:31:ac:ef:a7:ba:96:
c3:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:ED:8C:E0:12:47:16:A4:DB:EB:3B:62:44:FB:A6:15:08:E6:11:F0
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Pe2M4BJHFqTb6ztiRPumFQjmEfA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.182.0/24
Signature Algorithm: sha256WithRSAEncryption
71:25:d1:d1:42:78:c8:20:d2:8a:61:4c:5f:6c:90:20:59:f4:
f3:e7:64:bc:22:e5:87:df:21:22:eb:e3:ce:80:a5:6f:51:b7:
73:5c:99:3d:51:6c:08:d4:26:b2:75:76:6a:b5:36:9a:6a:e5:
29:d0:f6:3c:b6:a2:d4:25:85:95:45:e2:fe:1c:13:81:28:bf:
22:6a:c3:23:3c:74:4c:92:b9:67:a8:3e:29:31:b4:db:c9:a7:
59:c2:10:3e:3c:4a:79:6a:88:f0:a2:5f:e7:48:97:67:32:7c:
a9:0b:c3:7b:01:9c:76:74:a8:ce:8e:2f:08:ab:04:1f:f8:78:
d4:66:06:37:14:84:c2:36:74:2d:bf:a8:3d:b4:65:e1:8b:8c:
00:9a:1e:64:15:fb:db:f1:1a:66:66:e7:41:70:2e:5e:e9:b6:
b0:16:18:9c:af:86:40:a1:33:40:63:b8:63:a5:2b:e6:b7:81:
4b:84:49:29:62:d8:07:01:96:91:59:6f:e5:1d:d4:8c:ac:3f:
b0:d2:5d:0a:bf:85:24:30:28:af:09:f1:8c:77:e6:f2:17:cf:
d3:c8:b6:fe:a1:38:98:58:07:f7:61:38:4b:2d:d1:18:33:9f:
5b:58:7f:9b:5f:9f:2d:8b:12:49:2f:2a:86:52:57:5b:ff:5a:
3d:cd:0f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org