Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/r8zwgK81_-hESRcLeKnR577OVTQ.roa
File: r8zwgK81_-hESRcLeKnR577OVTQ.roa (raw, json)
Hash identifier: Y1Imr4uK6yYKT86hEiAnW61aCCEBwoT8aQ0LR7cbxVE=
Subject key identifier: AF:CC:F0:80:AF:35:FF:E8:44:49:17:0B:78:A9:D1:E7:BE:CE:55:34
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0181D1D1114344DA629E4ECC9B465BAC34B7
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/r8zwgK81_-hESRcLeKnR577OVTQ.roa
Signing time: Wed 06 Jul 2022 04:42:28 +0000
ROA not before: Wed 06 Jul 2022 04:42:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 95.214.180.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d1:d1:11:43:44:da:62:9e:4e:cc:9b:46:5b:ac:34:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 6 04:42:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afccf080af35ffe84449170b78a9d1e7bece5534
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d9:3a:bc:e0:81:60:f4:25:03:fe:97:b0:ab:
29:1c:60:44:be:42:15:df:63:81:c7:91:48:49:64:
e1:88:ab:f2:fd:cf:8c:83:05:a3:cc:23:22:aa:e1:
20:69:da:5a:09:62:6f:36:d1:36:3c:b8:9f:69:ae:
fa:9e:5e:96:0c:bd:8a:9f:46:82:1d:9d:ba:cd:9d:
8a:e5:58:0e:12:dc:6e:69:7a:2a:8e:10:6b:b3:22:
92:73:3a:04:dc:78:64:ba:32:96:81:b0:0f:55:ff:
eb:b5:83:1f:a0:95:24:ef:ac:d7:8d:97:2e:6c:f1:
9c:e5:4b:85:d8:13:2f:f1:b1:84:60:70:c8:34:e0:
b4:ad:ac:f8:1e:cd:56:53:4e:4f:2f:ac:b5:ef:9e:
1b:9c:8c:37:d8:50:6f:b5:8f:c3:56:0d:21:a8:9b:
7d:76:4e:71:d9:e6:db:9a:62:2a:13:61:2f:cd:4a:
09:d9:39:92:43:3f:f7:a7:89:c1:3e:97:91:cf:9e:
23:ef:00:28:47:f0:47:77:f6:08:17:44:17:92:0d:
c7:5f:93:21:9e:50:ae:21:2b:bc:7d:16:55:dc:6d:
0b:1d:74:40:34:08:41:44:31:a4:98:10:4d:68:95:
ac:a9:fe:0a:62:af:95:e4:dc:17:83:2a:12:85:ad:
69:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:CC:F0:80:AF:35:FF:E8:44:49:17:0B:78:A9:D1:E7:BE:CE:55:34
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/r8zwgK81_-hESRcLeKnR577OVTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.180.0/23
Signature Algorithm: sha256WithRSAEncryption
20:43:2f:38:da:9e:f6:39:06:3d:71:0f:28:92:ad:dd:02:fb:
da:91:5d:71:db:fe:bd:64:10:62:82:32:ab:14:a8:ec:43:b2:
e0:82:4b:40:10:56:36:fd:6d:1d:7c:f9:c4:9d:10:53:54:a2:
16:3d:09:cb:4b:a9:c5:c3:d7:87:46:5e:bd:f3:c4:8e:0a:51:
19:e7:18:86:12:70:c2:54:b6:2e:d1:63:a4:31:1f:6f:12:f7:
d9:00:2c:5c:71:55:69:a3:1c:d6:e0:11:c2:7e:4e:e6:50:b5:
a5:5f:52:68:bd:3e:f8:96:8f:79:82:49:ae:fc:1b:af:84:61:
25:d1:a2:4a:6c:c2:14:a0:c5:c0:2b:db:67:48:7b:e9:1e:40:
28:c0:79:6b:c1:e4:07:df:a1:2c:da:c9:e2:4b:d7:dc:a5:8e:
18:a5:e6:fb:a0:91:78:60:69:82:fd:b3:b5:15:76:3c:ce:a9:
a5:4c:be:f9:52:c1:6d:f1:3f:55:fb:70:33:65:cb:e1:bb:c7:
9c:58:c8:42:e6:6a:ec:83:c8:92:57:47:2c:05:13:4b:09:84:
96:cf:43:80:da:3e:c5:62:45:32:35:1c:93:0e:db:8b:f4:66:
10:16:4a:af:ed:d6:b0:25:53:1c:6d:10:60:e9:34:ef:89:b8:
e3:a4:50:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org