Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/tpGEY7wigD2N0aFy0uhekrUGG5M.roa
File: tpGEY7wigD2N0aFy0uhekrUGG5M.roa (raw, json)
Hash identifier: 8goAvWUfn99jJPMFisx8/vCFX+aQ6Ss3VpSpUgwsJQc=
Subject key identifier: B6:91:84:63:BC:22:80:3D:8D:D1:A1:72:D2:E8:5E:92:B5:06:1B:93
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01830E9787F79E070E21478331F5C3727976
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/tpGEY7wigD2N0aFy0uhekrUGG5M.roa
Signing time: Mon 05 Sep 2022 16:59:15 +0000
ROA not before: Mon 05 Sep 2022 16:59:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 95.214.181.0/24 maxlen: 24
185.115.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0e:97:87:f7:9e:07:0e:21:47:83:31:f5:c3:72:79:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 5 16:59:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6918463bc22803d8dd1a172d2e85e92b5061b93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:78:55:43:b2:d7:cb:ef:93:8e:9f:fd:fb:4d:
be:05:7d:49:50:ed:49:5a:70:e5:2f:6a:1d:72:98:
0b:3b:ae:9f:f5:80:71:7a:b4:b5:27:3e:56:1c:19:
54:b3:f2:40:40:cc:74:23:c6:79:b4:cb:7e:9f:79:
00:9f:b3:46:4a:ca:bf:68:ab:bb:94:dc:b7:77:1e:
d6:33:e1:04:67:4b:9b:e2:d0:ba:2c:7a:de:4a:d1:
3c:ac:5c:5f:86:09:60:71:9b:f7:36:46:ba:64:6c:
1f:79:51:07:46:24:9b:73:6c:00:37:8b:2c:80:34:
fb:cf:c2:99:a1:5e:2c:78:5a:2f:49:c0:09:62:40:
48:0a:8e:5b:4a:f4:52:18:08:cf:6c:2b:15:17:8e:
24:a7:bd:40:11:cd:75:ac:e0:5e:2b:b4:6c:d8:75:
f1:e5:3e:14:85:6f:0c:b5:ba:c6:3c:d9:ed:4d:74:
80:5b:47:97:99:4a:9c:9d:62:08:3a:0e:a6:71:1b:
21:5f:7a:f8:9f:3d:88:4c:0d:4f:2e:58:92:51:4d:
96:b4:5f:35:59:fe:ce:18:8e:d1:f2:a1:e7:98:a0:
1b:a9:cd:ea:c9:f8:7f:5a:59:f0:d0:d9:75:89:83:
cb:e9:df:b0:eb:0a:10:93:b0:b5:2e:c0:41:0b:69:
17:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:91:84:63:BC:22:80:3D:8D:D1:A1:72:D2:E8:5E:92:B5:06:1B:93
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/tpGEY7wigD2N0aFy0uhekrUGG5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.181.0/24
185.115.207.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:69:2e:5e:92:1b:23:f0:72:91:19:9d:c0:37:17:c6:9a:d8:
c5:55:97:f4:b6:8c:26:ca:1a:65:71:6b:45:98:f0:da:82:f0:
de:b1:3e:2b:f9:d3:d3:56:cc:a9:72:1c:5f:30:0a:5c:74:47:
b5:ce:e7:4d:4e:c3:9b:6a:6e:de:34:fe:48:55:e6:e1:a8:f3:
cd:27:56:1d:7b:13:bd:35:44:a8:75:45:7d:c0:97:75:98:77:
1f:da:57:4d:9f:af:fc:28:9b:8d:61:39:2a:5e:de:a4:f8:de:
79:17:5c:42:b0:59:00:61:61:a8:fd:00:3c:ff:29:82:44:2a:
6a:58:a9:c4:83:84:96:fd:17:8f:fc:58:8e:f0:48:cc:fa:99:
bf:32:f0:a3:ef:7e:ca:97:83:8e:71:e2:f8:0a:8e:3e:cd:f1:
73:1b:04:2b:48:c7:75:a4:03:ac:03:5c:6f:07:86:a6:a3:1b:
4b:39:41:e2:9f:6b:81:d4:bd:75:70:60:16:11:f5:ea:fc:4f:
16:a0:b1:11:2b:ad:dc:25:41:30:1d:a7:1f:03:99:d4:95:38:
74:eb:59:13:93:8b:06:06:f7:be:8a:62:50:e2:f8:93:33:61:
81:7d:14:3f:ad:6d:a5:88:16:b7:b5:65:91:71:38:6f:3f:88:
66:b6:1e:73
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYMOl4f3ngcOIUeDMfXDcnl2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTA3YWI2OTIxZWY4Y2IyZGVjYTNlYjc2NjQ3OGNmZjNl
NWZjNmQwHhcNMjIwOTA1MTY1OTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNjkxODQ2M2JjMjI4MDNkOGRkMWExNzJkMmU4NWU5MmI1MDYxYjkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo3hVQ7LXy++Tjp/9+02+BX1JUO1J
WnDlL2odcpgLO66f9YBxerS1Jz5WHBlUs/JAQMx0I8Z5tMt+n3kAn7NGSsq/aKu7
lNy3dx7WM+EEZ0ub4tC6LHreStE8rFxfhglgcZv3Nka6ZGwfeVEHRiSbc2wAN4ss
gDT7z8KZoV4seFovScAJYkBICo5bSvRSGAjPbCsVF44kp71AEc11rOBeK7Rs2HXx
5T4UhW8MtbrGPNntTXSAW0eXmUqcnWIIOg6mcRshX3r4nz2ITA1PLliSUU2WtF81
Wf7OGI7R8qHnmKAbqc3qyfh/Wlnw0Nl1iYPL6d+w6woQk7C1LsBBC2kXDwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFLaRhGO8IoA9jdGhctLoXpK1BhuTMB8GA1UdIwQY
MBaAFCgQeraSHvjLLeyj63ZkeM/z5fxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzIt
YzBmYjNlZjc2NDBlLzEvdHBHRVk3d2lnRDJOMGFGeTB1aGVrclVHRzVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi8wODgyNmUtNzdkMC00MzdiLWExYzItYzBmYjNlZjc2NDBl
LzEvS0JCNnRwSWUtTXN0N0tQcmRtUjR6X1BsX0cwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAX9a1AwQA
uXPPMA0GCSqGSIb3DQEBCwUAA4IBAQA8aS5ekhsj8HKRGZ3ANxfGmtjFVZf0towm
yhplcWtFmPDagvDesT4r+dPTVsypchxfMApcdEe1zudNTsObam7eNP5IVebhqPPN
J1YdexO9NUSodUV9wJd1mHcf2ldNn6/8KJuNYTkqXt6k+N55F1xCsFkAYWGo/QA8
/ymCRCpqWKnEg4SW/ReP/FiO8EjM+pm/MvCj737Kl4OOceL4Co4+zfFzGwQrSMd1
pAOsA1xvB4amoxtLOUHin2uB1L11cGAWEfXq/E8WoLERK63cJUEwHacfA5nUlTh0
61kTk4sGBve+imJQ4viTM2GBfRQ/rW2liBa3tWWRcThvP4hmth5z
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org