Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7krl02bxebBnTdi3740sGsxO1hw.roa
File: 7krl02bxebBnTdi3740sGsxO1hw.roa (raw, json)
Hash identifier: XVfgDGMEatemaXSdJCl7aopykZ+KiZnPfhHQIFoQBHQ=
Subject key identifier: EE:4A:E5:D3:66:F1:79:B0:67:4D:D8:B7:EF:8D:2C:1A:CC:4E:D6:1C
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 141A1085
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7krl02bxebBnTdi3740sGsxO1hw.roa
Signing time: Thu 24 Feb 2022 07:13:54 +0000
ROA not before: Thu 24 Feb 2022 07:13:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209896
IP address blocks: 95.214.152.0/22 maxlen: 22
45.86.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337252485 (0x141a1085)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Feb 24 07:13:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee4ae5d366f179b0674dd8b7ef8d2c1acc4ed61c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:4b:cb:6b:2a:cd:cd:3e:cb:8a:b4:17:5b:ee:
c1:71:3c:c8:da:b7:46:97:4a:67:08:88:5c:f6:48:
6a:ec:5c:bd:b8:0d:db:81:e6:10:e0:28:3f:8a:04:
c1:d1:6d:63:cf:9c:e4:e0:90:6e:29:53:10:b8:ef:
ba:f2:36:ba:8b:c4:ea:e8:ac:4b:0f:84:00:5a:de:
9c:ea:da:aa:2d:63:b1:74:b7:a0:8b:38:49:a8:ff:
89:90:64:38:e8:97:4a:aa:88:03:eb:e0:5f:a6:23:
55:a2:0f:63:ba:ec:c3:59:4f:5a:92:58:77:3f:4c:
ba:d6:e4:63:97:04:e6:69:72:4f:e1:79:6d:6a:c0:
92:8c:2e:47:b3:49:23:6a:52:6f:d8:4d:c0:0a:cb:
69:72:3f:0e:e6:1f:5d:54:43:c7:bb:ff:f6:4c:ee:
92:b7:65:42:33:e3:cb:29:81:dd:ff:f7:a9:11:a3:
8a:b4:2c:31:e6:8f:bd:5e:84:d3:be:fe:11:96:91:
52:56:8f:52:04:bc:bf:20:41:83:a1:9a:3a:f4:a4:
90:06:35:35:c2:dc:aa:4d:7d:9d:d2:09:75:5c:18:
7a:11:ed:42:c3:73:a4:1e:d7:bf:85:63:d5:2c:da:
3d:b9:1c:29:19:f2:29:71:26:52:8c:a4:b5:8d:73:
60:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:4A:E5:D3:66:F1:79:B0:67:4D:D8:B7:EF:8D:2C:1A:CC:4E:D6:1C
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7krl02bxebBnTdi3740sGsxO1hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.20.0/22
95.214.152.0/22
Signature Algorithm: sha256WithRSAEncryption
74:6f:0a:4d:a2:43:94:3e:73:f9:50:94:e2:1c:5e:8b:85:80:
b8:42:f9:56:39:5d:92:26:3a:42:ec:93:a9:d6:67:92:76:50:
8f:0a:e7:08:49:79:63:a9:1a:d9:30:8a:0f:7c:1f:34:6a:95:
fe:0d:6a:c7:f1:32:8d:55:53:a5:1e:e8:04:40:72:db:e8:db:
ba:a7:91:99:c3:fc:3f:20:15:11:de:7d:e0:ce:48:f0:b6:9b:
0b:f4:16:e7:ad:37:2a:17:ec:49:e2:db:2e:12:ba:c4:2b:4d:
e2:7e:b5:0f:7d:78:fc:16:b8:5a:b3:18:96:10:fa:56:55:ed:
e2:45:af:80:cd:69:6c:ac:ae:bf:c6:cc:ad:75:37:c9:51:3d:
4d:2e:82:96:73:b8:11:3e:e5:c3:ed:52:4a:a3:cd:b8:9c:11:
ca:2e:9e:28:3a:00:4f:22:47:32:b3:d2:29:2d:b2:f2:c3:22:
48:cb:92:54:3b:84:1d:b1:ff:f3:7a:aa:5f:87:87:f7:06:7d:
ab:f5:3a:f6:41:af:a4:df:d7:72:1a:63:55:36:84:f2:91:dd:
ad:74:e4:d6:a9:31:f8:81:af:47:f4:44:48:a4:f1:2b:dd:76:
5e:d5:58:b4:09:68:96:cd:ba:d2:ec:2d:db:74:43:75:ca:a8:
ac:fd:6a:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:26 2024 by rpki-client on console-ams.rpki-client.org