Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/1-ZOM1x2Il2xMhN3tdtW6wNcCnHg.roa
File: 1-ZOM1x2Il2xMhN3tdtW6wNcCnHg.roa (raw, json)
Hash identifier: BX/VA0HFW4Rt6ab7hkSflOTt0JGTXypKMR67NI+UvkE=
Subject key identifier: F9:93:8C:D7:1D:88:97:6C:4C:84:DD:ED:76:D5:BA:C0:D7:02:9C:78
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0322453D
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/1-ZOM1x2Il2xMhN3tdtW6wNcCnHg.roa
Signing time: Tue 05 Apr 2022 21:34:17 +0000
ROA not before: Tue 05 Apr 2022 21:34:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6461
IP address blocks: 95.164.0.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52577597 (0x322453d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Apr 5 21:34:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9938cd71d88976c4c84dded76d5bac0d7029c78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:29:01:f9:a8:8c:4d:99:48:da:db:1c:dc:3f:
d1:c5:45:b6:71:ee:2e:36:bf:bb:1b:02:cc:71:03:
a0:e5:3b:85:d9:20:f0:f2:e5:76:a7:ff:08:f8:f5:
c9:af:a6:63:48:fe:46:b0:90:a7:3a:c0:03:25:2e:
7b:76:dd:9e:56:74:d0:f6:d2:63:06:5b:20:dd:98:
72:d4:8c:64:11:b4:dd:75:12:03:6c:d2:aa:0f:6b:
d4:3e:c6:52:11:51:76:3d:3a:72:5d:9a:11:c6:89:
b6:86:3f:6c:1c:0e:b3:9b:b6:58:28:a3:c7:05:47:
34:8e:62:36:fd:31:17:c4:88:46:cc:6d:be:6e:23:
c3:9d:be:1e:49:ea:cc:01:30:5c:f3:8c:f6:dc:9c:
64:4d:27:13:1c:23:6c:ad:84:a3:a8:82:2b:9b:55:
de:19:5f:d9:ca:b6:d5:a0:49:21:e7:c3:04:af:68:
72:41:c7:c4:4d:e4:aa:a5:32:36:3e:2f:d6:56:ab:
a3:8d:bc:bc:11:68:4a:7b:34:0b:44:93:93:8c:ee:
ea:2c:08:94:10:fb:e6:00:49:14:21:98:c3:0a:b0:
08:b5:f7:ec:ea:b0:36:d3:bf:af:71:64:cc:cd:4b:
8c:f8:df:5f:ea:92:07:fa:1f:55:89:5c:a0:8f:ae:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:93:8C:D7:1D:88:97:6C:4C:84:DD:ED:76:D5:BA:C0:D7:02:9C:78
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/1-ZOM1x2Il2xMhN3tdtW6wNcCnHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.0.0/21
Signature Algorithm: sha256WithRSAEncryption
47:90:f8:79:9f:de:60:81:1e:bf:e5:e8:c2:82:78:e4:ae:6f:
93:12:70:46:9e:7d:3c:6d:55:d4:87:a3:99:0c:49:73:d6:3f:
b1:59:1e:50:da:21:72:2d:3a:02:07:6d:42:32:c6:d8:44:09:
75:43:87:66:c3:fc:0e:8c:ce:01:2b:8f:df:9d:16:de:ee:7d:
6e:1f:87:6f:eb:88:8a:a2:25:bd:0b:9a:51:9d:3a:88:a2:ef:
d3:0b:a7:0d:cb:bb:53:64:d7:29:2c:65:e3:17:c1:5d:09:21:
79:87:d4:40:01:d0:4d:ba:87:fa:b9:9c:5e:0c:53:1c:fc:79:
64:a1:39:28:61:0e:4e:f5:22:70:f6:78:84:46:dc:d6:03:2c:
97:91:bc:85:ff:ab:e1:b1:4f:f1:0f:7f:db:f4:62:15:ab:16:
6f:48:6e:bd:15:08:96:d4:11:2a:e7:d5:ce:11:48:a2:67:6a:
2e:8b:b6:76:14:ad:0f:5b:45:d9:28:a0:7f:32:03:2a:8c:d2:
f0:51:52:d8:29:c5:7f:ce:95:59:56:27:07:63:7f:69:d3:ec:
be:2c:0b:fe:02:92:11:07:67:f8:43:c7:ae:10:fd:7c:d6:26:
0e:a4:2c:0d:60:f7:5d:45:aa:71:78:fc:b2:38:a4:a4:8f:9c:
86:78:b8:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org