Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Cav-ntIFmFO4JEkpFW0MMudvW5k.roa
File: Cav-ntIFmFO4JEkpFW0MMudvW5k.roa (raw, json)
Hash identifier: ptNvzvVVY9Knj4+/6o+wIvA02epv4vTRSeth7QoOMA8=
Subject key identifier: 09:AB:FE:9E:D2:05:98:53:B8:24:49:29:15:6D:0C:32:E7:6F:5B:99
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 02AE4C6C
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Cav-ntIFmFO4JEkpFW0MMudvW5k.roa
Signing time: Mon 14 Feb 2022 22:51:27 +0000
ROA not before: Mon 14 Feb 2022 22:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54903
IP address blocks: 95.164.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44977260 (0x2ae4c6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Feb 14 22:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09abfe9ed2059853b8244929156d0c32e76f5b99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b9:0e:27:de:e4:ba:bd:ea:f6:0d:08:5e:4b:
b6:2d:0d:7e:29:51:a7:df:16:0a:56:a8:e6:56:24:
3a:bc:a3:2f:85:f7:44:f4:60:8f:61:e7:ce:b3:58:
5b:8f:03:63:22:9b:f8:f2:a3:2d:0e:ea:10:08:43:
33:41:9a:52:8a:13:eb:03:95:bc:52:fa:67:93:9c:
48:40:09:0b:25:25:13:f8:5d:a9:a3:c5:62:e4:01:
6c:33:52:94:39:18:ed:8e:51:32:1d:76:53:10:7f:
be:15:d6:1b:2c:46:db:32:e7:a6:85:3d:ae:42:f8:
22:4d:5f:34:31:b0:88:c0:42:5b:72:7d:06:a7:e2:
20:8a:a6:6e:b0:32:3a:1e:69:59:b7:c6:df:0b:18:
4a:be:c0:d4:2f:b6:1f:5f:64:4c:77:1a:c4:8a:5f:
ee:5d:1e:06:52:9e:b1:17:5b:07:60:d5:35:82:b4:
0a:03:63:f5:60:f0:d1:27:91:bd:f1:ef:60:85:84:
48:ac:d7:2a:52:fa:c9:d5:f6:02:54:53:c7:88:1d:
36:e8:49:12:3c:d4:26:91:b2:69:34:b3:a4:ce:dd:
50:b3:ee:4e:dc:1b:e6:00:70:05:98:03:b4:4a:a4:
73:40:eb:0e:77:48:be:46:8a:8d:c7:90:5d:b1:44:
6e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:AB:FE:9E:D2:05:98:53:B8:24:49:29:15:6D:0C:32:E7:6F:5B:99
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Cav-ntIFmFO4JEkpFW0MMudvW5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.140.0/22
Signature Algorithm: sha256WithRSAEncryption
32:bf:70:16:6e:73:09:60:08:67:ff:d0:96:43:b1:24:aa:86:
e5:d4:1b:2e:78:3d:85:9f:cf:c9:cd:9f:89:fe:0b:75:08:4a:
b2:11:b9:e2:18:66:fe:c3:d3:43:cc:6e:25:39:b2:63:18:7c:
71:32:5e:10:f4:ad:89:32:e5:4e:3b:d3:8b:ee:4c:f7:d7:7c:
c7:ff:2f:04:b8:69:61:3a:61:85:73:01:bf:ca:07:56:44:5e:
4f:bc:dc:61:d2:93:60:ac:98:c3:68:af:f1:df:e9:5b:be:79:
32:41:b6:3b:d3:6d:53:29:7d:3a:d0:99:65:4c:0f:0d:f3:f0:
37:ba:96:6c:00:af:c2:50:b5:0b:39:aa:61:c8:45:8a:f8:1c:
31:e3:c6:a7:75:0d:be:cd:02:6f:43:d5:82:70:92:7a:d6:c3:
c5:a8:1b:12:4f:fe:43:d1:33:76:32:c1:b3:4b:9e:b2:8b:b2:
b9:dd:bd:b8:6e:ac:02:60:ce:53:3b:7c:e0:4a:68:72:ad:ee:
c7:50:d0:74:40:f6:df:4c:60:58:f6:3e:09:db:a4:11:69:3f:
9a:ed:e5:29:5d:79:9b:91:8e:f8:08:d9:77:f1:17:2f:4c:25:
1d:a3:e5:ce:62:1d:ce:c1:99:f7:23:37:02:85:49:ac:cb:c3:
d0:1d:82:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org