Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/XHKWvJu6FI_4RButriAm4Fs3nGE.roa
File: XHKWvJu6FI_4RButriAm4Fs3nGE.roa (raw, json)
Hash identifier: Sryu9PGiqsZQrWFVSV6wuNwz6r8jcgyI65a2TQTps+c=
Subject key identifier: 5C:72:96:BC:9B:BA:14:8F:F8:44:1B:AD:AE:20:26:E0:5B:37:9C:61
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 02430E99
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/XHKWvJu6FI_4RButriAm4Fs3nGE.roa
Signing time: Sat 01 Jan 2022 05:56:46 +0000
ROA not before: Sat 01 Jan 2022 05:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397044
IP address blocks: 95.164.228.0/22 maxlen: 24
95.164.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37949081 (0x2430e99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 05:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c7296bc9bba148ff8441badae2026e05b379c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:94:e1:34:62:db:bd:0e:40:1f:86:4c:45:db:
24:2b:ce:81:7b:86:83:e6:ff:ee:dc:55:44:e4:72:
cd:e3:49:0c:54:54:bd:89:b0:65:22:42:42:14:5b:
b8:c8:58:dd:4b:8a:1f:8c:b8:47:8b:25:b7:d0:de:
a6:f3:d4:4d:36:4e:ed:b8:89:3d:e2:b1:56:c0:f5:
35:8e:22:ed:7e:87:70:ec:6a:bf:aa:38:9a:7b:da:
59:6a:e1:ac:92:fe:27:fb:24:d5:d6:3f:0c:10:bd:
da:41:5a:d2:92:7e:94:a9:4b:3a:6c:93:b2:cd:56:
f1:51:f8:1f:0d:55:ef:e6:fe:ad:16:85:f9:1a:2b:
ed:0e:79:93:e2:29:a2:5f:3c:69:aa:60:86:56:96:
1d:0e:94:28:82:a2:1d:2f:4b:21:d2:03:bf:72:a2:
76:53:6a:c7:1c:dc:1b:a6:04:62:b8:98:da:55:f8:
e7:ca:cf:6d:bd:93:c5:e0:7d:3e:41:df:23:5e:a2:
b8:2a:da:93:e7:84:0f:ea:b2:8a:c9:ec:5a:dc:34:
2d:b9:b8:55:a4:a0:48:04:d0:9b:fa:8d:2d:86:42:
f3:4b:54:e2:c4:38:cf:82:d7:f4:22:0e:88:1e:da:
b2:f6:56:04:de:c1:c3:c9:39:90:ad:fb:47:19:0a:
e6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:72:96:BC:9B:BA:14:8F:F8:44:1B:AD:AE:20:26:E0:5B:37:9C:61
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/XHKWvJu6FI_4RButriAm4Fs3nGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.228.0-95.164.235.255
Signature Algorithm: sha256WithRSAEncryption
75:af:c8:cf:cf:fd:96:93:7a:68:ad:21:58:d8:48:c4:c7:f4:
89:4d:9f:0b:b9:1a:02:f5:14:07:5d:9e:e3:e6:07:20:c5:8d:
4a:1d:4c:12:60:55:c6:70:11:da:5a:56:ab:1a:3d:6e:62:c0:
b3:f0:f8:83:f5:df:26:28:54:b4:36:5e:ee:02:34:9f:25:e3:
da:a5:3f:5d:b2:86:59:6b:bd:ec:86:ce:ad:b4:4c:8d:63:b4:
40:49:45:d2:1b:b3:2e:d1:a4:e5:8f:90:b6:cf:46:fe:8c:92:
63:be:27:04:1a:b8:c9:81:fa:b3:a5:6d:2b:eb:44:4a:0b:b0:
16:eb:58:99:7e:2b:cf:22:31:dc:9a:93:54:37:0c:1b:54:46:
26:42:17:96:8f:da:9c:d8:28:b4:12:c3:78:8e:d6:bb:75:26:
d3:6f:82:cf:99:fd:8b:08:b7:92:de:2a:a9:f4:13:ae:a1:e5:
e1:59:d7:41:f2:8d:a3:3b:c4:3f:5f:59:bb:14:f4:55:95:b7:
2d:ef:80:f2:26:cb:75:96:94:c6:44:c5:7e:42:66:86:b9:76:
dd:af:3f:cb:92:f7:d3:d1:de:74:33:5e:4e:45:b7:fa:b9:fc:
ea:aa:ea:be:ec:f9:27:d2:04:3e:b8:41:3f:38:e8:b9:fe:6b:
d4:2c:24:31
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEAkMOmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDc0M2VkNjNlODY4ZWY1MGY2ZDg0YzAwMDNhODM0ODNmYzYyYTAzMB4XDTIyMDEw
MTA1NTY0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWM3Mjk2YmM5YmJh
MTQ4ZmY4NDQxYmFkYWUyMDI2ZTA1YjM3OWM2MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIqU4TRi270OQB+GTEXbJCvOgXuGg+b/7txVRORyzeNJDFRU
vYmwZSJCQhRbuMhY3UuKH4y4R4slt9DepvPUTTZO7biJPeKxVsD1NY4i7X6HcOxq
v6o4mnvaWWrhrJL+J/sk1dY/DBC92kFa0pJ+lKlLOmyTss1W8VH4Hw1V7+b+rRaF
+Ror7Q55k+Ipol88aapghlaWHQ6UKIKiHS9LIdIDv3KidlNqxxzcG6YEYriY2lX4
58rPbb2TxeB9PkHfI16iuCrak+eED+qyisnsWtw0Lbm4VaSgSATQm/qNLYZC80tU
4sQ4z4LX9CIOiB7asvZWBN7Bw8k5kK37RxkK5jMCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBRccpa8m7oUj/hEG62uICbgWzecYTAfBgNVHSMEGDAWgBRtdD7WPoaO9Q9t
hMAAOoNIP8YqAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JYUS0xajZHanZVUGJZVEFBRHFEU0RfR0tnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmQvZTA1MzUyLWYxNDgtNDBhMC04N2E0LWU5NzI0YTdhNmJjOC8x
L1hIS1d2SnU2RklfNFJCdXRyaUFtNEZzM25HRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmQv
ZTA1MzUyLWYxNDgtNDBhMC04N2E0LWU5NzI0YTdhNmJjOC8xL2JYUS0xajZHanZV
UGJZVEFBRHFEU0RfR0tnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQCX6TkAwQCX6ToMA0GCSqGSIb3
DQEBCwUAA4IBAQB1r8jPz/2Wk3porSFY2EjEx/SJTZ8LuRoC9RQHXZ7j5gcgxY1K
HUwSYFXGcBHaWlarGj1uYsCz8PiD9d8mKFS0Nl7uAjSfJePapT9dsoZZa73shs6t
tEyNY7RASUXSG7Mu0aTlj5C2z0b+jJJjvicEGrjJgfqzpW0r60RKC7AW61iZfivP
IjHcmpNUNwwbVEYmQheWj9qc2Ci0EsN4jta7dSbTb4LPmf2LCLeS3iqp9BOuoeXh
WddB8o2jO8Q/X1m7FPRVlbct74DyJst1lpTGRMV+QmaGuXbdrz/LkvfT0d50M15O
Rbf6ufzqquq+7Pkn0gQ+uEE/OOi5/mvULCQx
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:43 2023 by rpki-client on console-ams.rpki-client.org