Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/9hfobvn6a4C1j6pWyQIar8kyUA0.roa
File: 9hfobvn6a4C1j6pWyQIar8kyUA0.roa (raw, json)
Hash identifier: 0ORaAmrqnhNVTyRlX51EbULzZ/O+7A5Sk5TyoGnQAI0=
Subject key identifier: F6:17:E8:6E:F9:FA:6B:80:B5:8F:AA:56:C9:02:1A:AF:C9:32:50:0D
Certificate issuer: /CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Certificate serial: 05915634
Authority key identifier: 88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/9hfobvn6a4C1j6pWyQIar8kyUA0.roa
Signing time: Sat 01 Jan 2022 15:55:32 +0000
ROA not before: Sat 01 Jan 2022 15:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 95.215.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93410868 (0x5915634)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8844fc4ae106499e0575ff3ca1556dbc0d9b4651
Validity
Not Before: Jan 1 15:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f617e86ef9fa6b80b58faa56c9021aafc932500d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:03:f0:5f:ab:49:a9:00:eb:dd:6d:c2:36:e3:
7c:1f:9e:12:be:00:2e:74:b2:3b:4a:1a:1e:db:50:
1a:a4:af:ee:87:06:98:d2:32:fd:fc:c9:33:ed:b6:
44:b5:4f:3f:9b:a8:a0:5c:88:74:47:67:40:39:3a:
cb:36:11:29:4b:96:12:5e:01:cb:1d:c2:5d:ee:dd:
26:cd:30:04:8d:28:b1:10:b6:4b:d9:a3:f5:8a:e6:
34:22:d6:8d:02:6a:de:bf:a2:73:3a:3a:4a:38:5f:
7a:d5:cf:ae:8e:14:29:f4:ad:c7:16:73:4a:eb:02:
78:ab:f3:3d:20:d3:01:de:8a:6f:c2:cf:90:11:45:
08:ba:26:c4:91:85:d7:21:4c:3c:44:88:ab:e8:9d:
ee:93:45:21:60:95:84:bb:39:b5:72:f3:41:57:6f:
f2:ab:97:2f:3b:7d:04:55:d0:12:cd:3e:58:71:e0:
2e:36:07:4e:88:68:de:b5:c1:34:5e:81:0f:b7:46:
cd:10:3d:a4:63:b3:02:22:9a:92:32:31:63:34:ce:
7e:3a:fb:c7:92:76:a9:e0:82:91:11:d9:e5:88:b3:
7f:58:ef:9e:17:c4:cd:f6:a6:83:11:f8:d8:cd:c1:
35:66:8f:56:dc:c6:32:5e:6f:5e:af:be:bd:03:67:
5d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:17:E8:6E:F9:FA:6B:80:B5:8F:AA:56:C9:02:1A:AF:C9:32:50:0D
X509v3 Authority Key Identifier:
keyid:88:44:FC:4A:E1:06:49:9E:05:75:FF:3C:A1:55:6D:BC:0D:9B:46:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iET8SuEGSZ4Fdf88oVVtvA2bRlE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/9hfobvn6a4C1j6pWyQIar8kyUA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/dd42d9-ff88-4ca0-883c-317645cd7885/1/iET8SuEGSZ4Fdf88oVVtvA2bRlE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.173.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:81:54:aa:a7:65:02:52:30:85:f4:36:f0:51:1f:d4:b3:32:
c5:e3:9d:ed:ea:6a:c2:8c:b7:17:f8:3c:63:d3:21:c8:d2:96:
71:bd:76:16:a4:d2:04:eb:7c:f9:30:23:b6:71:ee:80:22:24:
4d:da:f3:28:1a:c4:e5:86:c3:e7:9b:6e:82:70:13:7b:cc:1f:
00:c9:4e:28:44:52:23:69:82:10:55:a7:59:5c:c4:f9:3f:1c:
0b:5b:4c:5a:03:78:ce:88:0b:c2:66:3c:5c:30:79:41:21:e8:
91:1c:e8:e3:45:1a:2e:d3:83:a6:d9:a5:04:0d:bb:4b:3b:57:
4b:52:26:4e:0f:06:22:b3:df:65:b0:30:27:a2:fc:96:bd:f0:
8f:30:c2:03:6f:6e:99:57:1e:c6:fa:ce:93:a2:9c:aa:ed:cf:
a3:01:f0:29:cb:fe:56:c6:df:47:a6:d2:60:90:0f:72:c3:1d:
68:e9:2a:c2:70:e8:86:8d:e4:fd:fa:24:90:ba:0f:8a:5d:26:
ac:9b:34:3b:91:65:05:92:50:64:32:a5:42:1b:5a:8c:cc:9a:
80:08:dd:56:a9:a5:18:5c:7f:05:c0:ad:86:8a:6f:2a:3e:53:
da:16:7c:4f:53:58:cd:a8:7f:25:0a:c8:1d:f7:1f:dc:b6:48:
37:07:fb:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:45 2024 by rpki-client on console-fra.rpki-client.org