Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f04a57-5ee9-4b6a-9da2-bd9a3b55f125/1/FpTRBIsyfRfncNKvAJcbC1wEnzc.roa
File: FpTRBIsyfRfncNKvAJcbC1wEnzc.roa (raw, json)
Hash identifier: KYXAHFjxNYzs6lE9pS3DOnTJxZoHt8Htp3+/wiTrCd8=
Subject key identifier: 16:94:D1:04:8B:32:7D:17:E7:70:D2:AF:00:97:1B:0B:5C:04:9F:37
Certificate issuer: /CN=558dcc5d7e6887c941ae3b28ce3cbf2fb4f20603
Certificate serial: 0581CFE8
Authority key identifier: 55:8D:CC:5D:7E:68:87:C9:41:AE:3B:28:CE:3C:BF:2F:B4:F2:06:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VY3MXX5oh8lBrjsozjy_L7TyBgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f04a57-5ee9-4b6a-9da2-bd9a3b55f125/1/FpTRBIsyfRfncNKvAJcbC1wEnzc.roa
Signing time: Sat 01 Jan 2022 09:06:08 +0000
ROA not before: Sat 01 Jan 2022 09:06:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209681
IP address blocks: 95.214.68.0/22 maxlen: 24
2a09:d980::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92393448 (0x581cfe8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=558dcc5d7e6887c941ae3b28ce3cbf2fb4f20603
Validity
Not Before: Jan 1 09:06:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1694d1048b327d17e770d2af00971b0b5c049f37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:53:01:d7:79:9f:83:4d:3d:67:32:87:0b:9b:
eb:0d:bc:f2:fa:b8:56:94:5e:9d:50:ea:54:02:55:
34:84:0f:28:17:8e:98:10:ac:5d:21:4f:14:a9:33:
13:d4:d2:9d:63:3a:b6:f1:21:e7:dd:7a:c8:04:a2:
cc:2c:c9:25:8b:8c:53:f2:f5:35:c4:c7:3b:d5:17:
e9:7a:1d:ed:8f:f8:b7:14:ad:ce:c1:f7:36:08:75:
f2:17:f1:d7:2f:af:66:e4:bd:3c:07:c3:c7:f1:b0:
dc:ad:fb:be:78:b6:c9:82:8e:6d:24:3c:62:66:09:
3d:70:40:3c:79:63:b0:4c:51:bb:87:67:71:6d:71:
93:06:d8:ca:aa:b7:97:7a:71:ce:56:39:42:44:2b:
18:22:81:0d:b6:dc:93:5e:da:2b:2d:40:e4:19:01:
9d:41:d6:74:f9:2f:c2:ca:cf:e5:8e:9a:f6:cc:47:
81:50:95:12:b0:ab:68:8b:ef:66:2c:07:98:28:66:
d5:ac:ec:d0:79:11:e8:b4:c9:1a:e5:51:e4:2a:a3:
c9:57:c9:06:45:af:b4:7b:1f:00:93:8d:3d:36:5c:
c8:88:dc:b4:de:cb:73:0c:79:33:64:43:45:71:59:
47:8b:52:e0:a7:3d:71:49:59:50:d1:62:9c:56:e1:
8b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:94:D1:04:8B:32:7D:17:E7:70:D2:AF:00:97:1B:0B:5C:04:9F:37
X509v3 Authority Key Identifier:
keyid:55:8D:CC:5D:7E:68:87:C9:41:AE:3B:28:CE:3C:BF:2F:B4:F2:06:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VY3MXX5oh8lBrjsozjy_L7TyBgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f04a57-5ee9-4b6a-9da2-bd9a3b55f125/1/FpTRBIsyfRfncNKvAJcbC1wEnzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f04a57-5ee9-4b6a-9da2-bd9a3b55f125/1/VY3MXX5oh8lBrjsozjy_L7TyBgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.68.0/22
IPv6:
2a09:d980::/29
Signature Algorithm: sha256WithRSAEncryption
09:b5:85:7d:f5:73:64:d6:d6:ae:6d:52:f1:d5:3c:be:3a:b2:
eb:93:e1:31:51:f1:04:05:cf:5c:c1:01:62:5b:28:12:92:8e:
f3:31:40:a6:e7:cd:bf:6c:04:bf:28:e7:88:08:e4:57:b5:51:
6a:c0:24:aa:59:55:59:8f:8f:eb:12:43:cf:15:a7:b4:f7:9f:
04:63:e6:54:62:11:78:5e:1f:bb:91:90:74:82:c1:9f:a8:a2:
ae:c8:1a:46:e2:b7:a8:89:2a:71:fa:8a:41:45:40:10:a9:fa:
01:f2:3a:b8:7c:67:15:d8:8f:e6:89:d6:18:c4:4f:19:32:c7:
e8:ea:ef:2b:9c:47:1d:a2:be:06:de:26:25:7f:81:2f:11:ca:
76:39:a3:f1:11:8d:49:66:ba:67:cd:80:44:88:a5:88:9b:eb:
26:86:79:b4:fa:03:49:e9:3f:ce:23:50:ee:4e:f4:55:bb:86:
ef:fd:c6:76:09:f5:8d:0f:87:c3:46:57:b2:7f:32:38:41:be:
63:23:0d:1e:4f:bb:8c:f2:0e:8e:ed:2e:d4:3d:3d:6b:d9:c8:
ac:26:f0:9e:60:4d:c3:9d:54:b5:fe:60:b7:62:23:5a:90:41:
20:f7:09:e2:45:09:0a:80:00:f1:af:9a:ce:02:33:5b:75:ce:
17:2b:43:34
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEBYHP6DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
NThkY2M1ZDdlNjg4N2M5NDFhZTNiMjhjZTNjYmYyZmI0ZjIwNjAzMB4XDTIyMDEw
MTA5MDYwOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTY5NGQxMDQ4YjMy
N2QxN2U3NzBkMmFmMDA5NzFiMGI1YzA0OWYzNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOJTAdd5n4NNPWcyhwub6w288vq4VpRenVDqVAJVNIQPKBeO
mBCsXSFPFKkzE9TSnWM6tvEh5916yASizCzJJYuMU/L1NcTHO9UX6Xod7Y/4txSt
zsH3Ngh18hfx1y+vZuS9PAfDx/Gw3K37vni2yYKObSQ8YmYJPXBAPHljsExRu4dn
cW1xkwbYyqq3l3pxzlY5QkQrGCKBDbbck17aKy1A5BkBnUHWdPkvwsrP5Y6a9sxH
gVCVErCraIvvZiwHmChm1azs0HkR6LTJGuVR5CqjyVfJBkWvtHsfAJONPTZcyIjc
tN7Lcwx5M2RDRXFZR4tS4Kc9cUlZUNFinFbhi4sCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBQWlNEEizJ9F+dw0q8AlxsLXASfNzAfBgNVHSMEGDAWgBRVjcxdfmiHyUGu
OyjOPL8vtPIGAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ZZM01YWDVvaDhsQnJqc296anlfTDdUeUJnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzQvZjA0YTU3LTVlZTktNGI2YS05ZGEyLWJkOWEzYjU1ZjEyNS8x
L0ZwVFJCSXN5ZlJmbmNOS3ZBSmNiQzF3RW56Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQv
ZjA0YTU3LTVlZTktNGI2YS05ZGEyLWJkOWEzYjU1ZjEyNS8xL1ZZM01YWDVvaDhs
QnJqc296anlfTDdUeUJnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAl/WRDANBAIAAjAHAwUDKgnZgDAN
BgkqhkiG9w0BAQsFAAOCAQEACbWFffVzZNbWrm1S8dU8vjqy65PhMVHxBAXPXMEB
YlsoEpKO8zFApufNv2wEvyjniAjkV7VRasAkqllVWY+P6xJDzxWntPefBGPmVGIR
eF4fu5GQdILBn6iirsgaRuK3qIkqcfqKQUVAEKn6AfI6uHxnFdiP5onWGMRPGTLH
6OrvK5xHHaK+Bt4mJX+BLxHKdjmj8RGNSWa6Z82ARIiliJvrJoZ5tPoDSek/ziNQ
7k70VbuG7/3Gdgn1jQ+Hw0ZXsn8yOEG+YyMNHk+7jPIOju0u1D09a9nIrCbwnmBN
w51Utf5gt2IjWpBBIPcJ4kUJCoAA8a+azgIzW3XOFytDNA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:24 2023 by rpki-client on console-fra.rpki-client.org