Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/03afc6-88f5-4660-8015-64c9c2cc9609/1/rvDN4boH7Hry2jcv3hZA1Kkp0Pk.roa
File: rvDN4boH7Hry2jcv3hZA1Kkp0Pk.roa (raw, json)
Hash identifier: XLHkQn8PURhn1RmqLVpvfXs0jtNwApKfkuuK9XeYgks=
Subject key identifier: AE:F0:CD:E1:BA:07:EC:7A:F2:DA:37:2F:DE:16:40:D4:A9:29:D0:F9
Certificate issuer: /CN=0db0f9f755b0e303cc16d1a633f958c036034945
Certificate serial: 0183EBD730B4179036C563B16E8A1E1E4578
Authority key identifier: 0D:B0:F9:F7:55:B0:E3:03:CC:16:D1:A6:33:F9:58:C0:36:03:49:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbD591Ww4wPMFtGmM_lYwDYDSUU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/03afc6-88f5-4660-8015-64c9c2cc9609/1/rvDN4boH7Hry2jcv3hZA1Kkp0Pk.roa
Signing time: Tue 18 Oct 2022 16:04:51 +0000
ROA not before: Tue 18 Oct 2022 16:04:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15966
IP address blocks: 95.128.0.0/21 maxlen: 21
2a01:a640::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:d7:30:b4:17:90:36:c5:63:b1:6e:8a:1e:1e:45:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db0f9f755b0e303cc16d1a633f958c036034945
Validity
Not Before: Oct 18 16:04:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aef0cde1ba07ec7af2da372fde1640d4a929d0f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:df:dd:ad:6f:d2:84:b1:6d:ef:fa:84:72:60:
ea:81:57:53:5a:12:ef:a3:0a:8c:3d:1a:3f:b9:50:
86:84:7d:a3:e0:3d:60:76:5d:e5:da:dd:85:7c:93:
cc:2f:5a:65:1e:f2:69:4d:0e:57:a7:9f:c6:8d:cc:
99:a3:7d:e1:14:1c:0a:6f:e2:68:69:4a:5e:ca:46:
61:72:ae:4a:da:72:c9:d0:c2:f1:b2:b4:16:e7:30:
af:2d:c1:59:5e:52:c5:e7:a6:27:8e:6e:63:2f:15:
04:98:16:ac:6f:47:86:49:2c:6f:71:4b:ef:ae:3d:
6a:24:7c:b6:8b:22:e5:48:21:75:08:0b:bb:38:22:
c4:e5:cc:fa:b8:fa:81:50:94:34:b1:e6:54:ff:f2:
26:92:4b:ee:cb:04:89:ef:25:09:b0:34:a4:b7:9c:
2a:18:cc:e5:f0:db:65:4b:05:05:f5:b8:f6:a2:04:
9b:bb:bb:bb:18:ce:1d:dd:19:db:d2:7f:6b:a6:2c:
9b:25:fa:4f:f5:7c:6d:13:27:62:1f:23:b9:b4:6c:
90:37:41:23:f4:55:54:1e:1f:1f:19:16:94:dd:17:
05:e4:b8:0b:a6:4e:36:e1:b0:3d:83:84:40:91:ef:
7c:15:6f:41:50:22:4c:69:f0:93:63:bf:06:2e:8b:
0a:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:F0:CD:E1:BA:07:EC:7A:F2:DA:37:2F:DE:16:40:D4:A9:29:D0:F9
X509v3 Authority Key Identifier:
keyid:0D:B0:F9:F7:55:B0:E3:03:CC:16:D1:A6:33:F9:58:C0:36:03:49:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbD591Ww4wPMFtGmM_lYwDYDSUU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/03afc6-88f5-4660-8015-64c9c2cc9609/1/rvDN4boH7Hry2jcv3hZA1Kkp0Pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/03afc6-88f5-4660-8015-64c9c2cc9609/1/DbD591Ww4wPMFtGmM_lYwDYDSUU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.0.0/21
IPv6:
2a01:a640::/32
Signature Algorithm: sha256WithRSAEncryption
25:8a:ed:eb:be:62:97:40:10:05:26:45:a8:29:66:0e:02:91:
88:c2:6e:c8:9c:c4:97:40:21:36:24:48:9a:bb:8e:27:be:05:
46:ad:67:cd:3f:b2:fd:10:52:91:bb:00:80:17:7c:28:43:e4:
43:8b:ff:c8:31:9c:87:54:67:7b:c8:0f:ad:14:39:1a:df:7e:
6f:d5:39:f6:da:88:91:5e:58:b0:20:b6:4b:0b:cf:ee:c3:f6:
f0:8f:ee:7b:6a:1c:30:0d:cc:d5:54:e0:de:00:61:cc:32:bd:
71:fa:d1:cd:0b:88:5a:f5:ac:c0:88:e8:4a:56:f5:3e:6b:e6:
4d:b8:e9:32:39:b9:e8:f0:0b:0e:b9:74:30:4c:c4:25:74:46:
bb:bd:8f:4e:c7:22:37:30:b1:20:64:89:e7:61:7c:a4:b6:ed:
3a:3a:09:71:cb:aa:dc:f6:57:ce:0b:f1:42:38:f5:4f:20:ba:
f5:7f:30:2c:d4:f5:33:64:c2:72:0c:e2:de:af:b7:94:29:12:
ce:14:8b:74:08:e8:90:8e:09:26:bb:bb:e4:b2:5a:1e:c6:49:
10:0c:43:94:1c:14:9f:6d:56:3f:bc:38:dc:14:22:18:8d:60:
13:a6:b6:53:67:f6:34:34:d2:b2:a1:41:45:6d:e6:d2:64:8c:
95:d2:f1:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:16 2023 by rpki-client on console-ams.rpki-client.org