Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/uDh3vU000rnm7ybFgFRdz0dMQag.roa
File: uDh3vU000rnm7ybFgFRdz0dMQag.roa (raw, json)
Hash identifier: J6W0mQmzPRlDaKI7Fbp0CsUQGntVEbkCe0QwbsI0/wE=
Subject key identifier: B8:38:77:BD:4D:34:D2:B9:E6:EF:26:C5:80:54:5D:CF:47:4C:41:A8
Certificate issuer: /CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Certificate serial: 0181CEEA9331AE8A2B2201FAFE7E6B8A24B2
Authority key identifier: 44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/uDh3vU000rnm7ybFgFRdz0dMQag.roa
Signing time: Tue 05 Jul 2022 15:11:28 +0000
ROA not before: Tue 05 Jul 2022 15:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204105
IP address blocks: 95.215.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:ce:ea:93:31:ae:8a:2b:22:01:fa:fe:7e:6b:8a:24:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44422eaa3daedf6b902159eedbe94ca9b7d2284f
Validity
Not Before: Jul 5 15:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b83877bd4d34d2b9e6ef26c580545dcf474c41a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ce:09:52:21:85:9d:4d:87:ab:ae:10:11:de:
9e:07:94:62:4d:91:ce:03:fd:c6:c7:43:59:e4:2a:
02:8f:87:ef:60:4d:b5:c4:9c:e0:98:44:11:2d:8d:
5c:09:6c:e6:ff:a3:88:0f:e8:bd:33:e4:70:b8:43:
41:98:41:1c:91:66:b4:0c:55:6e:19:fe:65:ea:98:
55:ac:65:65:43:cb:80:7a:e9:88:25:8d:84:c3:52:
11:34:51:79:4d:a5:8e:1b:31:4f:77:24:94:c6:39:
38:78:97:09:01:68:8f:fd:59:6b:cc:79:3a:e9:ff:
5c:29:38:6f:0d:f8:af:fd:7d:26:df:fd:0a:d5:d0:
0a:90:83:0f:42:c5:3f:71:de:2e:33:59:44:e6:2c:
ae:8f:87:8c:31:fe:39:e1:1a:2b:45:75:c4:44:11:
10:89:96:0b:8c:93:18:f3:f4:76:07:35:1b:93:67:
24:5e:23:78:79:00:64:18:f9:05:7e:ed:f5:d8:48:
17:62:b7:1e:f3:bb:7e:cb:b6:78:22:0e:c9:c9:44:
b3:b0:18:65:2d:1d:74:cb:92:fd:b8:ae:eb:64:2c:
c1:42:8f:ef:dd:3b:ff:7e:8a:6d:e4:c1:c1:b0:aa:
2f:6f:bb:39:a2:fd:d1:f0:63:aa:95:50:6a:9b:91:
c9:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:38:77:BD:4D:34:D2:B9:E6:EF:26:C5:80:54:5D:CF:47:4C:41:A8
X509v3 Authority Key Identifier:
keyid:44:42:2E:AA:3D:AE:DF:6B:90:21:59:EE:DB:E9:4C:A9:B7:D2:28:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/REIuqj2u32uQIVnu2-lMqbfSKE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/uDh3vU000rnm7ybFgFRdz0dMQag.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/dd944d-8faa-4cce-aafe-c050f4c05f29/1/REIuqj2u32uQIVnu2-lMqbfSKE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.59.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d7:56:ae:76:35:70:63:65:3f:b8:cd:ec:1a:ee:57:30:95:
d1:91:93:66:4d:b2:2a:e0:8d:bf:7e:1a:85:22:ef:86:84:85:
7f:05:be:b1:66:b5:d4:3e:4b:47:df:1d:2e:19:02:14:a0:e0:
b7:3f:19:bd:1c:fc:95:e2:79:32:03:2a:a2:52:81:0b:84:28:
11:b8:ed:5e:40:1c:f6:1f:e2:63:83:4a:9e:df:3d:ab:2d:15:
54:59:7c:ab:cd:39:ee:6b:6f:6d:7c:70:15:b4:14:b5:59:f2:
d1:eb:ab:0d:28:cf:df:3d:6b:3f:42:bc:b8:6c:e7:ba:89:0f:
c0:1e:b6:37:8f:85:82:ee:3c:cb:61:b1:bb:ad:75:a9:03:ac:
71:0a:e1:ce:9c:93:44:33:f4:b1:eb:d8:c7:45:8b:d2:8c:46:
00:ac:05:59:e0:f7:7f:47:5a:c7:98:ea:36:d6:cd:5e:28:62:
03:2d:d8:ec:a6:21:23:3d:54:9e:38:d6:b2:ca:58:5b:1a:a2:
37:cf:ff:85:7f:4a:02:ab:d3:86:23:04:0f:00:b8:d5:c5:c6:
cd:f7:49:8a:10:54:69:d6:9f:c2:7f:c6:72:9e:7d:14:e1:41:
aa:0f:6b:29:0b:a7:69:02:70:19:34:6b:20:48:49:18:5e:4d:
f6:c1:66:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:23 2024 by rpki-client on console-fra.rpki-client.org