Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/FMWvYSiRUCqpIxH-r-LtZUWjiog.roa
File: FMWvYSiRUCqpIxH-r-LtZUWjiog.roa (raw, json)
Hash identifier: Rpi8LdBuhqhmso1I6afVVHBUmQXRaL0UyizlJFmTYqs=
Subject key identifier: 14:C5:AF:61:28:91:50:2A:A9:23:11:FE:AF:E2:ED:65:45:A3:8A:88
Certificate issuer: /CN=1c5c72ee422c61667e3056de6b3ffce034305175
Certificate serial: 03B74B35
Authority key identifier: 1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/FMWvYSiRUCqpIxH-r-LtZUWjiog.roa
Signing time: Sat 01 Jan 2022 11:00:31 +0000
ROA not before: Sat 01 Jan 2022 11:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35645
IP address blocks: 95.66.192.0/22 maxlen: 22
95.66.196.0/23 maxlen: 23
95.66.202.0/23 maxlen: 23
95.66.200.0/23 maxlen: 23
95.66.206.0/23 maxlen: 23
95.66.204.0/23 maxlen: 23
95.66.208.0/22 maxlen: 22
95.66.212.0/22 maxlen: 22
95.66.216.0/22 maxlen: 22
95.66.222.0/23 maxlen: 23
95.66.224.0/23 maxlen: 23
95.66.220.0/23 maxlen: 23
95.66.227.0/24 maxlen: 24
95.66.230.0/23 maxlen: 23
95.66.228.0/23 maxlen: 23
95.66.237.0/24 maxlen: 24
95.66.240.0/22 maxlen: 22
95.66.238.0/23 maxlen: 23
95.66.160.0/19 maxlen: 19
95.66.244.0/24 maxlen: 24
95.66.246.0/24 maxlen: 24
95.66.245.0/24 maxlen: 24
95.66.250.0/23 maxlen: 23
95.66.252.0/23 maxlen: 23
95.66.248.0/23 maxlen: 23
95.66.247.0/24 maxlen: 24
95.66.254.0/23 maxlen: 23
95.66.128.0/19 maxlen: 19
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62343989 (0x3b74b35)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5c72ee422c61667e3056de6b3ffce034305175
Validity
Not Before: Jan 1 11:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=14c5af612891502aa92311feafe2ed6545a38a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3a:3f:f8:36:a2:95:f8:3c:0d:a6:df:13:31:
ba:de:1e:37:f3:be:ed:bc:d7:e2:d4:b6:89:3e:4a:
e6:0c:09:5b:ba:25:cc:af:41:09:3c:96:35:fc:31:
56:64:b9:e2:1d:d0:1e:39:d4:07:7f:e2:e7:66:9f:
3e:ab:57:5a:42:fa:ef:bd:2b:b5:f6:09:50:a9:c9:
ed:ae:64:1f:c6:2e:5d:36:98:0e:35:ca:3d:b2:ce:
cb:db:c0:27:9c:b2:0f:45:be:25:0f:58:6b:95:ca:
23:cd:e9:7c:b5:ed:7d:d4:a2:1c:80:c7:98:2c:e0:
73:64:08:e5:4e:64:99:1c:34:a9:6b:49:a7:f1:48:
57:05:b2:7d:4d:d7:d4:80:76:d9:c8:52:f0:7f:dd:
f3:6b:68:81:64:32:9b:ae:9e:f2:c4:d7:15:b7:ac:
e7:56:2b:d0:c4:e3:68:1c:18:1c:d3:a8:5e:bd:0c:
96:53:66:d0:13:d6:b2:10:b8:d1:5b:de:44:68:1b:
96:9b:0e:6c:9a:43:70:31:db:46:9b:e4:64:85:cd:
c0:20:49:11:77:f2:5a:05:ac:bb:0b:4d:1a:21:d2:
2f:d5:92:4c:53:bc:50:86:96:b8:6a:13:83:41:49:
e9:55:07:38:db:77:ac:d3:fc:d2:8e:a8:87:50:a5:
0a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:C5:AF:61:28:91:50:2A:A9:23:11:FE:AF:E2:ED:65:45:A3:8A:88
X509v3 Authority Key Identifier:
keyid:1C:5C:72:EE:42:2C:61:66:7E:30:56:DE:6B:3F:FC:E0:34:30:51:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFxy7kIsYWZ-MFbeaz_84DQwUXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/FMWvYSiRUCqpIxH-r-LtZUWjiog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/e08d0e-ee4c-4ae1-9e0b-1278a42e092a/1/HFxy7kIsYWZ-MFbeaz_84DQwUXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.66.128.0-95.66.197.255
95.66.200.0-95.66.225.255
95.66.227.0-95.66.231.255
95.66.237.0-95.66.255.255
Signature Algorithm: sha256WithRSAEncryption
34:27:14:4a:39:54:42:95:be:7c:1a:ec:6e:1b:1b:46:e0:e2:
e1:46:b3:6f:6f:d2:2c:76:2e:1f:17:5e:e9:f1:36:38:3b:72:
8c:fe:02:45:63:38:05:0e:e2:30:7e:37:6a:88:61:be:d0:4b:
e9:eb:ab:4c:3d:43:fa:05:c0:df:1a:99:1f:37:3c:7e:87:7a:
5e:d5:74:5b:05:a0:98:76:10:25:8b:2b:04:05:48:9e:01:d5:
b1:17:d6:f2:3a:93:8f:17:66:9b:7f:a9:40:a7:6d:f1:fd:6a:
19:78:22:19:81:83:6d:8e:53:d7:e2:df:46:4d:65:0e:73:e7:
98:4c:22:66:ea:98:7d:12:d8:7e:94:8f:04:2d:41:49:4a:3f:
e2:02:18:5b:5a:cf:b3:a9:36:1a:60:c1:07:c2:44:9a:fc:b7:
b0:96:4b:b3:23:c1:95:4e:30:21:a0:9c:25:91:d4:8a:a9:89:
4c:85:ca:72:a2:26:bf:34:95:f8:79:cc:f4:8f:3d:bb:26:da:
cc:88:3b:54:03:e5:95:b6:17:7d:ed:0d:02:3c:ad:ac:aa:55:
0d:b2:ae:d1:7e:06:b8:eb:54:88:a7:2f:9c:7c:ac:d4:15:e7:
8f:8a:9d:36:cf:2d:6b:7c:74:6d:4d:4a:8f:da:f0:ac:f5:bc:
83:43:8b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:23 2024 by rpki-client on console-ams.rpki-client.org