Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ke6BM-59PdMzbnZ2brPDKPbeDG4.roa
File: ke6BM-59PdMzbnZ2brPDKPbeDG4.roa (raw, json)
Hash identifier: jdO13LVr+26MM2XhDHXqO6bpOImeGwzHQW1glBxdjAQ=
Subject key identifier: 91:EE:81:33:EE:7D:3D:D3:33:6E:76:76:6E:B3:C3:28:F6:DE:0C:6E
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 280C818B
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ke6BM-59PdMzbnZ2brPDKPbeDG4.roa
Signing time: Sat 01 Jan 2022 16:09:29 +0000
ROA not before: Sat 01 Jan 2022 16:09:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62091
IP address blocks: 95.47.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 671908235 (0x280c818b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:09:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91ee8133ee7d3dd3336e76766eb3c328f6de0c6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:52:97:44:c0:63:97:93:20:d5:86:58:7d:56:
ff:dd:3d:9a:72:73:2e:c7:ea:c0:78:8d:7b:23:ce:
5b:63:d8:7d:77:bd:db:53:eb:c9:5e:e1:7c:3a:27:
7b:97:9c:0a:20:80:59:21:d9:e6:bd:06:24:b2:b8:
15:f3:b5:af:04:86:14:31:75:f2:07:99:aa:76:47:
24:19:47:bd:b2:ae:2f:e9:24:e9:1c:d9:ef:8c:cb:
a3:bd:c1:d4:87:70:aa:47:d1:d9:e6:dc:5c:2c:f2:
09:76:94:c9:58:ea:08:ad:7b:31:cc:4c:ec:61:73:
70:54:d6:0f:99:fd:eb:27:f9:70:5c:63:30:a3:88:
a0:b4:98:26:23:4d:19:1e:d2:00:0c:18:e7:0b:26:
eb:e7:36:2b:4a:90:d1:33:0c:ab:ae:2b:c4:9d:40:
5c:2a:28:1f:5b:06:07:cc:56:c3:95:da:4f:97:b1:
99:8e:f6:f6:4d:10:95:39:a5:b8:7d:15:5f:5a:1b:
92:62:82:f5:71:de:aa:36:6d:6f:4a:97:58:98:2d:
58:04:65:00:8a:37:01:52:44:42:44:53:95:5c:e0:
27:3a:d6:ee:c8:57:b9:d9:c7:50:71:07:85:4d:13:
bb:b0:f0:1e:fa:96:58:47:3b:d4:95:91:cc:ff:6e:
2c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:EE:81:33:EE:7D:3D:D3:33:6E:76:76:6E:B3:C3:28:F6:DE:0C:6E
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/ke6BM-59PdMzbnZ2brPDKPbeDG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.47.98.0/24
Signature Algorithm: sha256WithRSAEncryption
29:96:8b:bb:6e:17:0f:9f:1a:b2:1d:06:2f:3e:e9:07:bd:33:
49:3f:4a:b3:b0:ec:64:f9:63:23:40:e5:ce:f6:aa:ec:c8:ba:
71:2e:f5:18:fd:c3:a5:18:c1:f4:33:41:35:e8:9c:14:53:51:
cc:fd:47:54:83:33:6e:d8:f1:56:f8:e9:16:c8:4a:80:fd:a6:
08:6b:5f:56:79:46:a4:2c:e6:34:15:5f:de:dc:65:15:81:e1:
8a:22:5c:94:19:a4:1f:27:4d:0b:44:12:07:5e:b4:e0:40:f7:
b6:b0:1d:7b:a1:88:31:e5:8d:73:46:8d:09:a9:cb:f2:bc:2c:
d2:cb:bb:4c:62:e7:d5:b4:1a:44:65:1f:55:0e:95:c3:82:11:
2f:80:4a:61:07:de:21:05:c5:08:89:46:4e:73:3d:b8:09:4f:
cf:bd:ee:f0:e5:9c:19:3d:88:9a:9e:d3:66:89:6a:9c:d8:76:
35:51:96:b7:42:4c:c7:79:a5:95:d9:5c:a5:2a:c1:b1:c3:12:
06:bb:8b:87:57:db:f6:92:ca:b0:fd:f9:ba:a6:75:83:02:9e:
10:80:9b:b9:74:b1:da:67:00:fa:4f:14:66:bc:50:56:fe:31:
9a:79:2d:b4:6f:22:5e:a5:a0:f3:78:7a:a0:25:21:2c:7f:56:
1e:b0:3b:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:24 2023 by rpki-client on console-ams.rpki-client.org