Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/0tEsZB-Ef3Dznk0n_aeficesI0M.roa
File: 0tEsZB-Ef3Dznk0n_aeficesI0M.roa (raw, json)
Hash identifier: 9KsMzCn4j5Bo9fxmfb+Ptfm7vFxA9nhPqvAnNH2p7Oo=
Subject key identifier: D2:D1:2C:64:1F:84:7F:70:F3:9E:4D:27:FD:A7:9F:89:C7:AC:23:43
Certificate issuer: /CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Certificate serial: 1C710DA2
Authority key identifier: 58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/0tEsZB-Ef3Dznk0n_aeficesI0M.roa
Signing time: Sat 01 Jan 2022 06:53:20 +0000
ROA not before: Sat 01 Jan 2022 06:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50694
IP address blocks: 95.170.96.0/22 maxlen: 22
95.170.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477171106 (0x1c710da2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5853e65a3087b4ca85c8802b60ff0f02b4106d97
Validity
Not Before: Jan 1 06:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2d12c641f847f70f39e4d27fda79f89c7ac2343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a9:01:1d:31:3c:92:e9:08:ed:00:24:82:fb:
2f:d4:6d:12:84:1f:a4:a8:f1:69:ec:2f:d5:75:cd:
7e:19:f2:58:b9:e0:ec:78:fe:b6:fb:4b:01:8c:2e:
00:d7:af:b1:f3:ba:eb:ff:8e:cf:19:c4:4a:31:0c:
37:92:48:79:01:aa:de:2b:bc:5c:c5:98:bb:e0:4f:
7b:06:92:fc:03:86:bd:7a:e4:e9:63:ed:8c:77:ba:
de:36:49:91:34:46:ed:27:bf:d5:c1:84:f0:d0:66:
e1:99:e2:dc:48:d1:29:54:ee:1b:00:31:ef:cc:1b:
65:93:1b:f1:86:e9:fd:27:02:fc:49:cd:e5:ed:44:
0f:28:64:a0:64:00:38:f1:dd:d2:6e:bb:f9:fa:90:
16:f0:fd:b2:ed:11:09:d4:52:dc:85:1a:80:01:40:
1a:42:17:ad:9a:24:8e:fe:ac:7a:9c:5f:74:4b:39:
24:cc:a1:7f:0d:a1:79:0e:da:61:bc:b1:e8:a5:dd:
d1:38:cd:cd:20:a5:70:96:71:b3:4e:14:fa:01:cb:
1e:2e:de:1c:66:22:85:b0:54:bd:7b:fa:dd:4f:8a:
af:3f:bd:15:ce:49:08:ef:37:0b:d3:0b:eb:70:29:
23:10:f4:ab:7b:fa:53:ae:23:48:17:3a:ae:e2:50:
57:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:D1:2C:64:1F:84:7F:70:F3:9E:4D:27:FD:A7:9F:89:C7:AC:23:43
X509v3 Authority Key Identifier:
keyid:58:53:E6:5A:30:87:B4:CA:85:C8:80:2B:60:FF:0F:02:B4:10:6D:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WFPmWjCHtMqFyIArYP8PArQQbZc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/0tEsZB-Ef3Dznk0n_aeficesI0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/6afd1e-cb7e-4e6e-a8a4-e18602739cd5/1/WFPmWjCHtMqFyIArYP8PArQQbZc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.170.96.0/21
Signature Algorithm: sha256WithRSAEncryption
be:97:4e:b1:1f:bc:36:46:8d:45:b8:46:b5:2e:c2:7a:42:34:
b6:96:cb:3b:dc:a7:18:b4:b3:51:1b:01:80:fc:45:a9:96:7b:
15:d0:6a:7f:40:7d:74:2d:f2:d9:68:3d:56:ad:e3:f2:59:11:
bc:2e:a0:33:a5:84:5e:35:ad:fc:3b:59:28:fc:dd:ae:4d:1a:
4e:2e:30:c5:91:ed:aa:fd:b9:7b:7c:b7:f1:e3:41:54:d5:af:
5a:a4:73:e4:d2:6a:56:91:67:65:28:e0:33:2b:c2:e6:8c:34:
8b:eb:a8:c7:ee:19:a7:7d:22:52:23:bb:1c:90:8c:dd:cf:94:
03:f1:a4:6b:d2:b4:12:9a:44:f0:28:c2:db:d5:ec:4e:0e:48:
eb:5b:08:e4:62:ac:80:fc:21:1b:3f:5a:bf:bf:54:5e:bd:a4:
5a:3c:b1:80:85:cf:33:17:65:2f:20:09:00:8e:95:9d:8b:fd:
4e:d0:f9:98:10:f2:06:c7:ed:ff:62:14:15:ee:d7:f2:2d:10:
8b:8e:95:4d:00:1d:fe:d6:4f:63:52:2d:c4:ec:20:dd:bd:60:
72:32:c8:49:be:17:1a:ff:fa:60:5d:e4:5a:16:8d:3f:75:94:
d9:1c:2c:8d:f3:28:d7:16:ad:04:46:00:86:56:54:2d:34:86:
68:2a:4d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:51 2025 by rpki-client