Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/2D9fBgCRNfs0OCGrwFXOojN6-3I.roa
File: 2D9fBgCRNfs0OCGrwFXOojN6-3I.roa (raw, json)
Hash identifier: 6M4G5bj7+td3y7ERp3A1mDhGdhYLd3rOE/z02EnJuSg=
Subject key identifier: D8:3F:5F:06:00:91:35:FB:34:38:21:AB:C0:55:CE:A2:33:7A:FB:72
Certificate issuer: /CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Certificate serial: 0520D147
Authority key identifier: 27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/2D9fBgCRNfs0OCGrwFXOojN6-3I.roa
Signing time: Sat 01 Jan 2022 04:04:16 +0000
ROA not before: Sat 01 Jan 2022 04:04:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48147
IP address blocks: 95.81.82.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86036807 (0x520d147)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=272ed090acf7c829a22bbfbe2b0e998cd20ad826
Validity
Not Before: Jan 1 04:04:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d83f5f06009135fb343821abc055cea2337afb72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5e:c5:ed:be:39:0b:ac:bf:c0:a0:23:66:1c:
64:3c:2a:7c:d7:67:0a:00:a3:cb:c6:2d:b8:6d:c8:
f1:4a:e2:dc:3a:2c:33:75:39:87:01:83:0e:3f:bd:
36:7f:42:be:dd:8a:09:86:c0:74:87:cb:0e:8a:f5:
e9:9b:09:36:e7:97:11:54:a9:9f:d4:68:8e:3a:76:
4d:20:a3:7c:e2:51:0e:ff:44:04:a6:f5:67:31:cb:
6f:58:41:a3:5b:70:98:ef:19:9a:e6:2f:c4:29:67:
ee:56:26:66:c4:9c:00:b3:56:37:ed:ca:88:cb:f7:
46:0d:40:46:dd:35:a0:18:8d:cd:de:f7:f1:3d:eb:
af:cc:61:89:2b:d7:64:24:51:93:30:10:e8:1c:a3:
10:f5:da:2c:ba:5c:0b:bf:cc:7f:94:b7:6a:2e:85:
ed:90:ee:19:0a:52:13:6b:19:44:9b:21:6b:e9:33:
a9:56:60:e3:08:5a:47:67:dd:c1:39:ff:50:0a:e1:
2c:bf:56:62:b1:ba:53:d4:44:24:f3:78:e5:4e:aa:
3c:33:fd:54:d2:37:36:91:fb:7e:96:dd:60:66:d5:
63:af:33:ab:4d:95:81:9d:34:dd:dc:c1:cd:3a:8d:
69:a9:a3:b6:90:1a:96:41:6d:ba:4b:b1:a4:ac:e6:
26:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:3F:5F:06:00:91:35:FB:34:38:21:AB:C0:55:CE:A2:33:7A:FB:72
X509v3 Authority Key Identifier:
keyid:27:2E:D0:90:AC:F7:C8:29:A2:2B:BF:BE:2B:0E:99:8C:D2:0A:D8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/2D9fBgCRNfs0OCGrwFXOojN6-3I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/a15f96-ec18-4644-89b3-acc22bb4dced/1/Jy7QkKz3yCmiK7--Kw6ZjNIK2CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.81.82.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:28:8f:4d:19:80:d7:23:1a:4a:e5:ac:98:30:84:e6:00:08:
01:9d:a2:0d:8a:49:c1:1a:34:27:99:20:74:21:bd:6a:a8:4f:
72:ff:ed:5d:4a:6e:a3:0b:d3:7f:83:62:69:e4:6d:f3:0a:49:
ef:e5:97:ee:df:ce:d2:d4:ce:72:e6:59:24:6d:09:3d:54:43:
5e:f6:6e:bb:82:7a:53:69:e6:c1:41:cf:70:56:74:c5:1d:50:
34:67:e2:dc:f8:33:31:db:fc:87:18:78:5c:46:d7:36:7f:34:
99:c6:6e:57:ee:fa:29:8d:d6:02:bd:a9:69:83:c3:19:ed:9d:
9b:9a:b4:ed:ab:12:91:e2:ba:85:23:4a:1e:89:02:8f:e1:9d:
f9:d6:1e:ed:bf:a1:4b:34:08:98:3a:7f:0c:d1:27:06:2d:c2:
f6:bb:98:99:ec:89:55:cc:b4:21:cb:fa:3f:c7:c5:15:5d:fc:
81:aa:76:6a:c6:3e:0b:fa:fd:0b:e7:0e:be:ac:08:34:76:91:
5c:65:aa:2e:20:e2:f6:22:72:93:8c:76:d0:00:13:d9:12:12:
cf:c3:3f:05:99:81:6d:24:f7:67:46:df:12:af:bf:a6:6f:53:
aa:2b:fe:e0:3d:8c:6b:77:5e:01:bc:2d:92:08:51:21:42:3d:
a2:55:5c:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:40 2024 by rpki-client on console-ams.rpki-client.org