Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/kDK2Rxfm7wEqSBLT6-BlAIjoUes.roa
File: kDK2Rxfm7wEqSBLT6-BlAIjoUes.roa (raw, json)
Hash identifier: mA/jsvpWP51R6oEaEYJ0PeJe7eDwcEM1oWBxpgQrsR8=
Subject key identifier: 90:32:B6:47:17:E6:EF:01:2A:48:12:D3:EB:E0:65:00:88:E8:51:EB
Certificate issuer: /CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Certificate serial: 08810679
Authority key identifier: 89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/kDK2Rxfm7wEqSBLT6-BlAIjoUes.roa
Signing time: Sat 01 Jan 2022 10:00:09 +0000
ROA not before: Sat 01 Jan 2022 10:00:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39412
IP address blocks: 95.131.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142673529 (0x8810679)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89a6cd9f4beb7b0c04d31ffe5c674a87a7739d21
Validity
Not Before: Jan 1 10:00:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9032b64717e6ef012a4812d3ebe0650088e851eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:da:a2:58:7c:8c:1d:2d:35:29:ad:0c:6e:15:
51:88:bb:7e:96:d7:0c:ee:3b:66:d8:6d:d2:6e:94:
a0:e3:b8:04:7e:c3:18:c4:13:b8:43:32:81:be:2f:
a8:6c:3f:88:d9:d6:78:93:fe:a1:49:9a:8f:d1:fb:
a8:9d:cf:57:30:c9:e2:23:eb:15:56:f9:a1:3d:56:
52:f4:70:d8:22:8b:31:32:bb:91:b8:7b:11:19:bf:
cb:09:14:53:05:34:74:97:d3:e5:59:e0:bb:53:10:
5c:bf:b5:2b:1e:5c:3e:31:26:c7:a9:b6:26:25:c5:
43:e7:95:0b:23:35:88:0d:68:68:16:fe:3a:fe:6e:
5e:ab:b0:23:65:4e:b5:b4:a4:53:fc:ba:0a:ee:44:
8a:ca:9f:fb:10:5d:01:40:40:1d:4d:85:c3:f6:cc:
1f:93:20:84:77:0d:fb:8e:3d:f3:b8:32:bd:a9:84:
bd:8a:6a:1e:88:46:58:6a:34:fb:a1:61:98:05:34:
83:30:a0:06:a9:60:07:81:77:12:65:4e:e6:70:f3:
21:43:a8:d5:7b:5a:8d:4f:31:bd:aa:c1:12:57:0b:
e4:e0:68:ef:8b:31:e0:38:14:71:6e:5d:90:05:71:
24:fb:8e:cc:4f:14:66:56:ea:35:02:fe:27:52:da:
3b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:32:B6:47:17:E6:EF:01:2A:48:12:D3:EB:E0:65:00:88:E8:51:EB
X509v3 Authority Key Identifier:
keyid:89:A6:CD:9F:4B:EB:7B:0C:04:D3:1F:FE:5C:67:4A:87:A7:73:9D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iabNn0vrewwE0x_-XGdKh6dznSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/kDK2Rxfm7wEqSBLT6-BlAIjoUes.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/99a4cc-4720-4a64-aa06-1f924495fcdd/1/iabNn0vrewwE0x_-XGdKh6dznSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.131.39.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:d8:75:26:70:f8:38:0f:75:c2:fb:1a:04:62:1f:25:28:05:
8c:6c:1c:8c:a7:63:1b:75:d6:9b:a5:eb:03:8c:8a:6a:96:9f:
32:13:5b:d2:f4:7f:e6:d0:2d:c8:68:8d:7a:fe:3f:38:23:52:
b0:46:fd:53:4a:e0:59:36:e5:52:d0:29:0f:18:bd:43:b4:f0:
eb:cf:22:66:4e:9e:13:fa:9b:61:ea:01:77:f2:47:42:4b:f9:
5c:1b:fe:2a:4f:73:ef:98:c9:5c:a1:b0:0a:90:e6:46:9d:1c:
f1:38:2c:8f:9e:f7:d0:d5:da:14:af:0d:1f:46:86:7d:62:f1:
1a:4e:98:17:7f:22:21:2d:aa:e2:0c:5f:6d:75:25:b5:b6:ef:
a4:25:4f:44:43:07:d6:c9:b4:56:ff:a3:f6:65:47:ea:20:2e:
88:e0:14:d0:1d:b4:42:f3:ed:d7:fa:9e:fe:35:0f:1d:53:f3:
ff:ca:62:0b:d5:40:28:80:08:2d:47:09:3f:25:2e:ba:03:e8:
9a:b3:7c:83:a0:0f:ae:54:f4:8c:53:19:6d:0a:21:18:17:f0:
82:9f:94:79:51:9c:82:12:a2:19:85:90:45:ed:2b:68:2d:3a:
d2:22:f4:27:75:6b:bc:11:62:a2:67:3c:f0:6b:d2:d2:22:0d:
5f:6c:b6:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:05 2023 by rpki-client on console-fra.rpki-client.org