Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/iGKXxYKqBnwar7kcKC-jZYZE0Lk.roa
File: iGKXxYKqBnwar7kcKC-jZYZE0Lk.roa (raw, json)
Hash identifier: ZoNFJxwrQAyai3oE186yHMC1e04cDy4dPM24jSVN3QI=
Subject key identifier: 88:62:97:C5:82:AA:06:7C:1A:AF:B9:1C:28:2F:A3:65:86:44:D0:B9
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 03C6F29A
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/iGKXxYKqBnwar7kcKC-jZYZE0Lk.roa
Signing time: Sat 01 Jan 2022 05:02:13 +0000
ROA not before: Sat 01 Jan 2022 05:02:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201814
IP address blocks: 95.214.52.0/22 maxlen: 22
185.16.36.0/22 maxlen: 22
2a03:cfc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63369882 (0x3c6f29a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Jan 1 05:02:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=886297c582aa067c1aafb91c282fa3658644d0b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:6e:ec:f7:ba:2a:25:46:73:e1:9a:28:ea:
a4:57:4b:67:e1:52:6e:44:56:19:e5:15:d9:45:ca:
ab:41:8a:95:7b:14:89:30:9a:78:22:84:5f:96:d6:
d3:36:25:22:90:e7:10:9e:08:1d:7a:40:da:34:78:
03:38:47:99:d6:e6:a7:11:54:b4:a3:59:63:c0:6e:
cc:9a:f4:90:8a:90:e8:ac:51:58:02:98:6d:2e:d6:
fd:aa:09:4c:94:59:db:a4:53:d0:6f:50:c1:04:09:
62:03:04:33:08:8f:ca:79:d6:c3:31:97:6f:3c:21:
44:d5:68:62:f9:65:70:a7:08:c7:d9:7a:7c:44:2e:
64:bc:21:61:60:92:25:49:50:92:b0:02:c5:bc:67:
f2:7e:7d:a7:87:9c:4b:ee:1a:91:ac:cc:35:b5:95:
e0:49:c4:b3:2c:d2:bb:99:3c:e0:a0:ac:43:37:97:
01:36:ea:a2:df:1d:02:28:e4:d9:4f:1a:f1:d5:af:
15:9a:8d:70:1e:f9:75:9b:b9:a8:65:b6:4f:76:16:
a5:dc:3e:56:0d:19:5a:ae:46:ff:94:4d:66:73:ad:
d6:33:6d:f4:05:27:67:26:95:64:ea:a6:40:fd:e9:
a7:a9:07:0e:40:53:32:7e:ea:03:7f:17:ef:79:af:
10:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:62:97:C5:82:AA:06:7C:1A:AF:B9:1C:28:2F:A3:65:86:44:D0:B9
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/iGKXxYKqBnwar7kcKC-jZYZE0Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.52.0/22
185.16.36.0/22
IPv6:
2a03:cfc0::/32
Signature Algorithm: sha256WithRSAEncryption
9d:6b:8d:f5:27:9d:f9:4f:b6:81:0d:f0:6c:82:ab:d9:87:86:
9a:6a:8c:2a:2f:bb:88:73:95:24:b1:dc:a3:ce:7d:56:63:e2:
a8:1e:e0:16:50:17:9f:68:de:a2:43:ea:15:a2:33:45:ae:f1:
1a:4c:48:76:8e:fe:ed:22:83:41:23:07:fc:c4:7b:0e:12:0f:
64:94:82:85:b6:dc:c7:f2:ce:30:e6:62:d2:ab:9f:10:26:80:
de:d9:93:4c:e1:3b:23:a2:0d:92:f4:f3:a8:7e:76:da:15:1a:
22:fa:b2:b3:95:07:03:e8:3b:97:c6:ad:1f:5f:a0:d1:18:a7:
19:29:55:e2:3c:d7:66:48:5c:24:39:2e:97:ed:be:06:00:93:
29:71:b6:84:22:66:3f:24:08:fb:49:ef:90:12:fa:de:55:6c:
88:68:17:1e:8d:b7:c1:95:50:f6:f3:88:e1:2c:2d:6e:ac:da:
3b:97:ed:f7:c1:2a:03:15:a9:61:75:ed:e7:af:e4:30:59:e3:
7c:d5:99:d0:57:68:e7:bb:01:48:e0:4f:f7:1b:86:6d:26:db:
39:23:8b:bc:57:93:4f:de:18:23:b2:ef:98:c2:4a:3f:0a:d5:
a0:fc:5c:cd:ec:38:8a:06:57:13:ed:7a:37:7b:9d:e1:f0:3d:
5c:40:81:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:03 2024 by rpki-client on console-ams.rpki-client.org