Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/_6BJlORqyFR3t_u0o2NP0d64-_4.roa
File: _6BJlORqyFR3t_u0o2NP0d64-_4.roa (raw, json)
Hash identifier: qEoG7wuzqFv7scaqNLzRt6qN6fyXBi9tpZ1TCretZAI=
Subject key identifier: FF:A0:49:94:E4:6A:C8:54:77:B7:FB:B4:A3:63:4F:D1:DE:B8:FB:FE
Certificate issuer: /CN=1b9ecfa71efef9bb1bfe7b2e40215cda5b231e5d
Certificate serial: 09D0E8A6
Authority key identifier: 1B:9E:CF:A7:1E:FE:F9:BB:1B:FE:7B:2E:40:21:5C:DA:5B:23:1E:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G57Ppx7--bsb_nsuQCFc2lsjHl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/_6BJlORqyFR3t_u0o2NP0d64-_4.roa
Signing time: Sat 01 Jan 2022 04:53:09 +0000
ROA not before: Sat 01 Jan 2022 04:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 95.214.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164685990 (0x9d0e8a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b9ecfa71efef9bb1bfe7b2e40215cda5b231e5d
Validity
Not Before: Jan 1 04:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffa04994e46ac85477b7fbb4a3634fd1deb8fbfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:ed:eb:71:53:57:c9:4d:34:a9:67:1e:5f:
34:a2:f5:69:7c:22:e0:13:7a:bf:45:b0:c8:28:8e:
d7:21:f6:72:1a:3c:7b:02:e3:d4:31:15:07:41:9b:
46:71:9f:9f:e4:08:4c:86:4b:b7:f2:12:33:35:0c:
2c:8e:af:68:42:db:4c:15:7f:bd:74:5d:e4:79:4c:
51:6e:6d:9f:7e:1f:f9:ef:7d:d0:3d:0d:49:f5:cf:
59:d0:62:60:3a:ab:37:3e:45:94:74:79:af:a9:79:
1a:79:ba:4c:2e:9d:71:29:ff:c9:ad:5f:f6:5f:44:
97:e5:16:46:2b:4f:d7:d5:2f:2b:b8:31:15:e1:fd:
75:9b:50:5c:bd:e5:6c:16:91:93:a1:38:cf:e7:eb:
ba:94:9f:df:f7:26:a2:ca:09:45:0c:b8:e3:76:87:
82:1f:90:a3:b1:77:33:c8:42:f4:a1:42:44:70:dc:
73:f4:83:90:0e:76:99:1c:96:2a:fb:20:b9:a8:2d:
ae:46:a1:4d:6b:f6:74:41:e4:ab:d1:71:13:37:1a:
fa:0f:5e:78:a1:b2:6d:77:9c:f2:d4:34:25:5c:26:
8b:59:9f:6b:d8:d1:24:7d:dd:6c:aa:10:99:59:9f:
8b:66:02:ed:a7:1e:be:fe:bb:0c:f8:86:1f:03:9c:
5a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A0:49:94:E4:6A:C8:54:77:B7:FB:B4:A3:63:4F:D1:DE:B8:FB:FE
X509v3 Authority Key Identifier:
keyid:1B:9E:CF:A7:1E:FE:F9:BB:1B:FE:7B:2E:40:21:5C:DA:5B:23:1E:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G57Ppx7--bsb_nsuQCFc2lsjHl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/_6BJlORqyFR3t_u0o2NP0d64-_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/ed1609-1086-47b4-a49d-f10d26e3c3df/1/G57Ppx7--bsb_nsuQCFc2lsjHl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.96.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:6e:0b:5e:ee:42:0a:78:26:87:0e:80:cb:c6:e6:e2:02:da:
f2:b0:74:a2:ce:5f:cf:f6:79:ac:17:19:0c:7c:84:2a:67:da:
17:16:95:b2:30:2e:f1:57:2b:56:ba:1f:91:63:55:e4:4b:ae:
33:d0:8d:6a:d2:66:24:fd:ec:21:2a:61:b3:58:9c:71:5a:49:
57:39:0a:30:96:c4:2c:c2:4c:99:3d:2f:bb:33:2a:a5:18:ad:
76:ff:65:20:ea:e7:79:9c:06:6d:03:db:74:85:34:fc:35:17:
92:4a:fa:01:d5:d9:e5:a8:62:07:4a:65:b4:f1:44:2a:25:6d:
93:e8:43:c7:20:75:04:ae:b8:5c:4a:dc:50:40:65:20:f4:41:
4b:c5:53:da:e3:78:33:11:f4:b9:16:f8:87:88:ee:ab:71:38:
38:fc:40:f3:1a:69:53:bd:02:7b:09:97:32:bc:4b:ce:9d:b5:
40:03:83:f6:e5:d0:01:8b:25:e1:9d:98:fb:e0:e0:52:20:80:
3b:69:5b:25:6d:68:5f:b5:be:5b:df:13:df:40:52:b2:36:a0:
44:ea:fb:8e:32:7d:fd:a1:50:43:7b:18:22:83:07:f1:37:53:
0e:ab:a1:13:54:e4:d4:fd:c0:c4:9e:30:c3:65:ef:27:b5:2c:
66:35:ed:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:48 2023 by rpki-client on console-ams.rpki-client.org