Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/I1rKIi1FNC_Un9sfppmWV4VXpHw.roa
File: I1rKIi1FNC_Un9sfppmWV4VXpHw.roa (raw, json)
Hash identifier: ZX1MwN/DGjgyskN0b57NfubCYtN/OiphwgNztFjHIBc=
Subject key identifier: 23:5A:CA:22:2D:45:34:2F:D4:9F:DB:1F:A6:99:96:57:85:57:A4:7C
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 08A5238F
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/I1rKIi1FNC_Un9sfppmWV4VXpHw.roa
Signing time: Wed 11 May 2022 05:02:02 +0000
ROA not before: Wed 11 May 2022 05:02:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 95.214.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145040271 (0x8a5238f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: May 11 05:02:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=235aca222d45342fd49fdb1fa69996578557a47c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:53:fc:e8:12:0a:bd:c0:14:4b:0f:9b:8d:b8:
2d:c4:f6:3e:ca:2a:cf:fe:9d:18:e2:19:3b:b1:3a:
ec:e3:b4:60:15:4d:da:17:98:19:b2:9c:18:28:2c:
82:6d:43:24:91:12:74:73:3a:20:ed:3d:0b:b1:5f:
bd:15:1c:74:63:0c:01:68:bc:a4:4a:07:c4:05:25:
32:4b:76:a4:8c:73:a7:fc:e0:0b:c3:98:d3:07:7e:
b8:82:c2:5d:ef:4c:ba:85:d4:fc:9a:e0:16:3b:20:
4e:13:34:21:ef:ce:62:cc:7c:be:98:3c:86:0d:33:
2e:77:c7:2a:69:5b:e6:e8:15:8f:7c:37:33:2c:aa:
4e:07:ed:ad:b2:b4:8f:4d:c0:86:93:d0:94:87:57:
35:46:b1:99:1a:b4:f1:68:0a:34:d9:5d:eb:80:b5:
21:4b:72:48:e9:13:25:e8:2c:01:a5:b0:c8:25:df:
89:7d:5d:fb:62:15:a2:f8:d4:51:c1:b5:f7:f8:22:
8b:d4:7e:0a:ac:4c:50:c5:4f:5f:3e:cf:e4:8c:ae:
9c:ed:51:01:79:76:6c:ec:2f:cc:b2:ad:a4:82:0d:
7d:79:59:51:99:39:89:c7:87:69:1f:df:d6:ed:c9:
af:a5:4c:16:cb:44:0a:07:c7:72:e9:33:4f:78:2d:
64:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5A:CA:22:2D:45:34:2F:D4:9F:DB:1F:A6:99:96:57:85:57:A4:7C
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/I1rKIi1FNC_Un9sfppmWV4VXpHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.176.0/22
Signature Algorithm: sha256WithRSAEncryption
29:9d:dd:5a:8a:08:fd:28:33:f8:e5:c2:a9:61:84:0d:87:a9:
da:9d:ce:7a:06:13:bf:a2:35:f9:85:11:0d:09:16:6a:3a:71:
2e:0c:b8:da:09:3b:25:69:24:56:db:a9:07:12:43:19:32:ef:
df:ce:f6:1a:f9:f0:d1:7c:71:9e:cc:a0:27:2f:bf:5e:f1:70:
5a:ee:1f:9d:94:d1:78:66:c7:05:75:49:5f:88:05:e2:fa:ae:
a5:16:f1:b5:0e:33:fc:1c:4f:4b:c0:e5:0a:ca:da:1d:1c:23:
08:70:cc:8b:ec:45:a5:6e:6d:2f:a3:22:34:41:cb:40:00:dd:
6a:09:8b:20:5d:21:7b:f6:11:90:b1:7a:a1:b9:5f:84:c3:a5:
6c:c0:2f:7f:b9:6e:64:86:c9:c0:9d:6d:35:e2:28:df:43:b9:
fe:03:d5:d8:1e:1a:95:62:e9:c9:d1:94:e0:49:f9:f2:b6:37:
10:b6:27:68:85:76:7c:08:7a:47:fe:a2:2a:c9:71:39:14:45:
57:be:d7:f3:09:d2:8c:0f:be:91:a7:60:5d:79:33:44:58:0b:
ae:3b:ef:16:89:14:7f:79:aa:b7:3e:1e:17:d3:e0:55:44:ec:
82:13:62:39:ed:4e:2c:77:29:18:53:79:63:cf:81:a6:60:9b:
75:61:79:fd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECKUjjzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YjBjMGQwNDIyNTU2NmRiOTVlOWFkM2IyZWY2MDUwMTQ5NzVhYWEyMB4XDTIyMDUx
MTA1MDIwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjM1YWNhMjIyZDQ1
MzQyZmQ0OWZkYjFmYTY5OTk2NTc4NTU3YTQ3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKVT/OgSCr3AFEsPm424LcT2Psoqz/6dGOIZO7E67OO0YBVN
2heYGbKcGCgsgm1DJJESdHM6IO09C7FfvRUcdGMMAWi8pEoHxAUlMkt2pIxzp/zg
C8OY0wd+uILCXe9MuoXU/JrgFjsgThM0Ie/OYsx8vpg8hg0zLnfHKmlb5ugVj3w3
MyyqTgftrbK0j03AhpPQlIdXNUaxmRq08WgKNNld64C1IUtySOkTJegsAaWwyCXf
iX1d+2IVovjUUcG19/gii9R+CqxMUMVPXz7P5IyunO1RAXl2bOwvzLKtpIINfXlZ
UZk5iceHaR/f1u3Jr6VMFstECgfHcukzT3gtZCsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQjWsoiLUU0L9Sf2x+mmZZXhVekfDAfBgNVHSMEGDAWgBSbDA0EIlVm25Xp
rTsu9gUBSXWqojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L213d05CQ0pWWnR1VjZhMDdMdllGQVVsMXFxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvMGVjNmQyLWYxZDctNGIwYS1hZDMzLWU4ZWYyZjA5NTk4ZS8x
L0kxcktJaTFGTkNfVW45c2ZwcG1XVjRWWHBIdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
MGVjNmQyLWYxZDctNGIwYS1hZDMzLWU4ZWYyZjA5NTk4ZS8xL213d05CQ0pWWnR1
VjZhMDdMdllGQVVsMXFxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAl/WsDANBgkqhkiG9w0BAQsFAAOC
AQEAKZ3dWooI/Sgz+OXCqWGEDYep2p3OegYTv6I1+YURDQkWajpxLgy42gk7JWkk
VtupBxJDGTLv3872Gvnw0XxxnsygJy+/XvFwWu4fnZTReGbHBXVJX4gF4vqupRbx
tQ4z/BxPS8DlCsraHRwjCHDMi+xFpW5tL6MiNEHLQADdagmLIF0he/YRkLF6oblf
hMOlbMAvf7luZIbJwJ1tNeIo30O5/gPV2B4alWLpydGU4En58rY3ELYnaIV2fAh6
R/6iKslxORRFV77X8wnSjA++kadgXXkzRFgLrjvvFokUf3mqtz4eF9PgVUTsghNi
Oe1OLHcpGFN5Y8+BpmCbdWF5/Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org