Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/bBFyYQOzniIJCXJLfHjT0L3T_9Y.roa
File: bBFyYQOzniIJCXJLfHjT0L3T_9Y.roa (raw, json)
Hash identifier: 2yose95eKBWq0Riy134tAGVjNqF2GFslOuE/CGZG2fI=
Subject key identifier: 6C:11:72:61:03:B3:9E:22:09:09:72:4B:7C:78:D3:D0:BD:D3:FF:D6
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0757F60D
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/bBFyYQOzniIJCXJLfHjT0L3T_9Y.roa
Signing time: Sat 01 Jan 2022 03:51:27 +0000
ROA not before: Sat 01 Jan 2022 03:51:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 95.214.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123205133 (0x757f60d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c11726103b39e220909724b7c78d3d0bdd3ffd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:86:1e:ef:40:25:5a:3a:50:75:10:2a:d2:50:
98:c3:11:87:b9:b7:da:95:35:15:c8:5c:f2:aa:b4:
4b:f2:32:45:c9:b4:68:40:5e:ab:2a:76:08:ad:98:
c7:1f:59:d1:aa:e8:e9:e0:cb:e1:53:6a:d5:31:eb:
09:09:0b:f4:3d:b4:64:c8:99:7d:c9:cf:04:14:2e:
59:9d:0a:78:cb:ac:f6:35:ca:0d:e9:6e:c6:ee:5a:
7e:ee:0b:19:4e:ab:43:df:69:fe:f3:c5:25:26:11:
93:46:a2:6f:1f:27:52:0d:72:6a:6a:64:29:09:b8:
0a:d5:50:a6:b9:8b:a3:7a:91:76:58:32:18:24:09:
45:b9:5e:c4:b6:0d:65:48:0a:cc:87:c5:dd:82:8b:
b1:be:cc:b9:ac:9b:2b:7d:08:85:0e:4b:52:3a:ea:
fc:45:9d:a3:4e:04:04:ef:53:0f:97:19:26:fa:fa:
53:70:17:5d:b2:45:5a:1b:80:d2:36:80:b2:fe:57:
c8:86:85:29:f1:86:d3:2d:f6:3d:5a:4f:c9:0f:d4:
c6:41:93:7e:4a:b3:0d:b7:7c:8e:cc:88:39:b5:81:
c2:a5:73:fe:17:c1:df:40:b5:59:23:7c:17:1b:29:
be:91:4c:d3:74:75:aa:96:ab:68:34:2c:04:4a:03:
8a:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:11:72:61:03:B3:9E:22:09:09:72:4B:7C:78:D3:D0:BD:D3:FF:D6
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/bBFyYQOzniIJCXJLfHjT0L3T_9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.176.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:90:a2:dc:31:f1:56:a1:ee:c2:c0:fd:41:5c:49:f1:7c:5a:
08:e5:51:0b:4f:cd:0f:e4:61:e1:f2:ef:6c:9e:07:07:43:b2:
cd:83:a9:74:5d:f2:af:bc:45:10:3d:95:69:2c:e5:ba:7a:fb:
7d:e1:db:9c:31:02:ca:ae:f4:b5:3c:42:ee:ff:23:58:1b:2b:
68:bd:a9:6c:56:99:db:35:7a:cf:03:3d:c1:3b:42:77:f9:fe:
57:c0:da:7f:95:8e:71:04:e2:48:c7:7b:3a:f6:bb:59:b5:7d:
2e:22:3f:2a:8a:d9:f1:03:62:e2:3e:f6:f8:40:65:aa:03:3d:
ec:a6:45:da:62:70:87:f3:80:d7:68:7d:12:30:63:17:b1:22:
c6:78:bb:4d:6f:25:45:49:2d:1c:26:05:e3:32:45:90:61:d1:
1b:c4:8e:d9:e3:87:99:3d:de:3c:d7:7f:9d:d2:d9:53:c3:91:
b5:e7:fa:b8:19:80:6d:98:d8:72:21:28:e0:01:e9:ab:9a:5b:
e5:d6:42:f9:9e:f1:6d:5b:dd:4c:d8:ee:6c:d9:2e:31:24:e9:
75:c1:0d:6d:af:7a:2b:bd:31:4c:35:96:ac:9c:1c:c5:b8:f1:
99:a3:95:ae:43:6d:c9:63:31:eb:59:a8:da:d0:92:5f:56:8e:
9f:95:9b:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org