Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/fJdJlT9FIzl2opBRfCWDzZPZx4A.roa
File: fJdJlT9FIzl2opBRfCWDzZPZx4A.roa (raw, json)
Hash identifier: 7wLcuQ7kwdgpj5VXhbK6hGU1ZCVtk9v2F6iFIUEWBqo=
Subject key identifier: 7C:97:49:95:3F:45:23:39:76:A2:90:51:7C:25:83:CD:93:D9:C7:80
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0184005D69F3BB363F1C58B5B46E6EF6FC3B
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/fJdJlT9FIzl2opBRfCWDzZPZx4A.roa
Signing time: Sat 22 Oct 2022 15:43:52 +0000
ROA not before: Sat 22 Oct 2022 15:43:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150303
IP address blocks: 95.214.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:00:5d:69:f3:bb:36:3f:1c:58:b5:b4:6e:6e:f6:fc:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 22 15:43:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c9749953f45233976a290517c2583cd93d9c780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9f:db:ee:2f:72:1e:82:14:02:19:a1:69:6f:
8b:b1:8c:67:d5:b1:11:26:ca:4f:60:85:c7:72:96:
b9:9a:d3:cd:85:d7:e6:2c:0c:e4:47:59:1a:07:fc:
86:2b:1e:7a:a9:fa:f3:1c:68:c9:06:7c:47:fb:69:
3e:88:3c:0d:31:92:39:94:7e:4d:1b:56:7c:8e:6a:
18:2b:fb:9a:8e:4f:a7:26:6d:c6:a8:f2:ca:b0:fb:
c3:62:f8:fd:ca:39:ee:cd:5a:38:bc:1b:22:0f:7a:
5b:97:d0:13:9d:a8:5b:63:50:76:50:38:a8:af:5e:
47:fe:0c:fd:8a:48:16:45:e6:00:37:b5:5f:5d:f0:
0d:67:26:f1:b7:0b:db:5a:a1:61:13:25:e9:c7:a1:
39:6e:ea:18:07:5e:1d:74:b7:9f:60:ce:84:66:b5:
a8:2b:fc:b2:66:e7:be:c0:70:e7:25:03:4a:6a:fc:
3d:1e:13:d5:6a:6f:43:b0:ef:bd:7e:41:9f:7e:3d:
e3:44:81:bf:84:2b:3b:49:84:32:88:f8:5f:33:86:
7a:eb:08:85:cf:c5:eb:01:d5:f1:02:3d:a1:6d:26:
92:ac:4c:36:65:df:c2:6d:79:90:46:c0:9f:8b:a5:
cd:6b:88:52:54:48:6a:15:3f:f4:7c:90:54:37:6d:
3b:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:97:49:95:3F:45:23:39:76:A2:90:51:7C:25:83:CD:93:D9:C7:80
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/fJdJlT9FIzl2opBRfCWDzZPZx4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.177.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:75:2e:7b:c5:7f:4c:0c:50:75:fd:88:a5:d5:e4:85:64:e7:
ee:46:22:f9:1f:9a:21:ba:13:6c:f4:9f:62:53:0c:3c:bf:60:
2b:5c:a1:e1:b4:42:c8:1a:ba:c7:d8:b7:24:d7:38:d6:ed:98:
91:f3:59:b5:e5:07:e1:02:fd:f7:eb:03:35:57:51:0f:1d:bb:
c2:fc:2a:f7:80:de:5c:7a:63:7d:ac:50:b9:10:d2:7a:90:36:
c4:5f:bd:f4:20:77:da:95:8a:d1:f7:00:58:79:04:2a:d4:39:
7b:9b:d4:0b:c0:78:d8:3c:33:50:76:30:3c:00:9a:22:cb:24:
86:00:2f:30:f1:c8:f8:01:76:bc:78:23:ea:ec:2a:88:07:cd:
a0:69:33:13:e7:56:76:c0:b0:c3:f9:4c:e6:d3:3b:ec:d6:18:
45:39:e6:d9:ea:0f:fe:99:52:1c:5b:a7:0f:fa:b7:87:95:91:
e8:b1:04:33:ca:80:a4:15:8a:31:16:fe:9b:da:17:96:cf:63:
94:10:e3:d3:d0:b9:2b:42:40:d0:aa:a9:c3:76:ae:45:0a:22:
db:49:ce:9a:ae:a4:ec:a9:31:ad:65:42:f6:43:5a:13:e8:0b:
db:05:47:24:26:c0:24:dd:18:d3:11:22:9d:2d:a4:ed:4b:99:
aa:83:f9:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org