Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-vV_2TyKlVJx09IJSlBY8-C7MBc.roa
File: 1-vV_2TyKlVJx09IJSlBY8-C7MBc.roa (raw, json)
Hash identifier: CBKbn6HLb49mtmA/vWJYkpXwLqHoB9nZvZKAABjJFNA=
Subject key identifier: FA:F5:7F:D9:3C:8A:95:52:71:D3:D2:09:4A:50:58:F3:E0:BB:30:17
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F80E34
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-vV_2TyKlVJx09IJSlBY8-C7MBc.roa
Signing time: Sat 01 Jan 2022 04:00:24 +0000
ROA not before: Sat 01 Jan 2022 04:00:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50431
IP address blocks: 95.43.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 402132532 (0x17f80e34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=faf57fd93c8a955271d3d2094a5058f3e0bb3017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f4:cb:d7:72:4d:f3:eb:b9:5a:41:c6:54:36:
14:91:8e:3f:1a:db:0f:79:12:a0:69:e8:ca:46:f8:
e8:fd:0a:4a:08:30:ac:04:cb:98:da:2b:0d:a4:87:
ea:87:59:94:4a:36:e5:16:ef:fc:b8:5c:e4:bc:dd:
3f:58:ff:dc:7f:2e:55:ea:f8:da:7a:72:ae:eb:37:
fd:dc:80:67:98:b1:17:30:d5:4e:9b:7f:11:47:4d:
4c:6d:06:4b:09:c8:e9:27:d5:c0:45:61:2d:7c:36:
22:5e:57:10:8a:00:a3:96:69:0e:9d:b4:35:8b:f4:
4e:48:83:f7:51:59:b7:df:14:ee:5d:7d:c3:1d:c9:
7a:60:c9:a6:d3:64:1c:58:87:f1:82:d7:03:f8:4a:
61:07:b9:69:e4:ab:86:cb:55:6d:96:82:cc:eb:38:
38:f3:43:e8:57:1c:f0:ec:53:5a:9e:27:e6:6e:50:
f8:6f:bd:b2:45:03:dc:62:d4:5a:ae:42:78:da:7f:
66:4c:5d:a4:ac:fb:b6:8a:70:c4:2f:22:b5:4d:ed:
6c:a1:75:76:60:69:48:1a:5e:27:76:37:a8:65:df:
5e:86:c1:36:d0:64:ac:98:bf:42:82:44:e5:6d:43:
71:ab:99:bf:29:e7:9f:60:a1:75:fb:fc:da:27:3a:
9a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F5:7F:D9:3C:8A:95:52:71:D3:D2:09:4A:50:58:F3:E0:BB:30:17
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/1-vV_2TyKlVJx09IJSlBY8-C7MBc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.43.213.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a2:43:42:2f:d3:7c:63:e8:d0:eb:96:00:59:a6:2c:01:99:
de:cd:9d:1f:8c:fd:75:c3:c2:76:7b:35:8a:fd:0e:8a:8f:2a:
73:ef:50:4d:50:c3:a0:22:e9:c0:95:2f:0b:d4:5e:4a:80:45:
c4:3b:77:4c:fd:56:ec:14:8a:cd:05:69:e6:a9:ab:b7:f2:c4:
38:9b:dd:ce:72:53:b4:3c:10:ea:ec:df:32:43:fb:6d:ef:ab:
4c:7b:1d:f5:2b:98:80:bc:74:02:b7:78:f6:ff:87:b3:77:11:
3c:75:ae:f7:2b:8b:b3:0a:6d:0d:ce:c5:a0:ac:2a:2e:b1:61:
68:fb:07:fa:37:3c:8c:17:33:10:3a:45:b3:f6:ec:99:a0:0b:
42:d0:b1:9e:2e:b1:d1:58:3a:f9:da:fa:d7:4f:56:be:f5:c7:
b6:e7:ed:2d:cf:6b:f7:33:83:e1:aa:4b:0d:45:0e:55:b0:06:
d7:f9:80:d8:57:5b:34:76:96:30:84:09:23:1e:3b:30:80:51:
d9:28:ec:13:d0:0b:19:af:db:a6:21:b4:5b:ed:cc:3f:c5:7f:
94:ea:eb:83:69:58:0f:c4:ec:53:e1:36:2d:c8:fb:91:bd:9d:
02:aa:88:0c:e9:87:b2:1e:4e:54:e9:09:01:54:89:ba:7d:cb:
aa:02:ca:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org