Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/0_CIFddBmJ_Lyud5eQGsv54_PHQ.roa
File: 0_CIFddBmJ_Lyud5eQGsv54_PHQ.roa (raw, json)
Hash identifier: R8HCVP4X5ATHtu5DtaxDbmX2mG361fGH3IHge7g8Rpk=
Subject key identifier: D3:F0:88:15:D7:41:98:9F:CB:CA:E7:79:79:01:AC:BF:9E:3F:3C:74
Certificate issuer: /CN=f416539e74934d23a0572f6625dbfdb54e820873
Certificate serial: 3089BBB5
Authority key identifier: F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/0_CIFddBmJ_Lyud5eQGsv54_PHQ.roa
Signing time: Sat 01 Jan 2022 14:04:57 +0000
ROA not before: Sat 01 Jan 2022 14:04:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29286
IP address blocks: 95.107.152.0/22 maxlen: 22
95.107.151.0/24 maxlen: 24
95.107.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 814332853 (0x3089bbb5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f416539e74934d23a0572f6625dbfdb54e820873
Validity
Not Before: Jan 1 14:04:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f08815d741989fcbcae7797901acbf9e3f3c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:60:42:e6:f6:43:2f:16:7e:35:4f:25:d1:77:
fb:85:a6:85:cf:ec:5e:2b:2b:18:c0:6a:fa:cb:a4:
bc:53:f2:81:f6:b2:52:27:dd:62:cd:e7:dc:b1:3c:
a5:67:45:43:eb:1f:4d:8f:ea:39:f1:2c:07:31:ad:
71:e2:91:09:26:0a:ad:f9:cb:8f:24:62:35:bd:57:
df:33:d0:a0:e9:d8:a6:61:36:b1:b3:a9:a6:5d:9c:
aa:e2:de:0d:66:32:bf:a1:c1:00:40:cf:02:dc:71:
5b:9d:30:fc:2d:27:62:b5:8d:ed:f4:ac:fa:fd:75:
1b:66:09:77:3f:86:01:33:33:ea:6a:03:de:08:6a:
26:04:2e:82:21:ce:83:47:cc:0e:a2:6b:67:2b:26:
22:37:e2:b5:ac:d0:c7:02:43:3b:7e:69:f5:da:fc:
23:03:57:e7:06:bf:2f:3c:12:13:af:e8:cc:62:f6:
60:6b:8b:03:09:c4:82:bf:b3:6e:65:de:f9:6a:f1:
24:85:7f:1a:a3:cb:15:a4:31:0d:d9:b7:7d:f8:ce:
a2:6b:1d:14:5d:6c:64:df:1f:9d:be:3a:df:12:6e:
fc:d7:d2:51:ea:55:fb:29:d4:a4:f3:ba:20:a4:0e:
13:36:fe:0d:39:55:23:f8:50:4c:e9:d9:c3:8d:18:
ad:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F0:88:15:D7:41:98:9F:CB:CA:E7:79:79:01:AC:BF:9E:3F:3C:74
X509v3 Authority Key Identifier:
keyid:F4:16:53:9E:74:93:4D:23:A0:57:2F:66:25:DB:FD:B5:4E:82:08:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9BZTnnSTTSOgVy9mJdv9tU6CCHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/0_CIFddBmJ_Lyud5eQGsv54_PHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/53e496-0097-462a-a989-d67a61d5416d/1/9BZTnnSTTSOgVy9mJdv9tU6CCHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.107.150.0-95.107.155.255
Signature Algorithm: sha256WithRSAEncryption
15:7d:30:43:87:7b:1c:03:19:af:69:26:08:1b:35:2a:21:7a:
9d:37:2c:43:39:83:49:bf:a8:6d:08:0e:59:13:db:a4:8e:05:
49:f8:fb:26:c7:54:b5:e6:df:d3:13:f8:27:f9:f4:f4:4f:73:
ff:b2:5f:12:d9:52:eb:a5:60:0d:32:a7:94:3f:13:74:25:5c:
fc:fe:38:58:09:7d:5f:06:4a:8f:d7:b7:29:f8:df:04:88:f6:
1a:fe:22:b5:39:ff:cb:5e:1e:e9:45:f2:2c:d5:e9:05:46:74:
c7:0d:61:bc:de:a8:a6:94:39:fc:9f:c2:9a:e3:a0:70:7c:91:
0c:e8:4d:f7:98:ba:3f:23:4b:7a:3a:9b:a2:4a:cb:30:d0:b4:
5e:11:0d:fe:84:41:e5:3f:fd:a4:c2:ac:6b:4a:9d:92:45:15:
a7:81:86:44:25:5f:04:ec:35:50:42:17:91:c8:e4:49:c3:0a:
3f:1a:df:38:e5:5e:2d:5f:dc:8f:e3:18:cd:19:0e:d9:f0:38:
46:21:88:80:9d:f8:15:75:e3:3e:f4:ba:b0:7b:99:32:08:b6:
8d:fd:25:58:87:a9:33:f3:41:4d:f3:82:7b:43:02:a6:42:50:
ff:19:10:a4:11:8f:18:10:54:aa:12:b1:59:6f:d1:38:99:8c:
22:04:c9:6e
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEMIm7tTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
NDE2NTM5ZTc0OTM0ZDIzYTA1NzJmNjYyNWRiZmRiNTRlODIwODczMB4XDTIyMDEw
MTE0MDQ1N1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNmMDg4MTVkNzQx
OTg5ZmNiY2FlNzc5NzkwMWFjYmY5ZTNmM2M3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAIxgQub2Qy8WfjVPJdF3+4Wmhc/sXisrGMBq+sukvFPygfay
UifdYs3n3LE8pWdFQ+sfTY/qOfEsBzGtceKRCSYKrfnLjyRiNb1X3zPQoOnYpmE2
sbOppl2cquLeDWYyv6HBAEDPAtxxW50w/C0nYrWN7fSs+v11G2YJdz+GATMz6moD
3ghqJgQugiHOg0fMDqJrZysmIjfitazQxwJDO35p9dr8IwNX5wa/LzwSE6/ozGL2
YGuLAwnEgr+zbmXe+WrxJIV/GqPLFaQxDdm3ffjOomsdFF1sZN8fnb463xJu/NfS
UepV+ynUpPO6IKQOEzb+DTlVI/hQTOnZw40YrYkCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTT8IgV10GYn8vK53l5Aay/nj88dDAfBgNVHSMEGDAWgBT0FlOedJNNI6BX
L2Yl2/21ToIIczAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzlCWlRublNUVFNPZ1Z5OW1KZHY5dFU2Q0NITS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzMvNTNlNDk2LTAwOTctNDYyYS1hOTg5LWQ2N2E2MWQ1NDE2ZC8x
LzBfQ0lGZGRCbUpfTHl1ZDVlUUdzdjU0X1BIUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMv
NTNlNDk2LTAwOTctNDYyYS1hOTg5LWQ2N2E2MWQ1NDE2ZC8xLzlCWlRublNUVFNP
Z1Z5OW1KZHY5dFU2Q0NITS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQBX2uWAwQCX2uYMA0GCSqGSIb3
DQEBCwUAA4IBAQAVfTBDh3scAxmvaSYIGzUqIXqdNyxDOYNJv6htCA5ZE9ukjgVJ
+Psmx1S15t/TE/gn+fT0T3P/sl8S2VLrpWANMqeUPxN0JVz8/jhYCX1fBkqP17cp
+N8EiPYa/iK1Of/LXh7pRfIs1ekFRnTHDWG83qimlDn8n8Ka46BwfJEM6E33mLo/
I0t6OpuiSssw0LReEQ3+hEHlP/2kwqxrSp2SRRWngYZEJV8E7DVQQheRyORJwwo/
Gt845V4tX9yP4xjNGQ7Z8DhGIYiAnfgVdeM+9Lqwe5kyCLaN/SVYh6kz80FN84J7
QwKmQlD/GRCkEY8YEFSqErFZb9E4mYwiBMlu
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:29 2023 by rpki-client on console-fra.rpki-client.org