Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/T_5nxE2XfXRVqR3FbLIw3MiU5m0.roa
File: T_5nxE2XfXRVqR3FbLIw3MiU5m0.roa (raw, json)
Hash identifier: akjsN+HhG5UsmzEt2anu4ww31LZXg0LKo8xN4QWULuA=
Subject key identifier: 4F:FE:67:C4:4D:97:7D:74:55:A9:1D:C5:6C:B2:30:DC:C8:94:E6:6D
Certificate issuer: /CN=d897faea94815e0520b46f185c3ebec29b376ef0
Certificate serial: 01C5C5
Authority key identifier: D8:97:FA:EA:94:81:5E:05:20:B4:6F:18:5C:3E:BE:C2:9B:37:6E:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Jf66pSBXgUgtG8YXD6-wps3bvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/T_5nxE2XfXRVqR3FbLIw3MiU5m0.roa
Signing time: Thu 19 May 2022 07:57:41 +0000
ROA not before: Thu 19 May 2022 07:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212882
IP address blocks: 95.130.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116165 (0x1c5c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d897faea94815e0520b46f185c3ebec29b376ef0
Validity
Not Before: May 19 07:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4ffe67c44d977d7455a91dc56cb230dcc894e66d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d1:1f:4c:f5:83:e0:ec:6f:b0:ac:c5:ff:8f:
88:a6:bc:29:d0:57:98:31:d4:2f:2a:fe:8a:00:56:
26:79:1e:ad:71:ed:9c:35:63:11:9e:0e:e7:c9:75:
00:3e:43:8a:38:81:32:6c:1f:b7:b3:ad:e7:c9:0f:
00:38:63:76:bc:b8:6b:34:29:38:51:41:ae:53:3a:
79:b4:17:a5:1f:64:ae:f1:89:44:a6:21:5c:eb:ab:
9d:7e:0d:70:e0:82:0c:95:87:2b:73:c6:97:11:25:
72:21:d7:31:99:23:f3:85:15:bd:19:e5:19:17:ac:
b5:e7:24:d6:80:83:bc:5d:53:ca:54:ac:0c:86:a2:
77:e8:4c:2e:45:da:0e:22:ed:36:da:52:bc:e6:a3:
f7:2c:26:b2:02:ef:c8:ce:3c:45:6b:be:8a:2b:db:
54:d8:74:4f:4f:19:73:5e:1c:d3:e3:9d:52:d1:7b:
f8:8d:09:54:b9:07:eb:0d:51:db:10:48:1d:a2:1e:
53:ae:e8:6e:6c:43:9a:eb:9a:28:49:8b:26:94:da:
1c:50:3d:77:22:27:08:c6:47:d4:d0:ea:b7:15:b3:
bb:63:27:a3:06:ca:0f:18:d4:d6:ba:f0:a5:72:75:
33:5a:83:98:ef:b0:bc:8c:67:c2:e2:54:16:74:8d:
36:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FE:67:C4:4D:97:7D:74:55:A9:1D:C5:6C:B2:30:DC:C8:94:E6:6D
X509v3 Authority Key Identifier:
keyid:D8:97:FA:EA:94:81:5E:05:20:B4:6F:18:5C:3E:BE:C2:9B:37:6E:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Jf66pSBXgUgtG8YXD6-wps3bvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/T_5nxE2XfXRVqR3FbLIw3MiU5m0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/76a216-cae7-4886-8e77-c813ce0f5e47/1/2Jf66pSBXgUgtG8YXD6-wps3bvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.130.184.0/22
Signature Algorithm: sha256WithRSAEncryption
66:f8:d4:aa:46:65:9f:71:dd:92:06:5c:22:8e:e7:eb:06:49:
bd:e4:33:f5:46:c9:74:51:c2:be:67:7b:fc:cb:92:8a:d7:16:
0f:11:ed:0b:df:f9:a1:98:18:1c:6e:ed:8a:07:c7:6b:d8:1e:
af:5d:24:6a:46:19:1c:d6:93:ed:90:55:9f:92:10:d3:dc:64:
b5:c5:a7:3c:b1:27:e3:e7:ec:e9:9b:53:b3:10:27:76:70:67:
e7:68:86:22:0e:12:0d:dd:7c:34:cb:a2:63:04:0f:72:d2:19:
44:85:21:34:83:ee:ed:67:3b:86:37:01:21:ef:57:25:c3:0f:
e6:61:1b:39:b5:e5:41:7c:db:20:8c:4e:83:9f:63:f5:23:d1:
02:33:f5:41:f1:04:3b:8b:db:c6:7a:cf:fd:44:14:6a:d1:24:
f5:66:0b:16:1e:7b:91:25:f2:05:1e:85:a6:e1:9f:b0:80:7d:
f1:6b:dd:f5:6d:f0:ac:12:41:ae:13:38:b4:72:c1:78:79:90:
26:87:12:5d:05:c6:a8:f4:e9:89:b3:73:62:e0:86:32:31:42:
2b:49:87:a3:c8:ae:e3:80:21:dc:76:51:da:0a:cd:92:99:fe:
50:f1:06:45:f9:ac:22:f1:2a:48:b6:f1:9b:cc:9e:af:0f:2f:
92:e7:63:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:52 2023 by rpki-client on console-fra.rpki-client.org