Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/pRBi1KPugDmTV2yDyJpECzyyvMA.roa
File: pRBi1KPugDmTV2yDyJpECzyyvMA.roa (raw, json)
Hash identifier: tMIb2NZD0C7yIl52zcer3+oAekS4qQZKLKcDZKz7LfE=
Subject key identifier: A5:10:62:D4:A3:EE:80:39:93:57:6C:83:C8:9A:44:0B:3C:B2:BC:C0
Certificate issuer: /CN=20e425a32b62d39818c4cbb0081075686fc4c8e8
Certificate serial: 06BC8B2F
Authority key identifier: 20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/pRBi1KPugDmTV2yDyJpECzyyvMA.roa
Signing time: Sat 01 Jan 2022 09:04:22 +0000
ROA not before: Sat 01 Jan 2022 09:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198682
IP address blocks: 95.170.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113019695 (0x6bc8b2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20e425a32b62d39818c4cbb0081075686fc4c8e8
Validity
Not Before: Jan 1 09:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a51062d4a3ee803993576c83c89a440b3cb2bcc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:3e:e6:f2:ae:39:14:4c:31:61:87:06:a3:c0:
02:75:e0:bd:47:36:39:ec:2f:d4:22:01:8c:8e:f7:
0d:4f:e1:5b:1a:db:41:e6:a1:7e:f7:6d:65:47:74:
f5:96:77:9d:00:6f:64:83:70:1c:57:df:d1:d9:1e:
3c:a1:bb:6a:d0:db:f1:55:87:c5:4a:73:73:7d:96:
4d:56:21:38:6d:7b:46:bf:67:cc:04:cc:da:8e:8f:
d1:8f:2b:e3:5a:82:43:07:d4:f7:3a:29:fb:4c:95:
6d:82:a1:d6:95:54:43:47:8e:71:42:29:4b:b4:70:
1a:84:2d:46:19:6d:d0:34:37:f9:0c:5f:26:4f:05:
38:cc:55:df:5b:08:fe:66:57:e6:31:2f:93:99:20:
b5:51:94:58:81:59:d6:1a:f7:44:04:86:15:cb:ae:
b3:fc:bc:ae:dd:d8:a2:22:72:80:af:7d:80:50:dd:
53:88:46:f4:8d:a3:3f:38:b6:83:6e:c8:b5:6b:22:
72:38:0a:2d:d9:7d:2f:ab:f3:48:83:80:a6:75:0d:
7f:08:dd:0f:6e:c1:1a:c8:02:24:3b:e0:f6:fe:3e:
d3:cb:a9:4c:b6:62:db:1b:b2:9c:38:db:78:b3:a9:
b7:58:8d:3c:0b:a7:cd:81:b0:49:78:d2:22:9b:85:
bb:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:10:62:D4:A3:EE:80:39:93:57:6C:83:C8:9A:44:0B:3C:B2:BC:C0
X509v3 Authority Key Identifier:
keyid:20:E4:25:A3:2B:62:D3:98:18:C4:CB:B0:08:10:75:68:6F:C4:C8:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IOQloyti05gYxMuwCBB1aG_EyOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/pRBi1KPugDmTV2yDyJpECzyyvMA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/fd8c01-7b71-442c-9adb-ecd2965cb7e7/1/IOQloyti05gYxMuwCBB1aG_EyOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.170.4.0/24
Signature Algorithm: sha256WithRSAEncryption
74:13:a6:0b:3a:3c:4c:a3:08:e4:78:e8:27:cf:04:2d:ad:59:
2b:88:64:6a:71:84:03:f8:97:11:4c:aa:ff:9d:62:90:f9:2f:
22:e8:c1:3c:af:d5:00:52:e6:5e:53:52:c0:22:16:04:84:b0:
da:3a:53:cd:d4:ce:da:22:10:6f:98:d4:a1:8d:42:56:c6:c5:
91:07:d2:05:65:67:99:af:7f:02:90:ef:0e:6e:91:f4:bb:a2:
1b:60:38:b4:e7:27:c0:76:a5:ef:15:41:07:1b:d9:fe:c2:7a:
17:de:65:21:7b:6e:ef:25:0e:22:d3:6a:67:a8:8f:b1:7c:49:
9d:3b:f9:95:08:3a:df:9c:14:02:fc:b7:10:ea:cc:7c:e7:ae:
fe:a0:77:c9:48:10:cb:35:4d:91:cf:9c:0c:35:83:63:56:60:
86:f4:ae:89:3e:f8:92:58:ef:bb:8f:5a:fe:65:af:c4:85:ae:
78:fa:39:46:aa:08:93:79:9a:a8:b2:9d:92:0a:d3:b1:72:81:
67:92:f1:4f:99:df:75:90:a7:fb:f9:52:50:0a:98:e0:19:fc:
a3:83:6d:b1:f8:eb:3d:83:9f:dd:93:e0:d0:5d:ae:29:a1:3a:
34:b4:27:59:27:e1:46:55:08:57:4d:af:69:9b:d5:fd:c8:a3:
12:79:d1:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:45 2023 by rpki-client on console.sobornost.net