Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/2bb706-66d4-4fae-93a1-b97c2c4ad439/1/ox8X69QnN0-uhbEn03aXyOwQmbo.roa
File: ox8X69QnN0-uhbEn03aXyOwQmbo.roa (raw, json)
Hash identifier: 5R4ioDfMc+LnTGi53cW9phpIwhz67YAOBI/vGwzAtw8=
Subject key identifier: A3:1F:17:EB:D4:27:37:4F:AE:85:B1:27:D3:76:97:C8:EC:10:99:BA
Certificate issuer: /CN=aa8fd05eeb6ea05a11d667abedd8ea1093d271b3
Certificate serial: 184124D2
Authority key identifier: AA:8F:D0:5E:EB:6E:A0:5A:11:D6:67:AB:ED:D8:EA:10:93:D2:71:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qo_QXutuoFoR1mer7djqEJPScbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/2bb706-66d4-4fae-93a1-b97c2c4ad439/1/ox8X69QnN0-uhbEn03aXyOwQmbo.roa
Signing time: Sat 01 Jan 2022 15:01:38 +0000
ROA not before: Sat 01 Jan 2022 15:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48757
IP address blocks: 95.128.176.0/22 maxlen: 22
95.128.180.0/22 maxlen: 22
95.128.181.0/24 maxlen: 24
95.128.183.0/24 maxlen: 24
95.128.180.0/24 maxlen: 24
185.17.140.0/22 maxlen: 22
95.128.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 406922450 (0x184124d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa8fd05eeb6ea05a11d667abedd8ea1093d271b3
Validity
Not Before: Jan 1 15:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a31f17ebd427374fae85b127d37697c8ec1099ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:22:d3:11:24:e4:b7:7c:b6:fd:dd:12:7c:5d:
b0:70:06:09:55:80:59:df:64:75:d9:84:f2:1b:ee:
85:8a:02:18:9a:84:64:ee:0e:ff:6c:6c:fa:be:f5:
34:20:b0:13:72:a5:ba:ce:d8:b5:60:99:ce:b6:42:
88:33:1a:d2:7c:8a:64:7d:1f:69:be:07:49:64:86:
7d:80:29:69:fa:dd:14:59:29:25:5f:dc:4e:09:8d:
82:5f:84:e3:38:99:c4:20:97:8b:fe:12:78:8e:ae:
42:73:7b:62:8e:d9:00:20:38:67:85:dc:97:27:fe:
60:a7:4e:a1:fe:f6:20:5a:95:9c:48:fe:75:2b:9e:
45:5b:2a:e7:f7:ad:7a:b4:e6:51:1b:92:42:2e:43:
65:e8:ae:f4:45:ba:58:69:dd:b4:01:39:cb:5b:e1:
f9:a0:aa:42:66:9d:2c:d1:80:dd:8c:98:d4:8e:49:
35:a8:69:d2:a5:ee:93:ad:8a:e7:10:d9:48:ac:1c:
fb:5f:d9:46:a3:44:e4:5b:46:6c:46:dc:0d:bc:95:
4a:bb:2a:4a:b2:d4:9d:c6:df:a1:e4:fb:f8:bc:01:
2f:fd:02:54:60:76:1d:cf:25:2a:f7:ea:28:7c:8c:
d8:7b:5d:88:21:c2:f5:20:00:dd:b2:13:5b:32:d7:
51:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:1F:17:EB:D4:27:37:4F:AE:85:B1:27:D3:76:97:C8:EC:10:99:BA
X509v3 Authority Key Identifier:
keyid:AA:8F:D0:5E:EB:6E:A0:5A:11:D6:67:AB:ED:D8:EA:10:93:D2:71:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qo_QXutuoFoR1mer7djqEJPScbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/2bb706-66d4-4fae-93a1-b97c2c4ad439/1/ox8X69QnN0-uhbEn03aXyOwQmbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/2bb706-66d4-4fae-93a1-b97c2c4ad439/1/qo_QXutuoFoR1mer7djqEJPScbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.128.176.0/21
185.17.140.0/22
Signature Algorithm: sha256WithRSAEncryption
62:ea:a8:07:b7:c6:bd:86:c5:c4:b3:7b:df:fb:af:a9:10:d3:
8b:cc:9e:c0:a9:49:27:1e:17:1d:60:59:3b:01:51:8b:ab:06:
4e:48:2b:dd:72:2f:e2:2b:16:64:7f:df:72:32:2c:06:ef:de:
83:37:7f:a3:4c:d1:e5:a8:48:46:ee:56:09:b5:14:b2:c2:ff:
5f:11:b5:8b:a3:01:db:dc:ca:48:4a:61:69:de:50:a3:a3:ac:
4b:ee:b8:2f:0f:39:3e:77:ca:2d:ad:36:15:5a:10:2d:c9:c8:
51:2e:eb:62:fe:df:d9:60:fc:44:d6:77:87:87:a8:df:e7:d1:
77:6e:28:0d:07:23:8f:c3:08:83:c6:30:e8:d5:f8:e4:b0:97:
49:5c:01:73:28:63:d5:bc:d4:96:ed:05:58:1f:18:f4:33:03:
76:45:52:e4:a1:17:19:4a:f2:e3:45:c7:b8:6d:20:e5:35:04:
6a:fc:d9:72:04:91:8b:6c:e5:2d:b1:dc:a8:c5:18:f3:3e:37:
d1:03:0c:df:02:ec:fa:db:60:d2:f3:dc:40:a0:b8:13:30:95:
e6:a5:e3:9b:65:92:43:6c:81:09:ef:3a:50:a0:d2:ed:a5:84:
97:6a:9b:c6:eb:f7:ee:d3:dd:67:b6:17:a2:cc:25:ea:e9:88:
ac:a2:dd:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:43:01 2023 by rpki-client on console.sobornost.net