Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7e5030-da24-4bbb-9b95-09cf7e72a033/1/xWxBwpPe6Hc28kQzCTHTlnjkvA8.roa
File: xWxBwpPe6Hc28kQzCTHTlnjkvA8.roa (raw, json)
Hash identifier: DE6BQ97LkT19BJfAFKXEgI8Ncn1/p0rs2cmQusWVKCI=
Subject key identifier: C5:6C:41:C2:93:DE:E8:77:36:F2:44:33:09:31:D3:96:78:E4:BC:0F
Certificate issuer: /CN=847dc765d1a039e6fbd6b8fbb64d07d58bf584f5
Certificate serial: 02CA7857
Authority key identifier: 84:7D:C7:65:D1:A0:39:E6:FB:D6:B8:FB:B6:4D:07:D5:8B:F5:84:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hH3HZdGgOeb71rj7tk0H1Yv1hPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7e5030-da24-4bbb-9b95-09cf7e72a033/1/xWxBwpPe6Hc28kQzCTHTlnjkvA8.roa
Signing time: Sat 01 Jan 2022 01:02:07 +0000
ROA not before: Sat 01 Jan 2022 01:02:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59482
IP address blocks: 95.215.228.0/24 maxlen: 24
95.215.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46823511 (0x2ca7857)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=847dc765d1a039e6fbd6b8fbb64d07d58bf584f5
Validity
Not Before: Jan 1 01:02:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c56c41c293dee87736f244330931d39678e4bc0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bc:1d:e6:23:e7:1a:4a:64:86:19:e4:7c:07:
39:eb:43:bd:b3:1b:4d:69:24:13:29:34:9f:86:37:
62:c8:48:f4:e2:fb:c9:49:c4:30:02:01:48:b9:d4:
50:ce:03:9d:42:95:c7:e1:5b:1c:15:40:ed:60:b3:
59:64:37:21:5d:55:4e:6f:48:39:d0:82:ec:47:8b:
fb:52:95:cb:77:78:1d:45:1f:d8:b7:6f:80:ac:00:
96:a1:af:6f:74:94:db:93:93:d6:7d:fb:f4:4d:4f:
f3:87:83:12:33:71:76:09:d7:59:22:b9:9c:5e:4a:
26:94:35:e4:17:32:2f:63:72:63:c9:86:f0:f6:81:
7b:3e:30:66:e0:c8:68:f7:50:e8:ea:3f:d7:02:f7:
48:93:7e:3c:c9:cc:7d:57:af:b9:a6:5c:4f:b2:37:
1b:6a:0e:ce:4b:91:63:d3:18:74:0e:44:d0:e5:bb:
75:90:d1:79:db:fa:78:f5:58:f1:ae:27:9c:bf:eb:
5d:8a:75:4e:2a:28:cc:83:80:c3:fc:02:fb:cd:98:
bb:f3:19:ba:66:51:60:d1:98:f1:44:9c:ce:5f:5b:
01:af:89:c7:08:15:78:6e:25:10:05:53:cc:ab:fd:
49:e5:2e:00:95:51:f9:5b:28:e0:a7:e4:19:ba:c4:
ff:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6C:41:C2:93:DE:E8:77:36:F2:44:33:09:31:D3:96:78:E4:BC:0F
X509v3 Authority Key Identifier:
keyid:84:7D:C7:65:D1:A0:39:E6:FB:D6:B8:FB:B6:4D:07:D5:8B:F5:84:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hH3HZdGgOeb71rj7tk0H1Yv1hPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7e5030-da24-4bbb-9b95-09cf7e72a033/1/xWxBwpPe6Hc28kQzCTHTlnjkvA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7e5030-da24-4bbb-9b95-09cf7e72a033/1/hH3HZdGgOeb71rj7tk0H1Yv1hPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.215.228.0/23
Signature Algorithm: sha256WithRSAEncryption
e3:e6:4d:36:a3:84:b7:9b:b3:52:53:ff:9e:37:24:b7:5e:06:
2b:9c:70:1b:bb:58:fe:b5:95:19:3f:01:8c:89:4d:33:98:e4:
83:03:13:5d:ff:13:d5:ef:41:0d:e1:19:fc:48:d8:92:52:5e:
14:9a:a0:ea:06:db:fd:85:21:5e:8d:e3:c1:a5:2f:9e:15:4d:
5d:9e:ae:f0:1b:ad:0c:a3:d9:6a:f4:e1:5e:ea:22:7f:c6:bd:
2d:39:64:85:c6:d9:4e:87:23:93:84:23:58:8f:b7:c9:4e:91:
29:02:8d:c7:57:45:d5:a4:3f:8d:ce:2d:b8:a0:30:84:f5:ab:
1a:ea:c2:ed:97:10:99:70:3b:ec:9b:59:6e:3a:d5:2f:57:b9:
9f:61:21:22:c9:03:f8:5b:88:ae:19:82:f1:25:1e:39:31:e3:
9d:a8:95:d4:39:d4:80:45:37:9c:e1:3d:ee:0d:15:d7:d1:00:
69:9c:5d:f1:03:9a:8c:80:8f:0b:4e:c0:79:be:00:1e:49:cf:
b2:23:a3:0d:9e:d7:05:d7:46:1b:1c:df:fe:3b:d0:de:5a:1b:
7f:9d:04:2e:b9:b3:85:69:32:cd:7c:bc:c0:8c:87:8c:10:58:
ac:3c:47:f9:43:f1:f5:79:65:96:5a:ec:10:9f:51:df:00:6c:
0c:f9:34:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:36 2023 by rpki-client on console.sobornost.net