Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/lHJmEvqN6cx0IcfH-oDna3HLDF8.roa
File: lHJmEvqN6cx0IcfH-oDna3HLDF8.roa (raw, json)
Hash identifier: NyBau6vBxhTGu+uuNa0q02QXThd0htbewRw+YSvna0o=
Subject key identifier: 94:72:66:12:FA:8D:E9:CC:74:21:C7:C7:FA:80:E7:6B:71:CB:0C:5F
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 01852B8E563225A823BE4FF424E070B0A42B
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/lHJmEvqN6cx0IcfH-oDna3HLDF8.roa
Signing time: Mon 19 Dec 2022 18:03:46 +0000
ROA not before: Mon 19 Dec 2022 18:03:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202358
IP address blocks: 45.94.6.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2b:8e:56:32:25:a8:23:be:4f:f4:24:e0:70:b0:a4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Dec 19 18:03:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94726612fa8de9cc7421c7c7fa80e76b71cb0c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:46:f8:da:0e:88:80:56:c8:45:4a:c5:99:66:
f7:1b:51:de:f8:19:82:34:c9:8d:71:ed:f9:cc:55:
a5:a8:ca:30:6e:6d:02:27:93:94:89:75:54:c5:31:
3d:3e:fa:ed:dc:54:3d:3f:0c:ed:bd:15:1e:92:db:
7a:74:81:09:be:f2:92:bc:c9:6a:d2:e3:e4:d6:4a:
4a:13:5b:51:a4:79:51:12:94:58:fe:3f:f2:17:75:
94:e1:a3:81:62:9f:0a:05:53:0f:7c:12:e7:7a:15:
ca:23:98:91:22:75:67:6b:12:fd:ad:db:fc:8e:c0:
5c:48:96:c2:92:8d:df:0e:07:dd:e9:d4:6c:17:e2:
20:0b:6d:ad:93:ad:67:ae:8a:c1:dd:3e:a1:44:c1:
4e:df:e3:d2:8e:f0:21:59:8c:e3:7a:ad:c0:11:af:
99:88:f6:e3:ce:38:27:e9:ee:24:49:6c:cf:4a:f1:
6c:69:4b:eb:96:03:c0:44:d3:31:7e:0d:11:67:d1:
d9:01:7d:14:b2:4d:29:77:bb:67:3c:8c:f9:c0:99:
c6:64:d3:bd:83:db:31:5a:7b:a7:df:f9:02:4f:7c:
ba:01:bc:db:e1:a6:20:93:a1:dd:19:60:b8:2b:65:
bc:bf:c5:e3:d7:87:e5:11:33:85:1c:38:56:52:01:
0b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:72:66:12:FA:8D:E9:CC:74:21:C7:C7:FA:80:E7:6B:71:CB:0C:5F
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/lHJmEvqN6cx0IcfH-oDna3HLDF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.6.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:8f:42:6c:c2:3e:e7:a1:7a:45:9c:00:b5:21:90:30:a6:70:
82:a3:95:56:2a:27:81:4a:0b:87:4f:28:5d:74:f5:dc:ef:32:
ae:64:40:ec:7e:b4:ce:96:06:a5:35:20:24:94:6f:d2:d2:ba:
2b:91:f3:4e:3c:d6:8d:31:c4:3e:52:67:7d:b4:d3:e9:c2:e8:
2b:fa:34:60:c6:db:c2:ff:74:9c:96:d4:08:c8:9b:e0:91:ab:
aa:d5:15:72:2e:2b:f3:fa:23:2d:5f:14:a7:d4:7a:d0:95:1e:
c4:c1:89:08:a4:dc:45:36:17:9e:c9:41:16:cd:d9:87:40:d9:
02:09:82:dd:58:11:e1:7e:31:53:ea:b4:e0:a6:21:a7:aa:8d:
04:39:6f:bf:51:05:83:e5:72:0d:96:af:01:f6:cb:6e:fd:85:
d5:5c:2a:d5:b5:63:da:85:c2:57:3c:fe:50:24:17:8c:bd:fe:
2b:49:b0:25:4e:15:38:60:03:09:58:33:3e:68:3e:67:7a:b1:
fc:92:ae:54:d9:77:af:4b:c0:5e:33:e9:8c:58:d4:a1:1c:ca:
ff:bf:f7:7f:78:17:e0:8e:5b:77:10:a9:d3:4e:1b:41:94:7a:
9e:2d:bd:6a:19:2b:ee:e3:9d:8a:c8:e3:ec:0a:cc:5e:58:49:
78:1c:3f:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org