Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/mkJYW-R0t-kZ6Qi_ahsW7BBjMlo.roa
File: mkJYW-R0t-kZ6Qi_ahsW7BBjMlo.roa (raw, json)
Hash identifier: 9bqWYuX/kPA8IDFkCSTPibXy9EOQ4KTrBUSQ6CouW2s=
Subject key identifier: 9A:42:58:5B:E4:74:B7:E9:19:E9:08:BF:6A:1B:16:EC:10:63:32:5A
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 01896D86
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/mkJYW-R0t-kZ6Qi_ahsW7BBjMlo.roa
Signing time: Thu 10 Mar 2022 14:56:10 +0000
ROA not before: Thu 10 Mar 2022 14:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212512
IP address blocks: 45.94.4.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
194.29.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25783686 (0x1896d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Mar 10 14:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a42585be474b7e919e908bf6a1b16ec1063325a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:d6:47:ce:45:bf:68:ea:df:73:0f:d6:7d:fd:
27:76:77:0a:5e:8b:3d:de:6d:1a:ca:a4:45:cd:e7:
e8:44:54:ce:94:7a:63:51:47:9b:de:8d:e2:8a:a6:
c0:88:9b:0c:52:7a:1a:d8:b6:79:45:0a:00:c4:b5:
d4:2a:e5:da:3f:dc:67:f3:32:e0:2d:f0:d2:6b:da:
28:58:31:5d:b4:6e:58:aa:eb:3e:ef:3a:a1:9a:d2:
01:8b:88:bf:b4:10:9d:bd:4b:5e:7e:bb:eb:6b:74:
43:cf:e1:55:b3:ec:9f:d5:60:d7:9b:9b:2a:5c:da:
f4:c5:88:f7:f5:b8:6c:01:a7:23:e3:c6:87:73:d9:
ed:8c:13:c3:9e:a7:be:d6:2f:c9:25:bc:dd:ab:d8:
06:cf:fe:0b:2d:e5:3b:62:aa:77:34:6b:88:2a:ca:
29:27:93:92:bf:0c:31:3d:b0:9c:70:4d:63:39:b8:
57:3d:c6:5c:a5:56:7a:20:e3:06:b3:48:b6:6d:e2:
c9:eb:ec:70:bf:87:de:7a:e0:e2:0c:61:e4:a8:b1:
60:57:3e:6c:9f:7e:a6:b9:fc:fd:a0:db:b7:c3:48:
59:90:e7:4f:3d:cd:c1:4c:52:98:6c:0f:4a:c3:a0:
fb:b2:2e:cd:e7:ab:4e:ab:b3:c8:2f:70:d3:87:d0:
64:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:42:58:5B:E4:74:B7:E9:19:E9:08:BF:6A:1B:16:EC:10:63:32:5A
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/mkJYW-R0t-kZ6Qi_ahsW7BBjMlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/24
194.29.55.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:80:bb:ac:e2:33:d2:02:55:d5:89:a3:73:c6:a7:64:42:08:
f0:0f:cf:b2:41:ef:da:95:2a:f6:2f:22:d4:6f:c8:47:91:90:
3b:79:48:21:b2:51:ef:a5:b0:46:42:95:65:62:63:13:ed:df:
be:00:09:77:ab:a9:34:60:f0:7f:3f:f0:1d:21:68:c9:14:fe:
3a:58:25:a7:b7:1e:e4:0b:0f:a6:b2:25:ae:40:3c:14:61:49:
d5:bb:99:00:ac:4e:8e:b4:3d:18:67:f0:46:02:d4:86:41:9a:
1d:ea:91:e1:bd:0c:f2:e0:e9:d3:92:b6:09:3d:17:57:5e:c9:
93:3c:3d:f2:14:98:bb:7c:84:c0:1d:e6:c3:ec:ec:67:59:51:
d0:01:8c:6b:b6:66:c3:25:8f:e9:82:ba:d4:c4:07:bd:11:d5:
cf:7a:bb:e9:00:c2:00:00:15:11:86:f6:17:e2:e3:72:f4:9a:
46:f6:77:71:28:91:f9:e9:09:97:ab:3e:ea:d7:25:8e:dc:f9:
ad:9a:fa:29:79:e5:e6:74:7f:17:03:7d:c0:ec:9f:0c:25:f9:
35:a4:ca:1d:c2:9f:56:d8:bd:c4:15:46:0c:a9:ef:1a:16:db:
3a:04:5b:9f:45:4d:4d:91:e0:26:d6:bd:a3:a2:89:b5:6f:03:
4c:0c:86:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org