Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/f5GhlACtc06go-4KLXBKgK4HNmE.roa
File: f5GhlACtc06go-4KLXBKgK4HNmE.roa (raw, json)
Hash identifier: GbLwked/FCbBHbJ9QL3I9GXz5kUGr/4hWuGxF47P8DA=
Subject key identifier: 7F:91:A1:94:00:AD:73:4E:A0:A3:EE:0A:2D:70:4A:80:AE:07:36:61
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 05892D89
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/f5GhlACtc06go-4KLXBKgK4HNmE.roa
Signing time: Mon 24 Jan 2022 19:41:48 +0000
ROA not before: Mon 24 Jan 2022 19:41:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62206
IP address blocks: 94.154.40.0/22 maxlen: 24
94.154.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92876169 (0x5892d89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 24 19:41:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7f91a19400ad734ea0a3ee0a2d704a80ae073661
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:dc:2a:cd:f6:4c:80:9d:02:25:47:0b:4d:73:
7e:a6:50:98:95:e9:b3:ae:a5:76:88:c3:e6:aa:84:
1a:37:63:e3:f9:65:57:c2:97:b5:d3:fc:fa:60:ca:
68:6c:da:f9:b1:54:96:79:2e:02:58:00:04:39:c7:
7c:42:56:e6:a8:3b:78:b1:83:b7:d6:89:dc:5b:25:
51:da:11:ea:d3:0e:6a:f3:91:0e:cf:f3:f0:c8:35:
ec:18:0f:32:02:68:cb:53:aa:fd:ab:db:4d:a6:59:
35:77:d8:3f:d6:2d:8d:d4:42:e7:c8:48:ae:75:54:
b7:d2:3f:20:a8:da:35:f2:f4:5a:28:a1:79:e8:06:
58:e8:bc:43:b9:64:41:28:83:35:fd:60:48:b9:90:
1c:f1:0a:91:30:e5:3c:35:60:58:47:9c:92:85:76:
36:3f:ad:23:d2:8c:a1:de:e1:5a:b0:d6:ab:aa:f2:
1b:13:08:28:15:e9:c3:3e:d2:92:6c:9b:e8:37:69:
ab:37:11:7d:ea:63:30:08:c6:08:d1:d7:23:f0:3c:
6b:b1:ab:42:20:5d:bc:f8:f3:d5:56:e6:c4:79:ae:
f8:72:76:9c:5d:91:83:d8:64:76:1f:f4:ac:8c:37:
ce:80:44:66:7b:4f:60:4c:4b:f6:fa:52:70:4b:67:
0e:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:91:A1:94:00:AD:73:4E:A0:A3:EE:0A:2D:70:4A:80:AE:07:36:61
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/f5GhlACtc06go-4KLXBKgK4HNmE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/22
94.154.46.0/24
Signature Algorithm: sha256WithRSAEncryption
78:74:1f:09:08:67:8c:3c:18:8f:b9:be:ad:bf:94:0c:ba:39:
a3:8b:33:a1:0c:42:53:a9:00:e7:9c:3d:a4:47:cd:40:5c:f8:
c9:8e:66:cb:40:12:b6:4b:af:d5:4b:8b:36:c2:41:a1:0c:9e:
94:d4:0b:43:91:eb:47:5c:f3:24:ef:13:f5:40:5e:bd:f3:8a:
42:30:83:f6:3a:c8:16:44:70:5f:2c:8d:78:49:e5:eb:3e:34:
e6:88:40:7b:b7:6e:f5:27:8b:c8:c2:4f:a3:e4:de:7c:76:7f:
6a:2c:28:a4:b2:09:37:5b:df:f7:fd:41:43:b1:79:e9:9b:f0:
dd:33:8e:0e:5b:88:a4:9c:f3:01:8b:a8:6d:95:6b:12:80:98:
fc:ba:6c:f7:bc:a8:39:cf:8b:6e:a5:cc:55:4a:b3:dc:07:6e:
44:81:70:57:55:a5:65:df:dd:20:24:fe:08:f0:90:95:e6:53:
40:28:63:4b:53:9b:57:91:09:a7:f3:db:9c:9c:56:6e:b3:f3:
b3:e4:dc:0e:00:d7:90:2b:d0:c9:9a:4c:61:ad:8f:e1:d9:86:
cb:a0:d5:75:03:0b:52:a2:af:93:3b:2a:ab:80:19:c9:5b:af:
07:9c:a6:8b:9c:e7:54:4c:8d:3d:95:da:59:a8:93:23:82:94:
13:64:cb:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org