Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/iVFbUnerojsA25Y5kgKhVBQu7f8.roa
File: iVFbUnerojsA25Y5kgKhVBQu7f8.roa (raw, json)
Hash identifier: jvZ0JIluLHdsxQXJzswGZOAjt2OYUIgyZeIdZyfzHz8=
Subject key identifier: 89:51:5B:52:77:AB:A2:3B:00:DB:96:39:92:02:A1:54:14:2E:ED:FF
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 05D6BB3C
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/iVFbUnerojsA25Y5kgKhVBQu7f8.roa
Signing time: Mon 21 Feb 2022 07:33:06 +0000
ROA not before: Mon 21 Feb 2022 07:33:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 94.154.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97958716 (0x5d6bb3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Feb 21 07:33:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89515b5277aba23b00db96399202a154142eedff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:64:11:17:c7:34:90:49:d8:5f:7c:e7:bd:9e:
94:c1:c4:e0:7b:56:53:73:6d:ff:e5:51:bc:ed:e1:
1c:63:75:91:d5:55:32:78:79:f4:97:43:63:4d:7b:
a4:5d:e6:0d:90:6a:29:8c:7e:fe:78:59:b3:91:b5:
79:f6:ea:19:55:98:f3:50:8b:b3:97:a5:97:fc:c5:
5e:83:ed:d3:79:95:ce:d4:da:ab:14:1b:05:2d:c7:
5d:32:09:ba:57:09:28:aa:97:3e:1a:c5:42:32:aa:
7e:98:ae:3e:df:23:2c:7c:22:c2:9f:40:4d:dd:4f:
3c:c0:76:20:40:c2:58:56:7e:e1:66:4e:05:b1:d1:
16:3a:72:26:e6:cc:77:f3:b2:be:bc:1a:2d:26:9f:
1c:67:ff:cb:53:3a:a5:2c:ff:cc:c8:7b:84:84:10:
87:16:8d:4d:60:14:22:23:9c:22:c1:75:a9:3a:50:
0b:d0:d4:15:21:19:57:06:aa:e8:3c:6a:ac:f0:22:
17:f3:dc:28:3d:f4:08:89:7b:36:25:46:f9:8c:9c:
e5:14:07:2b:45:08:b0:79:bb:9e:f4:36:b9:2e:73:
95:4f:dc:aa:d3:22:f4:15:51:d5:d0:64:66:e0:19:
b1:dd:6f:f1:58:77:4e:dc:c9:60:7f:ce:b5:c5:5f:
75:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:51:5B:52:77:AB:A2:3B:00:DB:96:39:92:02:A1:54:14:2E:ED:FF
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/iVFbUnerojsA25Y5kgKhVBQu7f8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
Signature Algorithm: sha256WithRSAEncryption
81:ca:0d:16:4d:5a:c6:9b:f2:8a:90:ba:47:e0:ef:45:1f:b0:
00:df:fe:d4:d5:fc:48:63:38:59:8a:d6:94:7a:b9:d0:a5:de:
78:1f:37:8a:5b:e0:83:67:48:bf:32:24:3f:e7:6e:82:b9:1e:
30:06:6b:09:70:6a:74:ab:4a:1a:b7:e5:9f:64:ee:64:29:29:
a7:33:cd:e3:8b:99:2f:75:b1:67:ef:df:f4:44:22:d4:4c:cc:
9b:9d:29:4e:5e:ed:0b:22:7b:4e:f3:5a:d1:43:e9:ce:5c:c4:
1e:c5:4c:c0:40:38:cd:3b:5c:60:09:e2:53:e1:0b:c8:0c:ab:
d6:61:6f:cf:d9:12:28:7c:ed:d0:35:e2:d3:05:b2:98:72:cc:
62:98:29:99:57:ce:2b:a8:03:c1:86:85:98:45:19:55:1c:2d:
fd:68:1a:0d:fa:bb:03:0f:a5:b3:1e:df:0e:ef:84:9c:1a:c6:
0f:76:bc:1f:df:82:ad:a6:e8:22:c1:e8:6b:16:dc:1e:fd:f3:
f6:da:98:57:f6:63:ca:16:91:8b:b3:f0:0d:a0:5b:32:ba:6a:
99:f2:4e:b6:bf:dc:3b:8b:a8:89:b0:de:9d:3c:91:9d:23:bb:
13:1c:12:e4:b9:c3:43:6f:05:97:d5:03:3d:8f:63:bd:72:33:
31:9f:43:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org