Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/xltXp2yl4jYjX5HuEFkp4s5ITQY.roa
File: xltXp2yl4jYjX5HuEFkp4s5ITQY.roa (raw, json)
Hash identifier: fj2WUpxkVQqiWXK5Eno48lpKW1Krj9prJfdvQoWcWKw=
Subject key identifier: C6:5B:57:A7:6C:A5:E2:36:23:5F:91:EE:10:59:29:E2:CE:48:4D:06
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 061D9A1C
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/xltXp2yl4jYjX5HuEFkp4s5ITQY.roa
Signing time: Wed 23 Mar 2022 20:01:44 +0000
ROA not before: Wed 23 Mar 2022 20:01:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 94.154.40.0/24 maxlen: 24
94.154.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102603292 (0x61d9a1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Mar 23 20:01:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c65b57a76ca5e236235f91ee105929e2ce484d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b6:55:a2:a1:26:c7:fb:2a:da:ce:1d:d1:31:
bc:9d:ac:d8:7d:dd:c3:64:3a:af:24:ba:62:d8:d6:
5f:12:47:43:c5:4c:28:eb:a0:d0:18:59:16:36:36:
07:39:1f:2c:1c:ee:0a:6e:40:40:1b:41:59:6f:d8:
fe:52:6f:29:8e:8d:a0:68:e5:54:8a:45:0d:23:59:
0f:31:db:4e:45:96:c2:36:06:2d:33:19:d0:8a:9d:
15:6d:7e:d3:87:60:96:8e:69:52:dc:70:66:58:2a:
7a:27:17:a0:52:f7:d0:74:88:77:85:7d:28:87:62:
c4:b4:6f:ee:49:97:59:70:a7:04:8f:7f:47:21:c5:
1f:97:e4:67:61:68:58:9e:97:54:25:1d:45:e9:f4:
82:1e:ba:4e:e9:0a:b1:8b:bb:a3:54:7f:56:dd:f6:
f9:a7:83:8a:9c:ec:4c:18:7c:52:ce:e6:c1:51:73:
c8:34:20:46:dc:20:c0:ec:0d:6c:b8:75:a2:7b:f9:
22:53:d7:fd:fb:55:bb:16:5b:0b:95:e7:58:81:d7:
58:06:2c:b7:e4:ea:c4:32:ca:8b:21:eb:f5:86:3a:
5f:98:21:5d:5b:b8:e1:1f:42:d9:89:ec:f9:75:26:
9f:6d:57:86:9c:71:7e:fc:45:3b:df:0c:ad:f1:30:
29:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:5B:57:A7:6C:A5:E2:36:23:5F:91:EE:10:59:29:E2:CE:48:4D:06
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/xltXp2yl4jYjX5HuEFkp4s5ITQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
94.154.46.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:94:02:e2:57:e9:71:d8:3a:6a:bd:d6:9e:81:f0:3a:bf:d9:
81:36:9a:67:9b:b5:23:66:52:b6:1a:54:72:68:73:bf:8a:6a:
56:85:d9:d8:67:41:45:88:79:b0:be:bf:a0:82:77:19:c2:39:
92:95:e8:cf:e8:69:56:f8:d3:a8:b5:55:f3:16:8f:43:fd:b1:
a5:1f:59:8d:f3:e8:0f:64:46:1e:b5:e5:c1:87:7a:2b:c7:51:
1c:2b:1a:4a:14:88:68:5e:8c:38:9e:f7:b0:63:68:95:7d:45:
b5:08:ea:09:76:68:ca:06:89:bd:36:73:9c:f7:f6:33:13:a0:
d3:8c:92:51:71:f3:a7:77:a0:af:80:27:2b:52:b5:53:27:f0:
57:a3:2c:b4:a6:46:d7:d5:c7:a2:27:ca:28:b3:45:9e:12:24:
38:3f:82:ea:09:24:8f:22:55:85:9e:d5:8a:b4:9b:3b:dd:08:
c4:71:21:20:25:b3:ea:0b:c8:ae:94:54:e7:b7:c7:7f:2f:52:
06:0c:46:70:1d:9c:05:00:8c:97:7a:bb:53:f1:fd:89:dd:3d:
ff:a3:ac:77:43:d9:97:a4:f8:bd:9c:93:2b:b9:94:16:c1:08:
fc:f7:44:2b:20:24:36:9c:5c:67:c3:69:23:26:52:1f:f1:7e:
19:7d:ca:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:31 2024 by rpki-client on console-fra.rpki-client.org