Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/zs2RMcAkQTbBMA9dAd-9dRCrk9M.roa
File: zs2RMcAkQTbBMA9dAd-9dRCrk9M.roa (raw, json)
Hash identifier: oAmo8V+JtFFms8KVuOl+OkJll9tR9mNnXcGFtHyHGAQ=
Subject key identifier: CE:CD:91:31:C0:24:41:36:C1:30:0F:5D:01:DF:BD:75:10:AB:93:D3
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 059E1A5E
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/zs2RMcAkQTbBMA9dAd-9dRCrk9M.roa
Signing time: Tue 01 Feb 2022 09:32:59 +0000
ROA not before: Tue 01 Feb 2022 09:32:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 94.154.42.0/24 maxlen: 24
94.154.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94247518 (0x59e1a5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Feb 1 09:32:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cecd9131c0244136c1300f5d01dfbd7510ab93d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a6:70:74:41:ab:37:1a:9c:34:f5:07:db:da:
6e:6b:aa:2e:01:1e:66:79:26:ee:ae:32:bb:98:fd:
85:a2:a0:21:16:dc:93:a2:83:72:b4:83:00:a1:d7:
32:ee:db:2c:19:46:f6:be:07:df:f7:13:02:02:fb:
92:a6:d8:e7:49:a5:89:03:a2:2e:e7:fd:e7:58:c8:
e7:83:8a:1d:2d:8f:70:5b:d1:3b:36:d6:48:ac:f9:
34:7a:f5:e1:76:dc:0f:d7:2b:bc:66:51:7f:40:ce:
c1:4c:65:b6:4c:20:6a:07:25:ed:8d:51:8f:bc:1b:
c1:01:54:eb:9c:73:6b:4e:3a:39:47:45:04:d3:6e:
70:06:af:97:db:58:83:2f:16:3f:28:dd:20:81:d8:
fe:53:78:d2:0a:31:ff:69:f1:59:a0:e8:ac:96:38:
12:f4:f0:bb:8e:61:0d:28:44:20:6f:a8:e6:53:c9:
ad:55:e1:b9:2c:11:33:2a:72:ab:5a:7b:bd:52:23:
bc:a3:86:21:27:01:43:f8:38:b1:25:48:4c:1d:9b:
98:96:ef:5d:8e:da:57:21:9d:24:22:e5:68:6b:7b:
e8:c0:30:bd:1d:c3:73:65:a3:a3:04:90:65:2e:2b:
2c:42:dc:0c:d5:97:98:c1:27:53:12:dd:43:6c:85:
26:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:CD:91:31:C0:24:41:36:C1:30:0F:5D:01:DF:BD:75:10:AB:93:D3
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/zs2RMcAkQTbBMA9dAd-9dRCrk9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.41.0-94.154.42.255
Signature Algorithm: sha256WithRSAEncryption
94:e2:8d:55:28:b4:44:87:ad:56:53:31:cb:ce:76:f6:74:a7:
5d:c1:fc:7b:2b:72:dc:5c:28:f2:03:0e:c3:01:00:b3:b7:4c:
49:f3:2b:75:75:d9:09:a6:28:17:43:ed:27:d9:8f:20:7e:99:
38:89:2c:9a:0a:61:20:20:e2:77:78:09:79:87:5f:47:6f:9f:
b5:a5:a4:fc:ad:1a:78:95:a0:cd:29:4e:f6:ee:97:9e:0c:fe:
dd:3c:d8:a0:89:9d:50:0c:73:dd:09:66:a1:b0:9b:c7:57:dd:
7e:ca:67:1c:03:1a:8e:ca:05:9f:f0:43:03:29:26:77:ab:b4:
f2:ed:b7:4e:c9:b0:bc:94:9c:c7:41:e3:51:5e:8a:e6:54:54:
d7:a6:c5:cb:97:e4:de:d3:17:8e:45:a1:c5:df:fb:1f:c9:2a:
4c:64:35:76:50:bd:9f:7c:fb:fc:62:33:25:d1:4a:51:78:d2:
4c:9e:53:4d:d1:06:ea:22:6d:9a:fb:ed:cb:8b:4e:85:12:6c:
66:0a:ca:40:6f:e2:df:75:a5:e2:b8:f1:18:d7:b8:cc:8a:ee:
0c:4f:43:4b:62:71:12:a8:14:e7:c8:62:61:61:c5:4f:69:aa:
9f:f4:3f:b8:27:09:98:1d:83:ee:34:0b:15:3d:67:7d:9e:0b:
81:3a:f7:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:56 2024 by rpki-client on console-ams.rpki-client.org