Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/r6ocJ6KbzrQQ32gS3q5OxTIhj0c.roa
File: r6ocJ6KbzrQQ32gS3q5OxTIhj0c.roa (raw, json)
Hash identifier: b+EoXBNso+4hkA8kt+jGR4jInhdswRNKHewvIOL9EpA=
Subject key identifier: AF:AA:1C:27:A2:9B:CE:B4:10:DF:68:12:DE:AE:4E:C5:32:21:8F:47
Certificate issuer: /CN=9d3d627c297fe542d8359a86d8e2f9ebd9565a81
Certificate serial: 064255A6
Authority key identifier: 9D:3D:62:7C:29:7F:E5:42:D8:35:9A:86:D8:E2:F9:EB:D9:56:5A:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nT1ifCl_5ULYNZqG2OL569lWWoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/r6ocJ6KbzrQQ32gS3q5OxTIhj0c.roa
Signing time: Sat 01 Jan 2022 03:55:22 +0000
ROA not before: Sat 01 Jan 2022 03:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207484
IP address blocks: 94.231.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105010598 (0x64255a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3d627c297fe542d8359a86d8e2f9ebd9565a81
Validity
Not Before: Jan 1 03:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=afaa1c27a29bceb410df6812deae4ec532218f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7f:a3:71:e0:4b:74:91:13:af:88:4c:b7:7b:
cb:e0:d1:57:28:18:76:d4:9b:67:a6:28:0c:a8:0f:
88:05:9b:a9:0c:3a:f3:a1:9c:9e:e4:e5:e8:eb:6f:
91:bc:16:7e:e0:88:a2:cc:b7:1d:36:c9:ed:fc:70:
08:46:4d:29:f8:a9:73:48:52:46:d1:19:21:20:77:
ce:6f:58:2d:71:1d:61:bf:2b:db:db:ca:ba:89:be:
d4:ef:42:3f:30:dc:3d:51:6b:af:5b:0a:54:9d:d7:
63:d4:90:85:47:0c:fb:e5:ab:63:48:da:8d:9b:c2:
cc:38:a3:d0:22:d6:54:c5:a4:15:91:03:58:c4:1c:
2b:df:81:49:0b:d4:c9:7d:1c:e4:73:e7:02:6e:6d:
78:63:39:44:0b:f7:37:b6:bc:28:89:78:c8:64:28:
62:4e:91:b2:9c:b4:cb:3f:24:64:d5:a9:7f:da:be:
17:dd:28:bb:3c:70:c0:77:7d:1c:24:0b:68:da:de:
71:9c:ab:10:33:44:fa:53:39:79:bf:42:d4:6e:f7:
38:4c:7e:68:1e:c4:93:7c:01:7c:60:59:1c:30:66:
98:ed:cf:f5:ae:35:96:67:ec:65:b4:62:14:8c:27:
f3:32:3b:ab:5b:71:b6:13:bb:e9:b4:64:6c:ed:31:
83:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:AA:1C:27:A2:9B:CE:B4:10:DF:68:12:DE:AE:4E:C5:32:21:8F:47
X509v3 Authority Key Identifier:
keyid:9D:3D:62:7C:29:7F:E5:42:D8:35:9A:86:D8:E2:F9:EB:D9:56:5A:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nT1ifCl_5ULYNZqG2OL569lWWoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/r6ocJ6KbzrQQ32gS3q5OxTIhj0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/nT1ifCl_5ULYNZqG2OL569lWWoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.199.0/24
Signature Algorithm: sha256WithRSAEncryption
04:c6:7a:06:f6:bb:71:28:98:bb:1f:f8:60:40:6b:4c:ad:10:
51:02:2a:27:5f:44:f9:56:2b:60:8f:9f:50:ee:57:3a:4d:45:
ae:0f:a2:14:a1:55:f2:57:79:61:05:27:8f:6f:58:48:84:ab:
91:a5:25:07:87:4d:a8:ce:ee:75:31:25:2e:7c:c9:1a:fc:2e:
e6:c2:56:9f:ce:91:33:dc:23:54:7f:cf:49:6f:09:fd:0b:c9:
51:6c:86:3a:d1:51:0d:cb:5c:94:17:4d:e9:53:20:c6:c0:99:
86:3d:2b:d6:5d:47:d0:11:99:06:2a:fa:b8:2d:7a:8a:94:e9:
70:a7:70:e1:cd:89:d0:3e:84:03:fa:98:6f:5d:ff:46:b9:93:
e8:36:00:cb:30:ed:79:f0:61:2a:4c:9c:99:d6:41:b9:b2:bd:
a1:ff:1f:5d:64:f9:56:81:97:10:a7:79:d0:43:e3:93:99:85:
a1:5c:92:3f:07:4d:b6:09:3c:39:c8:52:4c:22:8e:27:ed:58:
82:b3:8a:d3:a0:92:7f:3f:a5:33:c2:e1:30:3f:a1:70:f8:ec:
64:b0:62:6b:7c:47:e7:f9:93:07:b4:51:8a:a0:3f:cb:7c:e2:
ad:44:f8:09:00:fd:19:ac:12:ba:cd:4d:65:93:f2:bd:e8:e0:
5d:dc:ed:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:22 2024 by rpki-client on console-fra.rpki-client.org