Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/s_uLKrOpruKnBE4pUWf_3Lexqmg.roa
File: s_uLKrOpruKnBE4pUWf_3Lexqmg.roa (raw, json)
Hash identifier: Hd/z8p7McxMt8MUuQHxc4+tJdFc6tvHI34/m5RnxWNQ=
Subject key identifier: B3:FB:8B:2A:B3:A9:AE:E2:A7:04:4E:29:51:67:FF:DC:B7:B1:AA:68
Certificate issuer: /CN=9d3d627c297fe542d8359a86d8e2f9ebd9565a81
Certificate serial: 064163F9
Authority key identifier: 9D:3D:62:7C:29:7F:E5:42:D8:35:9A:86:D8:E2:F9:EB:D9:56:5A:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nT1ifCl_5ULYNZqG2OL569lWWoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/s_uLKrOpruKnBE4pUWf_3Lexqmg.roa
Signing time: Sat 01 Jan 2022 03:55:21 +0000
ROA not before: Sat 01 Jan 2022 03:55:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207442
IP address blocks: 94.231.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104948729 (0x64163f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d3d627c297fe542d8359a86d8e2f9ebd9565a81
Validity
Not Before: Jan 1 03:55:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3fb8b2ab3a9aee2a7044e295167ffdcb7b1aa68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:9a:57:7a:de:47:fc:25:68:15:b2:de:35:2e:
83:33:be:d4:81:5c:a3:08:20:a1:d7:b7:8c:2d:c0:
25:ea:63:ca:c1:d9:72:0e:a3:4d:ef:2b:a5:df:31:
81:8d:42:40:f4:df:84:36:0b:ac:d5:49:09:94:44:
18:cf:70:7a:93:10:08:c1:92:28:c1:5c:eb:86:ee:
ab:9b:c5:f5:77:b6:67:ba:f3:2f:03:9c:84:ea:88:
dd:8c:bd:62:a2:86:fa:7b:04:7d:ea:13:cb:03:ed:
a7:38:79:3c:37:3f:c3:9e:41:9e:8c:ac:51:16:ea:
4f:90:bb:09:9d:36:57:cb:df:db:c4:8e:07:31:4c:
98:5c:9b:4a:79:d8:55:ea:4f:c2:e6:2f:36:df:b4:
45:c0:f0:81:0b:c4:24:00:41:61:36:a8:c3:da:18:
cd:96:2b:3d:20:11:ea:0e:06:b7:16:ed:60:3e:cf:
22:4b:00:2c:4d:d0:17:85:da:7a:c1:4a:95:8a:56:
b3:7b:af:a2:18:05:d9:6a:3b:01:62:fc:09:ba:1a:
da:36:5f:41:2c:f0:1c:4d:28:54:c3:69:67:70:76:
20:5d:5e:73:d8:41:91:98:7b:93:7f:c9:45:fd:76:
97:0b:cb:0b:6d:e8:aa:e2:be:32:74:f3:df:c3:a7:
d0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:FB:8B:2A:B3:A9:AE:E2:A7:04:4E:29:51:67:FF:DC:B7:B1:AA:68
X509v3 Authority Key Identifier:
keyid:9D:3D:62:7C:29:7F:E5:42:D8:35:9A:86:D8:E2:F9:EB:D9:56:5A:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nT1ifCl_5ULYNZqG2OL569lWWoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/s_uLKrOpruKnBE4pUWf_3Lexqmg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ddc1aa-5a3a-4163-b5e8-15ea337a7840/1/nT1ifCl_5ULYNZqG2OL569lWWoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.199.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:92:5e:21:29:df:ee:aa:ab:0b:fa:4d:19:9e:36:6b:09:f3:
b4:e2:7f:e6:70:11:66:bf:49:92:f7:0c:91:09:d0:b6:34:64:
4c:5b:b7:98:80:7d:62:74:f2:79:a6:51:cc:6b:71:43:b7:0b:
da:c8:61:62:b6:cc:62:8e:a6:ac:73:96:32:62:ae:69:6a:8c:
69:a0:77:8c:d6:6e:69:f6:a1:73:f0:3c:c9:b0:65:24:ac:ae:
4d:04:86:b8:d4:19:40:22:cc:30:c1:1f:96:4f:25:87:66:15:
57:94:65:a7:88:8f:23:de:31:f0:c6:94:43:8d:22:42:66:32:
9f:b7:c3:62:86:aa:09:aa:38:e0:53:68:96:b0:8b:65:d7:76:
2d:0d:d5:9b:dc:ed:0f:aa:ae:1c:f9:8a:24:84:51:e3:90:08:
ca:e1:15:0c:79:64:d1:f7:68:3c:e7:8b:b8:17:f1:04:af:d9:
05:e9:85:cf:68:16:33:a8:ec:88:f6:79:2a:4b:71:f9:c5:69:
4f:8e:0a:99:68:ac:b6:4f:d8:9d:ef:70:ba:2d:6e:9b:d4:4f:
be:1d:c6:f6:bc:14:fd:ab:8f:c8:76:fe:c2:b4:56:14:73:49:
d1:ea:ce:02:26:1f:46:09:69:6d:bf:9d:79:68:e9:89:e9:de:
98:be:db:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:22 2024 by rpki-client on console-fra.rpki-client.org