Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uS2YO3d88JtWBSSD0NX9B7xbYL4.roa
File: uS2YO3d88JtWBSSD0NX9B7xbYL4.roa (raw, json)
Hash identifier: Ne0zfgGB7Zx1ohGU+mRd8k56P6010SlFRrCsK1IYLU4=
Subject key identifier: B9:2D:98:3B:77:7C:F0:9B:56:05:24:83:D0:D5:FD:07:BC:5B:60:BE
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19F114FD
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uS2YO3d88JtWBSSD0NX9B7xbYL4.roa
Signing time: Sat 01 Jan 2022 15:56:56 +0000
ROA not before: Sat 01 Jan 2022 15:56:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211826
IP address blocks: 45.94.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435229949 (0x19f114fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b92d983b777cf09b56052483d0d5fd07bc5b60be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:15:87:e2:6e:4d:10:42:0a:af:d0:f2:b4:5f:
a0:69:48:0d:aa:50:64:52:2d:31:27:ee:97:ee:53:
f1:12:5b:98:f1:91:ae:fc:b3:f2:86:d5:47:8b:f7:
e5:10:0f:5f:36:4f:25:d5:d9:0b:ad:0a:75:88:df:
27:5e:27:aa:b6:d4:4b:0f:26:c4:b0:36:cf:c4:d6:
c1:9d:ee:f6:7c:ad:be:90:92:97:4f:bc:fd:88:58:
ca:19:1f:b5:e7:83:d8:a7:45:e8:7e:56:03:56:f3:
ef:14:87:3e:dc:35:50:3b:97:8c:d6:7f:ae:a5:7e:
76:82:b6:2e:89:9f:c7:07:e3:d2:e3:39:b2:d7:c0:
3d:78:43:2c:ad:72:b0:9b:84:d6:c8:6a:64:59:f5:
28:b5:7a:ce:73:2b:ed:e1:4c:4b:ef:21:27:1a:96:
d2:92:d5:df:83:24:9d:63:76:50:56:2f:05:d8:dd:
3a:78:43:92:46:ed:38:d3:41:f1:7e:24:cc:7e:95:
a7:bf:26:a8:eb:29:42:4a:ad:6e:be:e2:60:11:ff:
c0:63:b4:01:4d:38:4a:33:66:d5:a3:3f:f1:7f:ab:
99:13:8e:8f:98:4f:be:f7:38:bf:3a:b0:b0:07:37:
ac:e4:80:8c:97:76:7c:6d:53:63:a5:84:76:1f:44:
4d:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2D:98:3B:77:7C:F0:9B:56:05:24:83:D0:D5:FD:07:BC:5B:60:BE
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uS2YO3d88JtWBSSD0NX9B7xbYL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.31.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6c:22:aa:bb:b0:45:e7:11:07:4a:2d:c7:5f:96:0b:c7:47:
61:7e:77:c3:d7:d3:55:6d:e6:0f:3f:f7:a5:a3:6b:d6:72:f6:
fd:92:90:40:d4:28:92:0d:f0:e0:2b:71:92:7a:d2:91:d6:95:
ec:eb:85:fd:bc:8b:57:e4:77:07:bf:48:84:25:4f:4f:9d:19:
eb:e8:b5:7f:cd:e3:33:e6:81:31:0c:68:c2:5b:55:ef:de:91:
8e:b7:2e:26:98:f9:63:ec:aa:cc:ea:ac:80:3f:b5:33:51:9d:
3b:c3:48:f9:06:c4:72:93:43:7b:00:8b:d2:b4:fa:ee:de:7d:
15:04:dd:58:d2:77:b9:8b:f7:8f:79:9b:b8:59:70:2d:26:ee:
21:50:dd:1b:73:40:10:bd:01:bb:82:07:3c:61:29:6a:ea:a0:
05:1c:51:19:16:55:c4:03:89:d2:12:1e:95:d6:7d:cf:2d:df:
ca:e2:cc:17:d5:c1:0b:83:9b:4e:9d:66:8a:33:16:e1:44:d7:
7d:bf:0a:bb:d9:43:37:ea:5e:f2:c3:95:5f:15:99:16:64:5c:
37:0c:da:80:17:8f:40:8c:8f:c8:0a:67:07:22:9a:7c:5a:7c:
49:1e:d0:31:72:ef:e5:54:b9:1b:e8:e3:bf:45:a0:47:b0:bd:
0e:80:64:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-fra.rpki-client.org