Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/RukIbKoM8Eeq-8ts6kJ2hWE8imM.roa
File: RukIbKoM8Eeq-8ts6kJ2hWE8imM.roa (raw, json)
Hash identifier: cuEU9KxQ1mPJz8+JCfaxAwyINZ3GPnUj5bU2fhft0M4=
Subject key identifier: 46:E9:08:6C:AA:0C:F0:47:AA:FB:CB:6C:EA:42:76:85:61:3C:8A:63
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 1812FF91
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/RukIbKoM8Eeq-8ts6kJ2hWE8imM.roa
Signing time: Sat 01 Jan 2022 04:00:42 +0000
ROA not before: Sat 01 Jan 2022 04:00:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207826
IP address blocks: 94.236.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403898257 (0x1812ff91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 04:00:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46e9086caa0cf047aafbcb6cea427685613c8a63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:be:9a:eb:ee:a7:20:6f:8a:a2:da:13:85:
c3:d7:d3:63:06:af:9e:51:6b:ed:95:35:f6:80:08:
6f:45:9f:f8:7b:99:5c:50:0a:ef:0d:f5:f9:a0:7e:
3f:7b:71:cf:0e:92:9d:68:e0:14:e2:44:62:64:85:
dc:08:5b:57:1a:5c:de:66:69:2b:4f:f7:4d:13:b0:
ed:6c:9f:63:2b:8b:3c:ca:8b:ea:1c:0b:7f:c8:b1:
08:a1:66:b1:05:22:1a:e0:46:38:54:22:16:7f:6f:
3a:75:f3:18:43:fc:3c:85:d3:7d:85:53:b1:a5:5d:
e3:56:04:8a:23:aa:6c:96:db:99:0e:81:19:4d:f9:
48:b3:87:f7:19:64:3b:ec:ec:87:b7:c9:3c:39:2c:
e2:17:db:89:8e:e3:1d:97:6a:ad:a6:98:10:b9:03:
05:57:d2:24:15:39:23:34:6c:d8:c6:28:ee:3b:db:
68:a0:40:e5:b5:56:df:ec:5f:66:a5:11:e9:ab:c2:
b2:7e:96:18:9d:50:90:3d:11:c1:b9:31:06:29:64:
eb:c3:19:06:33:b4:f6:62:12:5f:a6:ca:a6:06:6d:
5b:26:d9:98:65:46:94:67:52:bb:1e:20:8d:44:56:
92:4f:81:88:e3:fc:27:e4:03:07:43:29:44:2a:02:
9a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E9:08:6C:AA:0C:F0:47:AA:FB:CB:6C:EA:42:76:85:61:3C:8A:63
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/RukIbKoM8Eeq-8ts6kJ2hWE8imM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.236.169.0/24
Signature Algorithm: sha256WithRSAEncryption
49:16:13:2f:9d:f0:67:54:ce:23:b8:11:d6:64:24:a5:cb:a7:
fa:63:41:1a:14:b8:6e:33:df:9d:c1:2f:ab:66:a1:43:fa:ce:
4c:c8:3b:34:f0:a0:4d:83:5f:6a:9a:7b:9f:91:65:17:32:64:
a1:38:e8:a0:01:6f:87:06:b7:a4:54:03:60:8a:a2:a1:f9:b4:
94:e9:4e:5d:75:59:66:0a:76:92:f4:5d:bf:41:fb:f2:e3:28:
cb:02:ec:4e:ff:b0:b7:8d:cd:6d:7e:8a:bd:aa:2d:78:82:db:
4b:1a:29:71:e2:61:ed:3d:60:18:3a:ad:0f:e8:c6:c2:b9:b1:
5d:e9:bb:f3:c0:b1:93:d4:87:31:89:a0:7c:48:62:45:9a:3f:
92:3b:f5:27:f6:e0:37:1f:de:f9:e0:b8:2a:e8:ed:2f:76:5b:
0c:5b:21:2a:f5:f5:9d:5b:ca:4f:58:c5:5c:1e:ba:53:4d:38:
e3:fc:c6:a9:22:7f:86:0b:c5:6b:3d:6d:5f:b8:2b:d1:f4:49:
1c:6a:cd:d1:4d:46:7d:a3:8f:dd:4c:31:d6:f1:61:00:d3:18:
a5:13:a4:ea:63:b3:35:67:4a:27:df:d3:1c:2a:fc:c3:a3:66:
94:72:1c:19:c6:cc:34:7c:85:ce:87:74:0f:ea:a0:4d:e9:ed:
b7:06:fe:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org