Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sI0f5MT2qBdV9JKTQ04yvskXios.roa
File: sI0f5MT2qBdV9JKTQ04yvskXios.roa (raw, json)
Hash identifier: 1yBEl+NvzFib24brsb1eMLNSpJEMOcebtlzyWo7LXko=
Subject key identifier: B0:8D:1F:E4:C4:F6:A8:17:55:F4:92:93:43:4E:32:BE:C9:17:8A:8B
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 17F16289
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sI0f5MT2qBdV9JKTQ04yvskXios.roa
Signing time: Sat 01 Jan 2022 03:59:58 +0000
ROA not before: Sat 01 Jan 2022 03:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39401
IP address blocks: 94.236.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401695369 (0x17f16289)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Jan 1 03:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b08d1fe4c4f6a81755f49293434e32bec9178a8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ba:4f:fa:98:0b:c2:bb:f2:83:e7:7d:44:58:
63:12:2b:62:c7:a7:c0:40:37:89:a4:04:08:25:40:
69:f3:0d:53:1a:e1:d4:19:b6:75:cf:85:cb:18:3a:
5b:35:7a:81:f5:c2:94:8e:62:8b:c1:8d:e6:97:ca:
1d:76:b6:2d:6f:aa:3c:4c:c0:77:b4:4a:bf:b7:b2:
13:bc:85:ec:5d:7c:c2:ef:10:70:a9:ee:aa:3b:23:
5c:55:aa:d2:84:c0:6e:e7:de:52:5b:cf:5c:8e:d7:
b8:bc:f3:bf:ce:9b:6c:03:48:74:56:74:1e:af:fd:
37:75:7b:dc:da:66:02:d0:32:d3:c0:b9:f6:45:2f:
96:ff:c0:1a:6d:a2:c7:69:96:3b:2f:dd:dc:b7:c6:
70:5f:ec:fd:7b:de:1d:91:8d:9f:fe:b8:d1:89:ae:
fd:63:55:94:9c:44:35:90:71:41:7c:64:65:b5:9a:
64:47:ab:85:be:63:5b:31:3b:2e:bc:bb:52:9b:cd:
3d:92:8d:26:cd:14:9b:bf:a7:d1:2b:d4:66:9c:66:
16:82:90:24:1a:5e:81:39:8d:b8:7b:53:f8:3a:6d:
57:a9:1d:e0:57:91:ae:ef:1b:63:93:20:08:49:57:
3a:61:02:5a:5c:52:3a:96:f4:ba:4e:56:43:b6:1b:
79:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:8D:1F:E4:C4:F6:A8:17:55:F4:92:93:43:4E:32:BE:C9:17:8A:8B
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/sI0f5MT2qBdV9JKTQ04yvskXios.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.236.168.0/24
Signature Algorithm: sha256WithRSAEncryption
81:90:de:99:70:ff:ac:b0:e8:23:30:8c:18:ec:48:7d:b0:e0:
e7:40:ac:e8:76:4a:08:23:7b:21:1b:5b:7c:cc:20:2c:85:e8:
7a:5a:1b:c5:8b:94:8b:99:99:f0:93:bd:a4:b9:a1:d0:88:df:
a9:90:93:b0:eb:ef:e8:57:b4:5f:41:11:cf:07:f0:d4:b0:73:
9f:39:c6:70:cd:c0:38:cf:15:0b:90:45:b3:dd:60:db:ad:26:
5b:89:be:8f:c7:9c:92:81:b7:ca:98:ea:b2:c5:8b:9c:07:42:
92:e9:6a:9a:bc:41:ce:ae:58:df:fc:fc:31:73:28:6d:0a:e4:
bf:38:19:50:b8:47:44:a0:8c:6f:90:75:c2:a8:29:7e:f3:9c:
56:6d:e3:b6:e7:f8:1c:57:0e:9d:0e:e7:0b:b7:97:66:b4:66:
32:76:4a:b3:ef:bf:a9:3b:97:bc:1b:01:b5:0a:53:ab:3e:64:
3c:c6:ee:f7:c2:77:00:30:93:bd:dc:e2:35:33:f0:f0:8e:e6:
49:9d:53:5e:ae:38:db:ca:70:bf:05:b5:f8:f1:43:3e:1a:89:
ad:bf:04:f3:4d:52:f5:95:a4:98:04:e4:c8:06:41:8c:3d:83:
19:5d:f5:8a:d3:02:40:34:97:1e:af:88:12:15:50:51:f0:7b:
d8:1f:fa:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:54 2024 by rpki-client on console-ams.rpki-client.org