Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/W8Hd-X9rjmCsXpoXO4YvyrrhC9Y.roa
File: W8Hd-X9rjmCsXpoXO4YvyrrhC9Y.roa (raw, json)
Hash identifier: rznYLM6xjUP4AqN3OjFOJ0ZPdFa3Ni1+V4GxdP4hWTc=
Subject key identifier: 5B:C1:DD:F9:7F:6B:8E:60:AC:5E:9A:17:3B:86:2F:CA:BA:E1:0B:D6
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 15225D07
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/W8Hd-X9rjmCsXpoXO4YvyrrhC9Y.roa
Signing time: Sat 01 Jan 2022 09:58:14 +0000
ROA not before: Sat 01 Jan 2022 09:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200094
IP address blocks: 94.240.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354573575 (0x15225d07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Jan 1 09:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5bc1ddf97f6b8e60ac5e9a173b862fcabae10bd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:93:51:3f:53:be:b5:b1:f5:9d:1e:4f:b0:79:
b4:2a:47:68:08:6d:2c:a3:85:a1:6d:cd:92:90:aa:
85:d2:a5:13:75:a6:12:cc:9b:88:7e:cb:98:df:56:
94:88:f2:09:22:e6:6f:45:c2:dd:0e:87:97:30:f0:
fc:8e:cb:b6:ad:0d:95:22:04:5f:7a:ba:be:e1:df:
ea:56:ed:ac:e6:61:65:45:24:30:d3:4b:b2:67:a0:
63:37:d4:1a:d3:16:c4:44:16:8d:5d:fc:05:3e:26:
a0:3e:23:a5:53:35:32:22:6a:1d:67:dc:06:7e:3d:
61:75:48:16:0e:13:e1:af:07:c4:ac:03:fc:92:db:
62:6c:7a:c3:c6:13:69:10:86:a5:db:49:3c:49:69:
8b:7d:8c:4b:8f:d1:78:70:9c:b3:67:c6:73:8f:eb:
d9:db:7d:0d:a7:68:3a:5e:e6:c2:10:9d:29:df:47:
bf:ff:ac:0c:6a:d2:ed:1b:94:d7:f4:1f:d1:b7:f4:
16:db:d4:1e:c1:ed:9e:05:22:0d:57:92:09:b8:e1:
f9:00:73:db:2d:f4:76:c3:92:f7:72:e5:4e:ed:48:
83:b6:f9:85:7e:c5:b2:8b:5a:b6:25:99:32:90:eb:
fb:aa:11:8c:18:a2:a1:59:c1:04:51:c6:91:65:d5:
d1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:C1:DD:F9:7F:6B:8E:60:AC:5E:9A:17:3B:86:2F:CA:BA:E1:0B:D6
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/W8Hd-X9rjmCsXpoXO4YvyrrhC9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.46.0/24
Signature Algorithm: sha256WithRSAEncryption
75:19:0a:8d:21:a9:51:b5:b4:c3:5d:a8:2f:01:34:c8:7d:d8:
ac:e8:eb:6c:63:a9:8a:81:98:04:9b:65:5c:5a:ef:0f:f0:d0:
3a:d0:6e:e2:b8:d6:d5:d3:ae:91:a0:60:3d:e3:b9:2d:00:f6:
f5:60:fb:4e:64:8b:55:42:4f:46:71:a1:15:e0:93:e1:57:3b:
4d:03:96:96:96:f0:d5:a8:65:ba:cf:f8:99:0b:5d:f9:24:52:
5f:b1:d6:a5:49:e1:66:02:f3:5b:4b:36:62:1b:9e:28:b6:87:
58:38:58:4a:2c:c9:d2:a4:03:27:38:14:9d:dd:8f:03:13:73:
62:5b:cd:d4:4d:02:3a:06:3b:a9:ef:67:8b:cf:d3:8b:f3:c8:
d6:49:ef:f9:c8:4d:09:fd:87:23:04:27:4c:25:55:6e:16:34:
5a:23:a7:5c:47:f2:e1:0d:cd:5c:60:5e:7b:7a:61:f8:2e:d6:
e7:fa:1b:fe:c5:1e:7d:f2:28:cb:98:f3:fe:e5:9e:4a:bf:79:
d6:4a:37:b0:b5:1e:65:4b:58:21:53:98:95:81:f0:dd:e5:21:
7f:6c:b2:53:2c:e2:68:1d:ef:ca:48:3c:76:ac:ae:7f:51:48:
bf:be:7a:15:1b:8e:7e:da:dc:f7:65:92:20:82:23:b5:b2:3b:
71:94:24:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:12 2024 by rpki-client on console-ams.rpki-client.org