Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/G6UQgiabzSKRBOb8IlNwgoKSqO8.roa
File: G6UQgiabzSKRBOb8IlNwgoKSqO8.roa (raw, json)
Hash identifier: N390n2UhmljmXyy6v1SCgXr1a0seoX+nqU/NZ/Iu/eg=
Subject key identifier: 1B:A5:10:82:26:9B:CD:22:91:04:E6:FC:22:53:70:82:82:92:A8:EF
Certificate issuer: /CN=52302a45d0568486051a7ec466f03108c320b4c4
Certificate serial: 04E77FFC
Authority key identifier: 52:30:2A:45:D0:56:84:86:05:1A:7E:C4:66:F0:31:08:C3:20:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UjAqRdBWhIYFGn7EZvAxCMMgtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/G6UQgiabzSKRBOb8IlNwgoKSqO8.roa
Signing time: Sat 01 Jan 2022 05:02:16 +0000
ROA not before: Sat 01 Jan 2022 05:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 94.124.112.0/24 maxlen: 24
2a0c:b280::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82280444 (0x4e77ffc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52302a45d0568486051a7ec466f03108c320b4c4
Validity
Not Before: Jan 1 05:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ba51082269bcd229104e6fc225370828292a8ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:a1:c8:bb:f8:11:7e:2d:89:1e:52:2a:94:
5d:04:16:44:89:07:be:24:2d:59:29:a8:d2:06:98:
ea:e5:29:c1:90:b5:fd:85:3e:07:de:57:d0:3d:16:
f1:f0:8c:c0:85:b4:eb:93:9a:d6:c5:85:7a:40:01:
72:a7:18:5f:6b:8d:a5:d8:15:bf:e2:e1:12:d6:e3:
0b:01:e6:2d:a4:98:16:5f:e0:0c:34:73:85:77:d1:
72:ef:5c:a5:c0:51:bc:0c:45:be:32:f0:b3:3f:ad:
33:00:74:af:47:98:64:68:cd:06:c7:69:a7:b9:ae:
4a:49:34:24:d5:3e:80:76:79:9a:c4:47:f0:33:5f:
0d:90:1b:bf:ff:44:b4:a3:e8:b5:e9:b2:62:8d:58:
3e:2f:08:6d:6f:c6:c9:ac:5b:7d:37:00:02:4a:78:
7f:2c:ab:50:a3:7d:6b:d1:c6:53:e5:fe:a9:f6:aa:
4c:c0:4f:cd:78:02:77:33:cc:dd:24:a6:8d:f2:af:
94:31:82:c0:05:f8:cb:8c:0b:15:6b:0e:f5:ad:2b:
12:da:b7:7b:25:d9:e8:31:66:62:54:69:30:7c:9d:
c7:3e:cd:b4:fc:ec:c2:7b:5e:00:ee:06:a8:b7:ed:
54:f8:5c:12:09:ef:b0:56:98:18:0d:9d:c9:64:3f:
ef:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:A5:10:82:26:9B:CD:22:91:04:E6:FC:22:53:70:82:82:92:A8:EF
X509v3 Authority Key Identifier:
keyid:52:30:2A:45:D0:56:84:86:05:1A:7E:C4:66:F0:31:08:C3:20:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UjAqRdBWhIYFGn7EZvAxCMMgtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/G6UQgiabzSKRBOb8IlNwgoKSqO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/75ba72-d7b2-4283-9f0b-e3e5fa36bb2f/1/UjAqRdBWhIYFGn7EZvAxCMMgtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.112.0/24
IPv6:
2a0c:b280::/48
Signature Algorithm: sha256WithRSAEncryption
93:06:16:f0:dc:72:52:53:18:d5:c7:72:71:65:d3:d2:3b:2a:
6b:3e:df:0f:74:11:44:4b:3f:28:71:f7:3d:34:af:15:2a:bf:
da:1b:8d:a6:6c:41:35:30:2c:bb:5b:8b:bd:fa:2a:bd:f4:9f:
6c:2a:58:4b:88:c1:d3:ab:09:6f:96:ea:4f:4f:3e:41:ce:b9:
a9:d7:e3:71:70:a6:b0:16:24:44:8a:f8:2a:86:0d:d4:c5:1e:
54:5f:4f:8e:08:4f:fd:b0:74:f2:04:e0:b5:5b:94:86:73:2f:
57:9e:ac:f6:93:7d:12:21:92:4a:ec:77:29:1f:d4:77:1f:13:
fa:d2:f0:f1:d0:85:c3:8c:72:1e:41:e7:3d:07:65:8e:f6:ba:
63:5c:25:44:18:6e:1c:21:6a:6d:b6:41:38:de:06:1e:ae:a6:
e4:db:c5:07:cb:08:08:b9:7c:30:51:08:6c:b4:5e:75:56:80:
82:40:e9:98:c2:be:23:94:1a:21:ce:48:78:f0:98:a5:98:32:
d8:15:d8:63:90:25:85:02:e7:80:9a:33:f9:3d:58:21:49:cb:
70:fc:44:29:38:0d:12:00:2b:26:18:5c:f2:4e:06:e7:53:ad:
48:c8:ce:d2:61:ff:64:34:06:52:52:05:fc:a4:77:9d:f1:60:
7b:e4:cd:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:47 2024 by rpki-client on console-fra.rpki-client.org