Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Tp4UOXAA1Z3O85eKmCp39IcgHKE.roa
File: Tp4UOXAA1Z3O85eKmCp39IcgHKE.roa (raw, json)
Hash identifier: g9OFvbc4kHUtOIqs8ufVFgkoZeFlnU4GbLAwrmnS8VA=
Subject key identifier: 4E:9E:14:39:70:00:D5:9D:CE:F3:97:8A:98:2A:77:F4:87:20:1C:A1
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018437524B4258072792CC48A0943B6166C5
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Tp4UOXAA1Z3O85eKmCp39IcgHKE.roa
Signing time: Wed 02 Nov 2022 07:50:50 +0000
ROA not before: Wed 02 Nov 2022 07:50:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8866
IP address blocks: 94.156.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:52:4b:42:58:07:27:92:cc:48:a0:94:3b:61:66:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 2 07:50:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e9e14397000d59dcef3978a982a77f487201ca1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b5:fd:f9:73:9d:e2:46:5c:e1:6e:37:b7:1f:
2f:05:1e:e8:ca:d4:48:ae:0f:e8:8c:ae:d0:2b:0e:
25:16:33:09:9b:28:06:4b:c3:ca:bd:da:e9:2c:f9:
77:24:ca:cf:d7:06:92:54:0b:50:22:7b:d1:a8:a0:
78:22:4f:cc:6e:a8:38:b2:23:c4:96:a4:45:c3:c9:
66:43:19:cb:b0:d2:42:89:3f:a4:fd:e8:46:f0:e0:
a5:75:1f:a9:ee:c1:41:11:ef:80:e6:8e:68:2b:0b:
1f:22:b2:f1:c1:c4:05:41:d8:e4:82:2a:ca:c4:c0:
f4:64:33:6d:c7:7b:6b:92:dc:0c:ab:26:a8:2f:41:
d1:47:43:4b:06:c7:1e:0f:31:74:86:ed:4e:3d:a5:
72:3c:73:3a:d4:8a:d2:7d:0b:0b:84:02:3a:fc:eb:
b5:bc:4d:0f:d7:8e:3b:86:9b:60:9a:28:7f:10:9a:
7a:8c:18:cb:e7:fe:be:2a:ab:53:22:33:cd:1c:52:
ba:45:68:c4:36:3d:b6:6f:8a:9e:97:f6:b1:28:4d:
ff:04:27:f9:e0:14:f7:88:7e:72:17:40:f4:7f:dc:
04:cf:69:66:5e:a1:2e:2b:8b:17:eb:cd:a5:ac:50:
07:e3:56:cd:50:5a:3a:df:84:00:de:d4:53:88:ec:
1e:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9E:14:39:70:00:D5:9D:CE:F3:97:8A:98:2A:77:F4:87:20:1C:A1
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Tp4UOXAA1Z3O85eKmCp39IcgHKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.236.0/22
Signature Algorithm: sha256WithRSAEncryption
86:34:76:f5:08:08:9f:cc:57:bf:a9:0b:05:1a:e3:4a:6a:6c:
31:e2:90:33:6f:81:01:7b:3c:fc:3e:18:21:00:5f:b5:e6:f1:
98:5b:86:d7:f2:87:74:b6:78:68:14:15:4e:a8:17:2b:2b:3d:
19:fe:f3:32:dd:4c:ff:66:f5:c2:01:71:96:23:44:6e:46:6e:
fc:81:8d:43:fb:e1:45:7f:a7:ca:ed:88:11:84:cd:67:a7:ee:
4c:3c:fa:8a:04:50:d6:ba:83:a3:13:b1:76:a7:64:d1:1d:af:
23:8d:90:d8:63:7b:d6:f7:c0:30:22:0d:d4:e1:fa:b4:f0:a9:
06:58:37:7c:94:d0:66:c2:8f:16:cb:32:c7:0b:68:7a:5c:43:
3b:72:cd:a2:82:46:b2:67:97:e0:c0:f9:28:10:dc:d0:53:29:
d1:f1:2f:10:68:be:a1:2e:7a:2e:3e:5d:b7:d7:4e:ad:71:21:
e6:1d:6d:11:3b:85:61:fa:48:f2:93:d8:a0:4a:99:d1:c9:01:
9d:0c:82:63:89:3c:da:a0:c4:72:8f:8c:38:53:66:f1:30:5b:
76:b3:39:bc:8e:de:01:c3:29:d9:cf:0c:9e:86:54:18:09:7f:
a5:d7:94:d2:70:32:f0:92:2d:7c:c8:6d:ec:e9:d7:aa:81:22:
c0:83:f3:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:43 2023 by rpki-client on console-fra.rpki-client.org