Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/DAkGlrX4ToXFTx-CAYlF4Ts6dgw.roa
File: DAkGlrX4ToXFTx-CAYlF4Ts6dgw.roa (raw, json)
Hash identifier: 7dmDlAYYFiANI22LSt7yUiNZwxv63sU+W4vvQtWIyaQ=
Subject key identifier: 0C:09:06:96:B5:F8:4E:85:C5:4F:1F:82:01:89:45:E1:3B:3A:76:0C
Certificate issuer: /CN=3ecd53c66424c3f369ca88ee7af76adb25e18451
Certificate serial: 012924D8
Authority key identifier: 3E:CD:53:C6:64:24:C3:F3:69:CA:88:EE:7A:F7:6A:DB:25:E1:84:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ps1TxmQkw_Npyojuevdq2yXhhFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/DAkGlrX4ToXFTx-CAYlF4Ts6dgw.roa
Signing time: Sat 01 Jan 2022 05:59:34 +0000
ROA not before: Sat 01 Jan 2022 05:59:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50837
IP address blocks: 94.156.254.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19473624 (0x12924d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ecd53c66424c3f369ca88ee7af76adb25e18451
Validity
Not Before: Jan 1 05:59:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c090696b5f84e85c54f1f82018945e13b3a760c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:42:57:7d:7e:13:bc:37:64:a0:39:23:33:d1:
72:92:99:0c:e8:f1:e5:53:a1:82:28:ba:08:47:0b:
77:5d:b4:95:eb:d8:61:9b:5f:31:b5:bf:86:ab:59:
db:64:c7:63:f1:b0:21:ad:92:63:9a:8d:c8:eb:bf:
ef:eb:3e:f7:fd:80:4b:52:62:02:a5:d6:e3:49:2a:
3d:ea:46:fb:c5:e0:d0:da:08:09:bc:1a:bd:53:6d:
3b:c4:4c:fb:c5:6a:1a:2d:70:50:a1:29:04:71:27:
e9:a6:bb:dd:04:b2:a1:8f:ef:72:22:fe:98:4c:9e:
46:5f:fd:46:a9:34:9c:cd:65:63:fc:9e:1c:ef:5f:
1e:da:cf:90:71:6f:eb:83:29:0e:92:7c:80:4f:2f:
60:8b:88:62:b9:f4:be:4e:a3:00:3c:c1:28:d0:5c:
63:5a:cd:c0:01:e1:58:7b:e0:90:9a:ed:53:84:12:
5e:60:c1:24:3e:38:05:ff:26:59:c5:85:4f:51:8c:
69:e2:23:07:89:75:b5:73:ab:cc:c0:59:14:27:46:
fc:87:91:dd:d5:c3:40:45:60:4d:89:73:a8:cc:79:
98:12:6a:18:a5:0f:ad:88:32:c5:3a:7a:51:b2:2d:
26:2a:19:a0:cb:bd:55:9a:28:34:a2:97:d8:15:af:
e0:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:09:06:96:B5:F8:4E:85:C5:4F:1F:82:01:89:45:E1:3B:3A:76:0C
X509v3 Authority Key Identifier:
keyid:3E:CD:53:C6:64:24:C3:F3:69:CA:88:EE:7A:F7:6A:DB:25:E1:84:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ps1TxmQkw_Npyojuevdq2yXhhFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/DAkGlrX4ToXFTx-CAYlF4Ts6dgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e65ada-4d4a-404d-8700-c2256804e922/1/Ps1TxmQkw_Npyojuevdq2yXhhFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.254.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:89:f8:74:f8:be:62:3a:1c:40:61:8e:62:9f:db:8a:a6:bc:
b4:29:4c:75:45:fe:36:36:71:93:22:f0:16:c7:4c:71:54:31:
a5:c6:eb:fd:23:10:60:c2:ea:29:f8:a8:a6:7e:86:59:77:88:
db:a5:13:c3:a8:cc:31:ca:a8:e6:63:cd:54:cf:df:b2:5e:e1:
5b:f2:00:a3:0b:8a:cd:76:c9:4c:fa:e3:96:03:7f:dc:92:87:
c7:2d:62:ec:67:13:35:46:c6:05:74:26:2b:7e:ea:a2:49:36:
ca:bd:de:f4:9f:17:41:64:46:03:4a:8c:c7:dc:4d:29:32:01:
1c:44:eb:bc:e4:e9:81:d3:8b:25:4e:6c:66:dc:a8:f3:07:33:
16:6e:0d:95:17:dc:9f:ac:1e:88:b3:f0:82:de:e5:4b:eb:fe:
e9:0e:5a:8f:af:34:0d:f5:63:44:c8:9c:ef:80:78:97:38:ef:
eb:5e:f4:9b:e9:8f:de:97:4b:da:07:30:12:98:b0:71:a3:ca:
13:50:b0:d1:dc:8c:55:39:ba:bb:02:d4:90:7f:32:1b:f0:c5:
af:7d:3f:fa:16:08:f6:4f:de:8e:5f:d0:d4:7f:fd:73:a2:6c:
15:ba:5e:88:a6:17:d4:2e:8d:80:6b:d5:a1:80:b3:05:c6:42:
1e:f2:f5:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:14:27 2025 by rpki-client