Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/Csddm45NArX4HG7IR0Mbr1aNR54.roa
File: Csddm45NArX4HG7IR0Mbr1aNR54.roa (raw, json)
Hash identifier: neE5PgPUdKYWb8asgyuiLPuZrLXSUumdCUOdvJHFBS4=
Subject key identifier: 0A:C7:5D:9B:8E:4D:02:B5:F8:1C:6E:C8:47:43:1B:AF:56:8D:47:9E
Certificate issuer: /CN=440ce684d5701ddb02a26b55e29eac9fe804deda
Certificate serial: CF95EA
Authority key identifier: 44:0C:E6:84:D5:70:1D:DB:02:A2:6B:55:E2:9E:AC:9F:E8:04:DE:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RAzmhNVwHdsComtV4p6sn-gE3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/Csddm45NArX4HG7IR0Mbr1aNR54.roa
Signing time: Sat 01 Jan 2022 05:53:19 +0000
ROA not before: Sat 01 Jan 2022 05:53:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 94.103.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13604330 (0xcf95ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=440ce684d5701ddb02a26b55e29eac9fe804deda
Validity
Not Before: Jan 1 05:53:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ac75d9b8e4d02b5f81c6ec847431baf568d479e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:54:9a:e6:06:0c:68:19:d9:38:64:0b:5a:48:
27:1b:99:73:b4:1a:75:2e:aa:fb:79:aa:b3:8e:fd:
df:7a:1e:57:5c:17:06:e4:ae:34:f0:3f:9c:a6:fd:
67:fd:28:c2:00:3e:5d:38:9f:ca:1e:eb:21:f4:b9:
59:3f:49:00:77:34:23:58:9f:8f:53:b6:65:11:9a:
d6:b1:be:35:07:00:57:fb:d5:30:02:b9:9d:d0:25:
ad:c1:6a:d5:5e:dc:a6:fd:ff:69:1b:25:e7:d7:46:
36:f0:f0:97:1c:d1:1c:d2:53:b9:bd:af:5a:ad:8c:
41:df:75:0d:40:85:57:01:e8:81:b9:23:49:01:ae:
e3:6e:ec:1e:1f:5d:78:f8:72:2a:18:5c:9e:e7:4d:
38:e5:ed:96:4d:75:d9:e9:ff:d4:e4:b8:6a:0f:a0:
f0:b0:70:7f:b2:de:c0:1f:48:05:cf:79:09:9f:b6:
cd:4d:d3:15:89:89:a4:2c:7d:39:3a:ca:be:5f:d9:
ca:05:d8:a6:92:dd:e9:bf:9a:0a:32:47:4c:04:1a:
24:f6:7f:b1:8a:7d:d6:f2:01:87:4d:1c:54:08:09:
23:a4:db:2e:90:ab:28:df:1f:65:27:85:a9:cc:17:
c0:c3:51:43:bb:fb:8a:3f:81:4c:87:a6:70:39:6c:
44:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:C7:5D:9B:8E:4D:02:B5:F8:1C:6E:C8:47:43:1B:AF:56:8D:47:9E
X509v3 Authority Key Identifier:
keyid:44:0C:E6:84:D5:70:1D:DB:02:A2:6B:55:E2:9E:AC:9F:E8:04:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RAzmhNVwHdsComtV4p6sn-gE3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/Csddm45NArX4HG7IR0Mbr1aNR54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/a48791-cafd-423f-bd61-816a8c210624/1/RAzmhNVwHdsComtV4p6sn-gE3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.176.0/24
Signature Algorithm: sha256WithRSAEncryption
46:d7:80:f3:aa:95:61:07:38:8c:5f:cc:b1:dc:ef:c3:a4:97:
b0:8f:48:31:8b:08:96:45:d3:bc:8c:8c:96:19:c9:d3:3a:0f:
2a:c4:be:aa:6c:94:77:de:e1:cb:89:b4:c1:dc:36:d3:ad:88:
f5:cf:80:90:ef:bc:ae:5a:67:a2:41:ef:35:24:d6:e0:36:aa:
80:02:42:75:df:ae:7f:b8:25:18:9f:2c:64:62:04:bb:37:6c:
f4:73:7a:35:5f:90:e0:91:d4:ae:dd:50:f0:dd:63:fb:04:00:
62:bf:a4:ec:e0:20:02:9c:48:16:21:10:f3:6d:a4:33:ed:e8:
87:6e:43:c5:3c:7f:da:7d:38:0b:68:3e:c4:71:0a:ab:5e:0d:
96:a9:9f:1f:16:a8:19:c0:10:86:53:82:1c:02:f8:43:7a:58:
ed:31:d7:d3:e4:79:5c:f6:49:f1:52:38:72:34:6f:4a:84:af:
b6:2a:d8:be:b3:10:62:61:c1:37:9f:88:85:cd:c4:b7:a9:af:
2d:5c:ca:a0:11:85:e4:4f:8f:de:b8:b9:31:93:c4:83:76:f6:
e7:01:27:5c:dc:af:a4:7f:de:50:c2:ce:94:47:f5:c1:14:94:
88:85:41:e6:8c:29:31:94:e6:2f:2a:a3:c7:82:23:05:c5:62:
dd:55:74:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:34 2023 by rpki-client on console-fra.rpki-client.org