Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/Cf4TbHvdmY3vd-mtys0dJ_Z2LF0.roa
File: Cf4TbHvdmY3vd-mtys0dJ_Z2LF0.roa (raw, json)
Hash identifier: Ls1tvNrHOS4o02dnt4p2czZtP9DGUE0lEvY5fNWDEPg=
Subject key identifier: 09:FE:13:6C:7B:DD:99:8D:EF:77:E9:AD:CA:CD:1D:27:F6:76:2C:5D
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 0183D56B836A0F4B017C89CC20B09DC3651A
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/Cf4TbHvdmY3vd-mtys0dJ_Z2LF0.roa
Signing time: Fri 14 Oct 2022 07:35:36 +0000
ROA not before: Fri 14 Oct 2022 07:35:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d5:6b:83:6a:0f:4b:01:7c:89:cc:20:b0:9d:c3:65:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Oct 14 07:35:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09fe136c7bdd998def77e9adcacd1d27f6762c5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7b:52:92:82:eb:ee:f9:80:c8:e2:0c:36:78:
ff:08:d9:ea:f2:17:09:25:13:b5:a7:bd:1e:e4:4d:
9e:e7:e0:a5:71:db:30:b0:e1:f5:ba:11:a5:3b:8d:
75:b7:b7:90:09:65:94:e5:6d:dd:87:2b:e7:f6:c9:
cd:f6:51:c9:f7:2f:5f:b4:1f:c5:cd:b2:0a:2a:6d:
b1:55:6b:7a:6b:12:fb:0f:e3:e1:6d:ee:1b:48:55:
36:36:90:c0:a3:60:c2:ee:0b:f8:24:e3:d9:d9:29:
90:ea:8d:35:18:5a:77:d9:da:b8:d5:81:be:03:eb:
25:80:f2:1d:34:64:49:71:bd:cb:7d:fd:ee:15:c7:
8f:93:54:ce:90:cd:09:90:b8:38:08:7e:4e:d8:d3:
9c:e5:ec:aa:f8:ad:ce:aa:fc:2a:f3:d3:52:ed:79:
3e:86:d2:20:3e:99:29:03:de:46:82:5b:22:e0:f4:
5d:18:a0:b3:78:e8:22:83:ff:25:ca:67:9d:1f:9d:
d6:54:57:51:40:b7:ce:8d:73:d4:9b:93:18:77:fe:
d5:fd:79:44:aa:7f:62:85:c8:b5:a2:91:c0:27:7e:
62:b1:66:76:95:04:c6:05:26:f9:c9:aa:4d:6d:b6:
9b:52:73:95:62:14:94:db:c2:a9:84:09:14:75:5a:
29:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:FE:13:6C:7B:DD:99:8D:EF:77:E9:AD:CA:CD:1D:27:F6:76:2C:5D
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/Cf4TbHvdmY3vd-mtys0dJ_Z2LF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.40.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:c3:43:df:45:89:fb:d2:a2:42:fb:ea:22:14:a7:87:fa:b3:
87:96:f4:d6:a3:c0:85:fd:58:78:90:a2:ea:a5:80:f1:05:68:
74:91:c7:b4:17:86:54:24:35:a6:60:cf:f2:a7:f5:52:62:a2:
f6:67:5e:25:c6:65:c6:c0:ed:df:e6:55:c7:8b:54:bd:06:13:
8e:1d:5f:81:79:e5:d5:54:cd:c1:fc:24:c3:0e:ff:fe:f1:60:
13:a1:f0:59:09:10:eb:03:45:7d:33:17:21:db:74:34:b5:64:
74:0f:3c:a3:d3:ae:f0:a7:45:e7:8a:0e:b1:58:9c:29:bf:89:
b3:06:2b:1b:e3:8e:ba:97:6d:bb:04:aa:0c:88:ff:8e:3d:83:
f8:b1:2b:a4:ce:7b:08:7a:99:4e:21:e1:6f:30:0e:3f:8a:62:
bb:f8:ac:71:b6:a8:cf:cb:5f:0e:3e:dc:35:c4:b9:c3:61:e0:
64:4e:ed:e9:e5:fa:79:29:b6:3a:9a:f3:d3:fc:56:f6:44:d6:
03:21:2f:65:65:55:05:17:b2:07:97:15:28:41:44:26:9d:7b:
cc:85:07:2f:34:8f:79:04:c3:6f:93:3c:a5:4a:a7:fd:da:c7:
af:98:1a:84:9f:29:4a:7f:34:50:c1:0a:1d:1e:df:6b:b3:68:
03:86:26:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:55 2024 by rpki-client on console-ams.rpki-client.org