Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/IARRI1p49eYa0gR2G1VGJ-d8aLM.roa
File: IARRI1p49eYa0gR2G1VGJ-d8aLM.roa (raw, json)
Hash identifier: 6sXqrIkGXlSV2hZW5SLrbavWCnsRPLPflbud3PIHlWw=
Subject key identifier: 20:04:51:23:5A:78:F5:E6:1A:D2:04:76:1B:55:46:27:E7:7C:68:B3
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 05EF2C5A
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/IARRI1p49eYa0gR2G1VGJ-d8aLM.roa
Signing time: Wed 02 Mar 2022 16:56:29 +0000
ROA not before: Wed 02 Mar 2022 16:56:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 94.154.44.0/24 maxlen: 24
94.154.42.0/24 maxlen: 24
94.154.41.0/24 maxlen: 24
94.154.43.0/24 maxlen: 24
94.154.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99560538 (0x5ef2c5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Mar 2 16:56:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=200451235a78f5e61ad204761b554627e77c68b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ba:50:ea:23:83:f4:e0:b1:4c:ac:54:95:00:
3c:5d:ee:84:22:81:01:ba:36:5f:bb:38:c9:19:a6:
a1:ae:05:15:1b:48:e4:b5:2b:4f:43:fc:e8:b0:50:
cf:be:74:b5:0f:e0:b4:12:7f:2d:73:05:59:a0:39:
9f:d0:58:0f:43:46:6b:d8:a9:2e:19:a9:89:bf:34:
92:d7:87:37:f8:84:fc:27:36:a9:d2:8f:8e:ed:b0:
c8:a3:5c:ac:c8:83:be:78:f0:33:b7:f0:9b:b6:06:
eb:d6:5c:9b:94:79:76:44:ea:2c:0c:c7:9e:f3:a0:
73:da:7e:c4:05:7a:76:48:73:c5:d2:06:1a:09:2b:
eb:b8:35:1d:19:05:60:9c:6a:3a:fd:d8:e2:16:4a:
fe:2e:98:a5:79:53:7c:f8:71:7d:ce:57:49:ef:6d:
c3:44:1d:f2:34:41:47:54:9d:7a:36:a8:5d:64:5b:
a3:38:3f:83:52:1a:ac:48:9d:0c:09:2b:e6:6e:4e:
8b:f4:62:77:e0:7d:2e:a3:fd:36:d8:f8:67:1e:0d:
aa:20:ea:32:d7:70:a2:4f:c1:4b:d7:06:19:d9:a2:
d6:91:68:7a:b8:7c:c0:5c:e5:c0:81:d2:90:ab:c7:
8b:a7:d6:54:2d:23:9f:cb:ca:52:60:a3:9a:d8:c3:
af:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:04:51:23:5A:78:F5:E6:1A:D2:04:76:1B:55:46:27:E7:7C:68:B3
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/IARRI1p49eYa0gR2G1VGJ-d8aLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.41.0-94.154.45.255
Signature Algorithm: sha256WithRSAEncryption
3f:a5:eb:bf:24:01:f4:6d:3a:79:64:b1:cb:a4:a7:ed:20:c2:
8e:e8:e4:f0:7b:31:1e:80:22:58:51:20:5a:f4:29:ae:d6:f3:
e6:f9:c9:30:ce:fa:7b:b2:3d:65:f1:36:66:95:74:1e:47:a1:
38:bb:90:f6:7a:f5:5c:cb:fd:c6:bc:ea:54:00:5b:37:d2:2f:
a6:48:16:c4:68:7d:3f:b5:ad:fc:46:a4:fc:c7:4f:22:55:3c:
57:32:68:4a:b9:ac:e4:5c:08:af:34:5b:de:b7:45:7c:8d:bc:
be:34:b0:a4:6c:26:8d:96:2a:7b:4b:79:bc:47:9f:2a:29:3f:
29:d1:97:d7:28:89:33:a6:0e:5d:2e:c6:31:16:65:0b:b9:8a:
3e:6d:04:bb:28:87:59:b2:c9:df:e1:ad:3b:6e:83:9d:1f:a4:
99:92:17:9d:19:8a:c9:b9:70:72:87:66:9d:a6:d5:8f:70:db:
ca:c3:ee:db:20:d1:28:54:2e:8c:1a:6b:82:4c:5c:59:6d:e4:
54:98:c4:93:c4:e7:83:31:1d:57:eb:7b:c8:d0:e2:6c:0c:8b:
1b:83:99:2a:c1:b4:e7:1e:35:bf:89:8c:5e:ed:54:d3:92:2b:
73:a1:2e:3d:9b:c4:a9:96:48:4b:d5:3b:82:44:3b:04:18:5f:
a6:1b:f2:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:59 2023 by rpki-client on console-ams.rpki-client.org