Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/NeOP4ZIRk1g1ndaOKyWWQnqhkSQ.roa
File: NeOP4ZIRk1g1ndaOKyWWQnqhkSQ.roa (raw, json)
Hash identifier: SyJiHJojCOk4vysvxZNN4WhaoMY0a4AUdk7V9c3bOIw=
Subject key identifier: 35:E3:8F:E1:92:11:93:58:35:9D:D6:8E:2B:25:96:42:7A:A1:91:24
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 05595833
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/NeOP4ZIRk1g1ndaOKyWWQnqhkSQ.roa
Signing time: Tue 04 Jan 2022 18:44:31 +0000
ROA not before: Tue 04 Jan 2022 18:44:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 94.154.44.0/24 maxlen: 24
94.154.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89741363 (0x5595833)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Jan 4 18:44:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35e38fe192119358359dd68e2b2596427aa19124
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0a:1b:41:a1:7c:85:dd:59:10:06:01:f8:9b:
32:bf:3f:f2:80:02:49:4b:e3:6a:7c:a8:71:f0:1d:
9d:bd:92:9c:83:cc:b9:20:f3:b2:b5:c2:ef:6e:00:
55:4b:a0:f5:21:23:e2:40:27:fe:dd:9d:c5:ec:e6:
b4:dc:ed:0d:0d:11:d4:b3:46:36:b8:b4:2e:c2:0b:
ad:00:f3:55:d2:57:b5:dc:0f:94:f2:c6:6a:4b:be:
a5:43:12:a5:44:30:64:f6:43:bd:34:3e:cd:28:58:
0d:1a:b1:30:42:f5:1d:ca:83:3a:80:68:24:95:7b:
94:bb:a5:11:8a:69:f9:84:fa:15:59:db:dd:b3:b2:
da:7c:a3:c6:df:40:bd:14:10:0d:24:9a:21:fb:be:
ac:1a:06:4a:77:9a:1a:90:85:22:c8:fa:70:0c:85:
bb:47:60:b2:6b:3e:c3:96:cd:2b:2a:ab:b3:32:84:
5e:ce:07:b8:41:66:60:4c:f2:89:af:d6:85:7e:b2:
a8:9e:39:5e:7c:56:06:db:63:1c:9a:54:7c:dc:6b:
a1:40:d8:1d:60:e1:a1:74:cd:77:19:6c:1f:f0:d0:
7d:13:c2:a8:30:41:33:2f:e1:15:6c:e2:21:84:33:
d5:e7:78:42:0f:75:a0:72:67:b6:53:15:bb:42:80:
70:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:E3:8F:E1:92:11:93:58:35:9D:D6:8E:2B:25:96:42:7A:A1:91:24
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/NeOP4ZIRk1g1ndaOKyWWQnqhkSQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.44.0/23
Signature Algorithm: sha256WithRSAEncryption
81:38:57:bc:0f:9c:9b:b8:0c:e3:4a:e5:5c:c7:52:8f:5a:ce:
21:c0:d7:2f:a3:bb:ed:8e:96:25:ad:7e:13:b1:d5:55:95:48:
cb:8b:16:97:e4:83:9c:55:cf:cc:e0:da:d5:4b:d8:bc:1d:5e:
05:6d:30:8a:30:65:80:39:ba:6c:e6:ef:11:51:8e:61:ad:ba:
6e:96:a5:e2:a1:e8:39:97:d8:68:21:e3:6a:8f:be:88:ec:45:
3e:58:3e:3a:73:0f:5e:56:f4:90:91:2d:13:52:9b:fb:41:21:
9c:01:26:a7:9a:7e:31:68:0d:75:30:37:29:67:72:60:af:3a:
dd:52:38:ec:ca:5b:e6:24:a8:4a:79:0e:96:46:84:5d:4c:64:
e7:14:9b:05:78:27:bb:32:39:89:83:e7:f5:5f:6a:34:ae:a8:
80:90:c4:d8:fe:72:a0:c3:cc:56:67:aa:61:1d:0d:81:ef:c5:
67:1b:87:d2:bc:e7:7c:e9:2f:b5:94:d6:d2:c5:f7:62:59:15:
f5:e8:cf:57:c3:ec:7e:65:dc:c9:a8:32:d6:db:45:2a:28:f5:
81:ae:d5:7a:87:38:62:1c:65:d4:b0:5d:9b:bf:99:3d:69:0d:
62:e8:75:fb:49:16:d4:bb:e8:85:e3:95:fd:3f:24:f7:58:e1:
a2:96:9e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:55 2024 by rpki-client on console-ams.rpki-client.org