Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/vEPVfk8tmLt9HMU7fyFg4A0oIkA.roa
File: vEPVfk8tmLt9HMU7fyFg4A0oIkA.roa (raw, json)
Hash identifier: 9uz8tsSBCVhTenHVB9wbVTyq/dpPS3VGA/SdM9UyFjI=
Subject key identifier: BC:43:D5:7E:4F:2D:98:BB:7D:1C:C5:3B:7F:21:60:E0:0D:28:22:40
Certificate issuer: /CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Certificate serial: 05EC06E1
Authority key identifier: DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/vEPVfk8tmLt9HMU7fyFg4A0oIkA.roa
Signing time: Tue 01 Mar 2022 06:46:45 +0000
ROA not before: Tue 01 Mar 2022 06:46:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.43.0/24 maxlen: 24
94.154.44.0/24 maxlen: 24
94.154.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99354337 (0x5ec06e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc11daefaff81c7e501278d87d9bc2b204d71155
Validity
Not Before: Mar 1 06:46:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc43d57e4f2d98bb7d1cc53b7f2160e00d282240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9c:3b:90:0a:38:e3:5a:a7:3e:3f:ac:88:1e:
0b:e2:ff:83:53:1e:6a:b8:94:cd:5c:fc:99:3f:f4:
6e:a8:6d:3a:35:a7:2b:cc:06:26:da:e0:aa:0a:68:
1b:82:58:b4:80:4c:96:ac:9e:f0:27:61:93:5a:1d:
94:cc:52:0d:d3:5d:eb:42:22:3f:d9:7d:2e:86:fb:
42:0e:13:28:2d:05:f9:6e:6d:d7:0f:52:49:06:9c:
aa:65:c8:7f:e4:e8:05:19:77:42:2b:65:94:d1:5d:
c4:02:2c:54:6f:15:4c:0f:10:32:35:0e:0d:41:94:
ef:a8:2d:d1:e1:c6:b4:75:8a:ca:0c:7a:28:27:6f:
ef:8b:45:a7:48:81:d6:cf:0a:94:75:d8:85:70:94:
39:61:91:ea:54:d9:f5:a9:ef:86:96:7f:1b:58:06:
f7:0c:9e:7f:b0:7e:8d:d2:3a:c1:22:3f:f9:1f:f5:
13:37:10:1f:00:18:a6:44:06:11:95:ae:31:e9:cf:
c3:d6:1b:2f:68:d9:19:bc:8f:2a:eb:22:fc:b8:f3:
62:fc:61:a0:27:ce:62:50:d0:8e:4d:85:3a:ed:ed:
fb:21:8b:53:11:be:ad:66:f6:e4:a6:41:96:b8:f3:
22:36:5b:98:48:13:f2:53:36:8a:49:0c:db:5b:54:
c4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:43:D5:7E:4F:2D:98:BB:7D:1C:C5:3B:7F:21:60:E0:0D:28:22:40
X509v3 Authority Key Identifier:
keyid:DC:11:DA:EF:AF:F8:1C:7E:50:12:78:D8:7D:9B:C2:B2:04:D7:11:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3BHa76_4HH5QEnjYfZvCsgTXEVU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/vEPVfk8tmLt9HMU7fyFg4A0oIkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/b22603-90ab-43ad-ab16-65249cbc573c/1/3BHa76_4HH5QEnjYfZvCsgTXEVU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.43.0-94.154.45.255
Signature Algorithm: sha256WithRSAEncryption
3a:9d:bc:03:55:06:3a:9a:26:c1:92:97:83:bc:d3:92:21:9f:
0a:70:8e:5b:81:7e:ce:13:ea:40:2c:b6:fc:5c:ad:b8:f2:42:
e0:12:7f:f9:01:50:17:a7:fc:b7:9c:ef:88:0c:d6:c6:0a:cc:
7a:28:90:12:b9:06:8b:16:21:56:2d:95:5b:7a:30:f2:07:3d:
69:2d:95:f0:47:10:da:59:6c:65:b3:ab:a5:50:e8:8a:ac:4b:
48:08:29:27:05:84:ac:95:e9:0e:7f:ff:9f:78:fe:b2:21:9a:
83:5f:68:b6:4d:7e:60:97:25:00:ab:32:be:bc:ce:f4:0b:9c:
a4:0e:03:b5:6c:49:e1:6e:59:5f:d8:f5:40:b0:ef:5b:87:17:
49:53:57:52:b3:01:51:88:3e:59:03:c6:59:19:20:70:1a:1f:
32:7b:6a:f2:d8:b3:62:e9:4b:3d:32:97:1e:1a:56:e7:d9:9f:
0a:a3:66:48:3c:4c:d4:1f:2d:75:23:fb:b7:3d:8b:6d:ec:f7:
48:31:dd:59:85:93:b1:76:83:d3:9a:1a:23:f8:ff:4c:ed:13:
26:19:c2:ce:93:93:b5:cb:19:59:1b:8f:d0:a1:c3:bf:19:62:
53:21:d7:7d:bc:ff:40:fd:94:ef:e1:2c:4a:1d:28:7f:c9:a8:
72:35:cf:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:10 2023 by rpki-client on console-fra.rpki-client.org