Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3fa93f-a34f-41cf-8875-d4e882083e4f/1/U6G7SjK3EYPa5wlM_xFdbcrM3hw.roa
File: U6G7SjK3EYPa5wlM_xFdbcrM3hw.roa (raw, json)
Hash identifier: 9gfTW8DXURErm2N40eeoloStZdz7cJXWuMYhK1RiPno=
Subject key identifier: 53:A1:BB:4A:32:B7:11:83:DA:E7:09:4C:FF:11:5D:6D:CA:CC:DE:1C
Certificate issuer: /CN=d5b6a5ca37ead31fd2a350b0b412d77d95320928
Certificate serial: 33D54F
Authority key identifier: D5:B6:A5:CA:37:EA:D3:1F:D2:A3:50:B0:B4:12:D7:7D:95:32:09:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1balyjfq0x_So1CwtBLXfZUyCSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/3fa93f-a34f-41cf-8875-d4e882083e4f/1/U6G7SjK3EYPa5wlM_xFdbcrM3hw.roa
Signing time: Sat 01 Jan 2022 01:52:11 +0000
ROA not before: Sat 01 Jan 2022 01:52:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5405
IP address blocks: 94.103.180.0/24 maxlen: 24
2a11:4140::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3396943 (0x33d54f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5b6a5ca37ead31fd2a350b0b412d77d95320928
Validity
Not Before: Jan 1 01:52:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53a1bb4a32b71183dae7094cff115d6dcaccde1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:91:49:a1:a9:89:5c:06:10:6f:0f:2c:56:23:
15:9f:00:7f:e6:f6:a5:fb:4f:a6:91:2d:56:ca:e3:
94:07:2e:52:19:f5:80:e6:d2:1a:55:46:83:c9:f4:
5d:29:9f:c3:bf:7f:67:07:ae:c1:89:6a:ec:3a:27:
e6:07:8f:15:e4:49:4c:81:48:45:40:78:70:96:8c:
8f:55:78:75:94:b5:4a:21:4b:6a:18:c9:a8:9a:bf:
2f:ff:89:72:e3:2e:cb:19:19:00:0d:c5:99:e2:5a:
16:c6:3b:0a:6a:43:b1:8a:48:87:43:54:00:59:5f:
17:39:ba:f3:02:e9:c7:5f:4e:5a:31:e2:44:63:28:
9d:12:8a:02:df:14:cb:8a:27:6c:3f:2d:7c:7a:b7:
7f:8b:3f:3f:4c:0c:38:0d:7b:55:c5:57:29:3b:25:
a7:16:28:16:94:f3:47:97:60:81:3c:13:3c:eb:48:
72:ef:6f:c9:8c:d8:6c:82:27:2a:3c:43:a9:2e:72:
a1:3b:0b:ee:e4:29:df:0f:27:4a:88:31:48:c6:92:
78:41:96:7b:f3:59:8c:bf:2d:e6:c6:b0:0f:03:83:
d4:f5:0e:40:71:ab:bd:5d:73:98:c9:aa:b7:05:e1:
00:b0:1b:96:b1:e6:76:86:5b:52:d5:a7:b0:a1:d9:
69:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:A1:BB:4A:32:B7:11:83:DA:E7:09:4C:FF:11:5D:6D:CA:CC:DE:1C
X509v3 Authority Key Identifier:
keyid:D5:B6:A5:CA:37:EA:D3:1F:D2:A3:50:B0:B4:12:D7:7D:95:32:09:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1balyjfq0x_So1CwtBLXfZUyCSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3fa93f-a34f-41cf-8875-d4e882083e4f/1/U6G7SjK3EYPa5wlM_xFdbcrM3hw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3fa93f-a34f-41cf-8875-d4e882083e4f/1/1balyjfq0x_So1CwtBLXfZUyCSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.180.0/24
IPv6:
2a11:4140::/29
Signature Algorithm: sha256WithRSAEncryption
5a:e4:9b:99:1a:76:31:a8:54:43:f1:dd:9c:a4:44:71:3e:a5:
53:3e:5e:3c:7f:8c:dc:73:e6:fc:08:6d:b5:ab:9e:09:2b:9e:
e8:c7:8e:30:36:91:33:8e:82:b8:3b:91:79:43:4e:0b:a3:4f:
f7:7e:cd:26:80:ca:57:a0:3a:7c:92:69:28:1e:fb:45:b5:95:
5d:50:01:a3:e5:50:71:02:3f:53:22:3a:38:24:1d:03:0a:e8:
37:64:d0:e6:30:0f:68:c8:62:1c:65:c8:35:ea:70:d6:23:cb:
a5:5e:81:6d:f2:c8:2a:5b:03:6f:ee:65:5b:47:d1:e3:57:33:
6d:c2:80:73:b2:6f:b7:4f:30:17:05:ad:3f:49:e7:0f:83:5c:
a9:ba:f9:d7:e2:4d:e1:d4:81:a2:f8:85:72:b1:2a:1f:67:38:
a3:d9:45:51:a0:9e:a1:c6:3d:12:eb:49:f0:7f:19:70:3c:74:
c8:0c:35:ac:d9:2d:3b:f2:95:bd:61:f6:56:3d:07:ef:b4:3d:
23:bf:a6:1e:cd:fa:2d:e8:6c:b2:63:d7:49:62:35:81:41:d6:
fa:37:16:97:f2:91:27:fc:c7:94:df:75:c8:10:c0:26:f1:01:
16:9b:ad:ad:37:98:9e:28:8b:41:e5:09:8b:7d:be:97:ee:22:
c7:89:f8:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:15 2023 by rpki-client on console-fra.rpki-client.org