Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/jEQdGBIJ7juSvksSerKQqptVSJE.roa
File: jEQdGBIJ7juSvksSerKQqptVSJE.roa (raw, json)
Hash identifier: BFQoW7/CanKr/YE33rsWzp8LylDAXS4hKi5mbpuwtPE=
Subject key identifier: 8C:44:1D:18:12:09:EE:3B:92:BE:4B:12:7A:B2:90:AA:9B:55:48:91
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0DBA71AA
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/jEQdGBIJ7juSvksSerKQqptVSJE.roa
Signing time: Thu 23 Jun 2022 09:04:24 +0000
ROA not before: Thu 23 Jun 2022 09:04:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 194.163.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 230322602 (0xdba71aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jun 23 09:04:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c441d181209ee3b92be4b127ab290aa9b554891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:85:67:e6:09:8e:83:67:a7:d7:b5:71:41:5e:
b6:53:a1:77:e5:0b:1e:5a:bf:7c:6e:06:0a:08:4c:
16:2e:39:66:71:aa:7f:93:1a:43:c7:99:7f:ea:24:
39:1e:c4:e0:40:07:09:44:6a:88:8d:a3:27:21:d6:
f4:b0:01:25:5a:07:40:b4:74:f8:91:75:ae:2a:6f:
da:b9:c1:ed:85:14:ae:02:42:19:95:a1:77:0a:d4:
e0:9c:38:b2:a1:92:45:e2:de:c0:db:c9:d3:99:7b:
a9:bb:e7:6a:a2:72:03:85:a9:d9:0e:e5:0e:19:5b:
5a:93:9b:9a:38:45:91:b4:c4:e0:6e:fd:c0:e9:0c:
b5:d7:ee:7e:3c:5a:cb:53:ad:01:7e:1f:1b:53:77:
f9:d4:8b:f8:92:18:89:6d:3c:7c:18:33:26:cf:b2:
1f:81:d5:e2:73:00:38:5d:bc:f1:a5:99:81:a9:47:
10:b8:10:48:5a:9c:27:e1:69:f1:5d:bd:5b:07:4a:
82:17:84:01:a4:bc:26:1e:8d:db:05:5d:be:b0:81:
a2:96:81:36:90:3d:d4:3b:dc:2f:55:60:49:5e:51:
75:a8:51:2a:a0:b9:43:c3:19:58:3d:22:a8:eb:16:
47:fc:71:38:64:e2:93:b2:40:36:44:c4:14:af:ab:
81:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:44:1D:18:12:09:EE:3B:92:BE:4B:12:7A:B2:90:AA:9B:55:48:91
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/jEQdGBIJ7juSvksSerKQqptVSJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.94.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c2:45:d6:de:ec:bd:9c:d9:13:9b:b4:a1:96:1f:94:5d:64:
0d:c9:bd:38:05:bd:1d:e5:c9:e5:66:05:60:d7:d4:48:76:ff:
85:5e:b5:65:29:bd:81:03:ec:1e:31:b5:f3:32:b5:62:5b:11:
38:8e:79:d7:c2:2c:84:2d:3b:97:34:02:fd:a7:10:5f:48:1a:
e2:ea:7c:c6:7e:6a:aa:37:57:dd:c6:70:c7:5b:58:8f:a8:69:
f7:3c:5c:67:9c:6b:5d:27:e8:23:f7:4c:60:28:92:30:50:0d:
50:6f:48:76:62:ec:07:79:cf:90:c2:17:f4:b5:12:e8:64:47:
c2:ac:38:df:82:0a:2f:2d:cd:49:e2:6d:e1:06:90:31:cc:f9:
18:7e:03:c7:61:2e:83:de:32:6a:e5:0c:f6:36:c8:69:37:06:
a9:8b:a6:06:bb:ea:ba:5f:4e:34:90:32:39:79:a6:b4:7a:2a:
a0:98:89:ce:8a:30:e5:81:18:19:6f:0f:a6:4a:23:04:3f:c9:
0d:7a:fe:d7:e9:63:3c:30:f7:b2:a4:84:05:df:5f:9d:88:6f:
c4:b0:4e:d7:a8:53:ee:d5:b2:cc:f4:56:1d:de:d0:db:31:f1:
6d:cb:aa:32:4f:36:89:02:c8:49:bd:b6:20:8f:db:1d:47:f7:
2f:e1:de:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:30 2023 by rpki-client on console-ams.rpki-client.org