Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4Qfkd6YGWVduS7Ww6RAzhIada7I.roa
File: 4Qfkd6YGWVduS7Ww6RAzhIada7I.roa (raw, json)
Hash identifier: /A+jc0teqsvDwpXBTrpb+wnwzat/0BD/nuDjJO0ZIw4=
Subject key identifier: E1:07:E4:77:A6:06:59:57:6E:4B:B5:B0:E9:10:33:84:86:9D:6B:B2
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0182DC21A9A0A60F9C1C7D49CDC3813C2642
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4Qfkd6YGWVduS7Ww6RAzhIada7I.roa
Signing time: Fri 26 Aug 2022 21:49:29 +0000
ROA not before: Fri 26 Aug 2022 21:49:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51395
IP address blocks: 94.131.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dc:21:a9:a0:a6:0f:9c:1c:7d:49:cd:c3:81:3c:26:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Aug 26 21:49:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e107e477a60659576e4bb5b0e9103384869d6bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:d3:a2:26:99:08:84:0e:df:8c:74:5f:a6:18:
fb:51:e4:a3:00:c7:a8:5d:51:36:d9:40:b7:c7:07:
ed:c0:5c:22:73:5a:a7:16:d0:c3:40:f8:ff:e0:18:
c1:c4:f0:85:d6:4f:86:70:f0:d6:bc:ef:76:82:fe:
ef:d2:87:8b:1f:ca:9b:5e:34:13:d0:85:51:66:5e:
21:6c:d8:f1:32:20:a2:c1:47:bd:83:8e:1a:50:6b:
91:18:4c:a8:ef:09:6e:32:8a:4e:b5:79:45:56:a4:
9f:06:e7:66:ee:3e:9a:ce:20:e0:62:4b:2b:1c:17:
ea:45:93:51:4a:fd:12:6c:8f:df:db:bd:3b:ab:12:
68:49:8c:cf:eb:6a:da:c5:e5:c6:ca:42:76:91:8b:
14:01:a1:c6:d0:65:ad:56:e6:2b:30:c0:6d:33:79:
c8:49:dc:08:ec:88:34:37:a1:69:a1:27:a4:05:81:
98:fe:01:c8:8c:8d:66:db:f7:2d:d5:19:4b:e4:88:
dc:6d:eb:0d:11:03:9f:5b:c6:48:3d:25:f1:48:d5:
40:31:24:ae:dd:84:82:2b:25:66:22:09:10:10:22:
f0:7c:64:e2:b2:37:65:8b:06:5b:60:77:a3:04:d6:
f5:ac:f9:aa:d4:4d:f3:27:34:4e:53:d0:ea:b6:65:
3c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:07:E4:77:A6:06:59:57:6E:4B:B5:B0:E9:10:33:84:86:9D:6B:B2
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/4Qfkd6YGWVduS7Ww6RAzhIada7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.99.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:4f:0b:fa:2d:78:66:f8:b9:a2:62:e7:d7:12:a3:4b:ff:e6:
a7:9a:6b:4a:2f:78:b3:df:5a:a9:31:8d:ad:7d:d3:33:18:3d:
cf:4d:20:ac:9e:88:3a:4f:ab:3f:49:74:ef:be:16:39:7c:20:
80:3d:f8:7d:2f:06:7b:cd:c6:39:4c:ea:3f:e8:76:e7:ed:18:
ec:34:2a:52:85:e4:6a:ae:63:b9:bf:d1:43:16:2b:e2:ec:56:
12:3b:fc:06:05:5e:a4:9d:ba:19:34:6c:10:9c:96:f5:35:46:
d7:35:19:5f:f6:26:52:e3:89:9d:f5:85:83:a0:bf:e0:18:e1:
1c:8a:14:6d:de:e2:44:9c:84:0e:2e:65:07:86:0b:93:c4:60:
09:41:52:9d:b4:29:56:2b:0e:42:3c:d0:14:29:73:72:22:7b:
01:77:12:bb:24:c9:c5:b7:c5:6e:aa:67:54:1e:9b:34:25:2e:
f1:37:97:03:d8:ca:ad:22:90:63:f3:fd:3b:e0:e3:4f:7a:b4:
d3:a8:63:72:af:9e:93:22:a6:e9:23:e9:bd:cb:3d:7d:70:78:
d3:70:bb:2f:5c:b3:76:e8:21:ee:4a:ae:14:18:64:12:36:34:
32:2d:5b:ee:e0:a2:ad:ba:6e:de:48:ac:4d:88:46:0d:8b:12:
8e:2d:20:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:13:15 2025 by rpki-client