Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/CuxdbPt2YT9yi7WWgwf8dhit33s.roa
File: CuxdbPt2YT9yi7WWgwf8dhit33s.roa (raw, json)
Hash identifier: R1w6Q9CT2tHKTkctEJB+BxfJFVNmIq+D7pJQ5N3aBg0=
Subject key identifier: 0A:EC:5D:6C:FB:76:61:3F:72:8B:B5:96:83:07:FC:76:18:AD:DF:7B
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 02436DFF
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/CuxdbPt2YT9yi7WWgwf8dhit33s.roa
Signing time: Sat 01 Jan 2022 05:56:47 +0000
ROA not before: Sat 01 Jan 2022 05:56:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398712
IP address blocks: 94.131.64.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37973503 (0x2436dff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 1 05:56:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0aec5d6cfb76613f728bb5968307fc7618addf7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f8:04:b2:d3:00:78:7c:b9:43:70:a7:a3:6a:
ee:df:75:d5:2c:02:2c:ce:1b:4e:d5:88:65:84:0a:
c9:fb:26:1a:77:5c:af:49:5c:69:05:6f:b1:25:e2:
82:95:90:6e:5f:a1:fd:e8:82:20:06:77:b3:c4:92:
be:07:fd:e0:3e:9c:30:6e:66:24:a7:7f:30:9c:8e:
d8:fc:bd:bf:c1:bd:a4:a8:79:8e:ae:af:d2:be:b5:
ec:d1:3d:9d:07:31:93:c1:d5:01:52:4a:c9:4b:46:
08:e6:f6:09:28:12:bd:c6:23:a6:51:40:9b:59:a4:
7f:26:bd:c1:3b:ef:56:5d:69:73:23:af:f8:96:50:
3d:a6:8e:43:1e:fa:da:c5:33:c8:62:a8:96:85:ce:
6b:81:70:ea:1b:ce:d6:29:28:36:e3:46:9a:6e:e2:
95:05:1c:81:64:f5:f4:1f:a8:06:60:70:cf:75:e5:
0a:6d:3c:ce:e9:04:04:08:26:b5:9d:a7:64:aa:26:
0e:13:2b:61:47:fd:2a:30:d1:f9:f8:76:4c:49:79:
68:48:83:da:35:f5:9b:a2:6f:6c:45:a3:61:14:e7:
fc:10:16:ce:22:a8:a2:2c:20:35:65:c6:ed:46:18:
cd:08:bf:80:b9:b6:70:73:05:1c:ee:a5:f1:09:f7:
d2:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EC:5D:6C:FB:76:61:3F:72:8B:B5:96:83:07:FC:76:18:AD:DF:7B
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/CuxdbPt2YT9yi7WWgwf8dhit33s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.64.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:12:c1:33:b4:a6:3c:5f:2d:0d:f2:41:d2:44:0b:da:1c:d4:
27:62:94:65:34:25:cf:f1:8c:43:f0:70:16:2b:08:1e:62:a6:
76:cd:79:90:3a:eb:19:e4:f9:66:c3:51:c8:5f:d4:eb:0c:1a:
e3:01:7f:f5:69:92:0e:2f:b7:25:1a:f2:6a:41:82:65:85:19:
0b:f0:ec:cf:48:97:bb:2f:1b:99:eb:21:e1:ad:ba:d3:a8:88:
1a:05:6b:f7:1a:5a:2f:32:91:6a:03:9e:0a:56:00:18:87:d0:
0b:7b:c1:1a:fa:c5:84:bf:13:ff:5c:91:fa:5f:3f:16:db:be:
dd:db:bf:06:51:c4:8c:bd:5c:e4:ca:5d:7e:c2:f7:d9:94:11:
31:4f:cd:93:a2:f6:e9:98:3d:b5:45:05:f1:27:b5:3c:e1:a4:
17:92:d6:c4:25:79:b3:92:99:bc:d8:33:ef:ec:5a:b3:4b:22:
db:4a:30:eb:bb:3d:69:53:ac:16:de:5c:0d:82:20:ff:43:35:
ab:86:38:6e:49:96:b2:75:7e:a6:94:e9:de:b0:14:57:c6:5c:
84:4b:e5:60:d9:68:1c:46:63:a4:c9:fc:35:57:7f:03:d0:93:
a0:99:ac:75:e3:26:3b:51:0b:60:41:bd:86:25:3e:ca:4d:e1:
87:5b:e3:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org