Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/DojTRF1jNffz5e8BQmjCHWGex_U.roa
File: DojTRF1jNffz5e8BQmjCHWGex_U.roa (raw, json)
Hash identifier: xdlFg2qQi/ytK0jKpJrMAMYmpttsYy77jbjbzjt+e8Q=
Subject key identifier: 0E:88:D3:44:5D:63:35:F7:F3:E5:EF:01:42:68:C2:1D:61:9E:C7:F5
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0182DC21A864817821DD31A12207C0194720
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/DojTRF1jNffz5e8BQmjCHWGex_U.roa
Signing time: Fri 26 Aug 2022 21:49:29 +0000
ROA not before: Fri 26 Aug 2022 21:49:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 94.131.97.0/24 maxlen: 24
94.131.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dc:21:a8:64:81:78:21:dd:31:a1:22:07:c0:19:47:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Aug 26 21:49:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e88d3445d6335f7f3e5ef014268c21d619ec7f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:df:01:93:b5:3c:b7:ee:8d:53:d6:0e:e0:
64:b8:5c:e3:80:fe:11:5c:42:33:9d:81:f4:e5:75:
2f:3f:25:7b:8a:43:55:f0:f5:56:af:09:15:78:d6:
a9:fb:76:81:b1:85:5d:3f:b7:75:a8:87:51:22:2e:
0d:eb:ab:71:d9:c0:24:e9:0a:29:6d:b0:13:a4:4b:
df:c0:f9:2a:5f:91:96:32:04:5f:d1:37:0c:5e:1a:
8f:25:40:5e:14:54:13:10:79:0c:d6:d6:a7:59:ed:
75:29:cf:8a:0f:cc:a7:a5:b8:bd:7a:ae:ec:79:c2:
38:c3:b5:df:18:4a:13:e8:ea:1a:d3:0b:22:a2:61:
55:32:17:c9:46:89:ed:46:c5:ca:d5:63:df:14:98:
74:4a:5b:26:e4:7e:88:a1:73:27:63:92:82:04:12:
96:32:0a:a0:0c:90:90:29:6a:09:ed:72:18:f9:b5:
92:ae:77:d7:3e:32:38:de:99:d9:38:9b:cc:96:14:
77:bc:74:30:6c:81:b1:4c:19:d1:91:63:58:60:0e:
6c:0e:7d:b7:a7:89:58:4c:c0:14:e4:7d:8b:45:e4:
18:59:8a:77:80:7e:65:1f:46:cc:9d:44:d0:04:54:
b2:21:62:d8:57:f9:ca:2e:a8:56:06:2d:6e:f2:52:
30:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:88:D3:44:5D:63:35:F7:F3:E5:EF:01:42:68:C2:1D:61:9E:C7:F5
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/DojTRF1jNffz5e8BQmjCHWGex_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.96.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:0d:43:52:4f:ca:f2:c4:ef:37:fb:fb:6a:a7:70:eb:0a:f9:
e6:74:bf:ff:7b:2d:48:0f:a4:cc:c3:a7:b2:96:f1:f5:73:2b:
8b:bd:56:51:ce:75:df:c7:5e:7a:ab:ec:c8:d5:e3:14:64:2b:
c4:53:ae:86:b0:1b:c0:59:a9:7b:b4:b0:cf:cc:c3:6c:92:d9:
62:ef:41:a0:c5:03:af:5f:2d:07:2a:7d:69:d6:7d:96:a6:dc:
34:76:5e:27:d8:04:ac:70:44:26:73:b2:32:07:2d:3f:eb:61:
d1:54:48:58:db:eb:aa:13:4e:1d:02:fb:ed:c0:dd:0a:33:d1:
90:d0:91:f8:18:3b:02:8b:8c:ce:c6:f2:44:c2:15:d5:78:0a:
ff:c3:d1:7d:2f:a2:e1:16:31:eb:cf:ba:1d:5a:ea:aa:5f:6b:
6a:e5:88:54:e7:9c:56:fb:94:9c:dc:35:a4:f6:c6:09:4c:6a:
fc:a6:4d:f8:64:d0:9a:32:5a:8b:99:c6:51:9d:a0:d2:fb:43:
63:6b:a0:ff:3e:0a:3b:37:32:57:fa:ee:d1:5f:a9:ed:bb:02:
d9:15:d9:b8:c4:a0:e9:a5:bb:8e:24:4c:68:d3:9f:71:87:d6:
d9:92:9d:5e:d5:ec:90:75:05:10:8e:aa:84:64:69:46:cf:ea:
1d:69:48:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org