Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/lAT6qRLjEDyiQ9kDv3uYnh_NvdU.roa
File: lAT6qRLjEDyiQ9kDv3uYnh_NvdU.roa (raw, json)
Hash identifier: OTsLFh6W8oiFN+R1pEcl5rovq38skePEbxgV/8Uifng=
Subject key identifier: 94:04:FA:A9:12:E3:10:3C:A2:43:D9:03:BF:7B:98:9E:1F:CD:BD:D5
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0182DC21AA09616664148884C47E226E8648
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/lAT6qRLjEDyiQ9kDv3uYnh_NvdU.roa
Signing time: Fri 26 Aug 2022 21:49:29 +0000
ROA not before: Fri 26 Aug 2022 21:49:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51765
IP address blocks: 94.131.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dc:21:aa:09:61:66:64:14:88:84:c4:7e:22:6e:86:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Aug 26 21:49:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9404faa912e3103ca243d903bf7b989e1fcdbdd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:51:92:b8:2b:26:70:da:6a:11:88:66:f9:c2:
8b:0c:88:b4:29:0e:a9:dc:68:b1:b6:90:ae:74:36:
9e:af:73:2c:f9:e6:ec:3f:6e:68:c7:c1:0f:88:53:
de:45:6c:e8:1a:cb:5a:c0:11:43:86:6a:2e:6a:b8:
42:82:26:c6:23:42:7c:77:82:58:8c:cf:fe:10:2b:
0e:4d:26:52:2e:14:17:8e:32:5b:37:6a:5e:e2:f1:
c3:7b:12:31:11:57:71:fc:de:2f:43:c0:00:09:07:
eb:a8:b2:05:99:5c:55:c3:56:dc:ec:d4:78:11:64:
0e:32:13:5b:bb:06:64:70:7c:2f:30:f5:66:42:ad:
c4:11:95:16:f1:aa:10:da:da:49:c2:cb:dc:74:b6:
b6:ab:66:7d:d4:16:e2:d5:b6:c6:af:25:3c:d3:bb:
46:fb:b9:ba:0d:66:f0:00:bf:8a:95:19:0b:50:f9:
8c:12:18:3f:2b:74:4e:28:55:7a:9a:d4:79:08:26:
95:a9:bd:1b:67:b3:9e:21:dd:42:ef:14:4c:60:02:
a7:19:21:ac:16:81:e1:28:ab:73:b3:f6:5d:cf:c5:
4b:b1:f2:8e:df:ae:aa:f7:d9:4b:ef:a6:3a:33:be:
4c:84:00:e7:47:0c:7d:da:72:4a:4f:63:50:79:4b:
f2:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:04:FA:A9:12:E3:10:3C:A2:43:D9:03:BF:7B:98:9E:1F:CD:BD:D5
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/lAT6qRLjEDyiQ9kDv3uYnh_NvdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.100.0/24
Signature Algorithm: sha256WithRSAEncryption
82:47:c4:be:4c:cd:07:f4:c7:af:68:77:6a:6e:49:0f:2d:0d:
80:ec:00:e7:13:18:50:d0:9c:1f:8c:5c:73:1c:2c:e1:30:24:
6f:b1:29:f9:5a:92:e6:45:f8:07:54:2d:f5:a1:36:f7:6c:84:
a2:81:3f:1b:56:28:ec:f5:dc:2b:44:7a:6b:65:35:60:2b:ef:
ac:b3:49:67:f3:21:c9:92:2d:e3:91:11:18:c2:e9:30:96:81:
e3:f3:fd:40:52:5a:b5:8d:b6:14:ee:ca:c0:00:2e:2e:4b:4b:
01:f5:3b:42:5c:50:52:d9:2a:ab:c3:cc:fb:a3:63:c1:20:0e:
0b:34:88:8f:65:6e:a5:ed:af:20:c9:14:ac:6e:94:f8:f0:8a:
42:40:dd:f4:09:2f:14:4c:36:24:20:3f:1f:ff:f4:66:0a:bb:
73:97:07:d4:78:16:b8:33:24:92:75:b3:80:94:6f:68:1e:02:
0e:95:46:a6:90:56:b4:52:71:d2:54:29:b3:15:0c:e5:82:78:
2b:7d:08:d7:ed:52:51:02:d7:6a:b8:61:95:b3:f7:22:80:a7:
32:ff:73:03:27:2a:df:eb:5e:a7:c1:b6:00:4f:e7:8d:14:68:
9a:50:65:97:16:cb:1c:1b:c7:c5:32:a2:91:6e:a0:61:0d:3a:
02:30:7b:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:49 2024 by rpki-client on console-ams.rpki-client.org