Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/nup5NsGhUj4B5ZDfOJTQ9ArCsCw.roa
File: nup5NsGhUj4B5ZDfOJTQ9ArCsCw.roa (raw, json)
Hash identifier: 7Dcuq74imM+YFo+v+A8byby6qL38AubqBef5CR9iq8U=
Subject key identifier: 9E:EA:79:36:C1:A1:52:3E:01:E5:90:DF:38:94:D0:F4:0A:C2:B0:2C
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 0182DC21A8D98B78546F39572D66D9B90655
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/nup5NsGhUj4B5ZDfOJTQ9ArCsCw.roa
Signing time: Fri 26 Aug 2022 21:49:29 +0000
ROA not before: Fri 26 Aug 2022 21:49:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 94.131.102.0/24 maxlen: 24
94.131.105.0/24 maxlen: 24
94.131.106.0/24 maxlen: 24
94.131.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:dc:21:a8:d9:8b:78:54:6f:39:57:2d:66:d9:b9:06:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Aug 26 21:49:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9eea7936c1a1523e01e590df3894d0f40ac2b02c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c8:aa:86:07:6a:8b:11:11:50:31:6e:dd:49:
cc:73:13:94:2b:6b:df:59:89:89:75:ee:bb:52:bf:
40:f4:22:ec:a8:a1:0b:a1:2c:c7:7d:ea:85:86:af:
ef:f4:de:80:ec:b3:e0:93:3a:e2:fa:69:cd:42:df:
37:61:a9:12:e4:b2:69:42:60:49:ef:ae:69:91:cb:
ea:a4:d9:b1:6b:3b:07:2b:ac:d3:b8:be:03:14:b7:
49:64:32:0a:8c:6b:eb:0d:e2:dc:41:8a:ae:c4:1c:
07:d5:ea:e6:4c:f0:60:03:45:bc:f3:73:66:0e:9f:
62:9f:f6:e2:10:28:ff:6b:6d:e4:9c:20:82:fc:2f:
e5:3d:59:cd:db:62:09:40:2b:ef:c4:63:9b:b9:c3:
01:fb:26:48:1a:0f:4f:30:aa:20:03:d9:85:70:ea:
82:12:57:06:c4:16:bd:1a:15:b5:7c:ae:23:20:9f:
6d:15:cb:15:77:98:95:be:6b:0b:b0:f7:74:45:06:
bd:25:f9:91:56:eb:8e:74:07:30:4d:f0:6e:fe:b6:
f8:55:71:08:cc:1e:85:6f:96:35:06:4c:9a:4b:13:
6e:5c:1c:71:d1:48:15:93:8e:35:48:89:5c:12:fd:
3f:7f:8e:36:4c:06:85:54:e9:c2:41:1b:54:b9:76:
27:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:EA:79:36:C1:A1:52:3E:01:E5:90:DF:38:94:D0:F4:0A:C2:B0:2C
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/nup5NsGhUj4B5ZDfOJTQ9ArCsCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.131.102.0/24
94.131.105.0-94.131.107.255
Signature Algorithm: sha256WithRSAEncryption
0c:7f:a6:0c:13:f9:8e:75:64:f3:83:ba:3d:0c:f9:0f:af:a0:
bd:54:77:c4:df:30:a6:9e:4c:63:9d:1b:b0:42:2d:4c:e7:32:
20:ce:df:ea:98:a8:9e:56:13:e6:32:f8:94:e4:60:6c:f0:b4:
7b:cd:68:47:ff:46:7b:4a:10:88:db:7a:d2:de:07:84:6c:18:
57:7c:ca:0d:c8:26:61:35:27:92:03:fc:90:bd:35:97:47:c4:
af:8d:a4:b7:66:42:b4:e5:f5:13:b2:42:2d:3e:42:57:77:18:
1b:de:18:09:8c:aa:8f:0e:c0:c6:87:df:42:8c:90:91:f1:f2:
b4:eb:c2:aa:4d:81:a0:28:98:11:dd:1c:ad:b1:93:48:27:d9:
33:84:39:bc:c1:d0:33:92:33:1c:44:3c:33:e7:e7:da:e2:d6:
d9:d1:bf:8d:87:88:51:73:5a:13:ee:a2:8f:68:02:b4:ac:00:
2b:c7:90:87:5c:2d:aa:11:23:1a:5e:ed:7e:70:55:88:9e:51:
b6:b4:ff:fd:bc:0f:ce:bd:46:e1:a9:36:0c:2e:74:1d:29:d6:
60:8a:6d:5d:8a:48:ff:4a:8d:38:4a:33:40:db:ca:48:40:fe:
ac:a2:c4:20:12:08:c3:ca:39:eb:ee:a2:97:99:33:10:65:8a:
90:7a:d8:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:43 2025 by rpki-client