Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/NIJmxwSEEk3KP5H3QoemHpmGIiY.roa
File: NIJmxwSEEk3KP5H3QoemHpmGIiY.roa (raw, json)
Hash identifier: 06y/nIM0ReDBHU18dnmeqQwV7zpV1ZWuR3JwCX7f0JQ=
Subject key identifier: 34:82:66:C7:04:84:12:4D:CA:3F:91:F7:42:87:A6:1E:99:86:22:26
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 06EC42EC
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/NIJmxwSEEk3KP5H3QoemHpmGIiY.roa
Signing time: Tue 31 May 2022 11:57:13 +0000
ROA not before: Tue 31 May 2022 11:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 94.154.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116146924 (0x6ec42ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: May 31 11:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=348266c70484124dca3f91f74287a61e99862226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1c:78:45:2f:4e:f2:4d:41:6b:28:8f:92:4d:
43:8f:b4:65:45:d7:7c:21:e4:ef:20:35:f2:93:4c:
70:07:e5:d6:1c:98:44:ec:39:75:f1:41:29:1c:de:
f2:e7:c7:bc:d9:62:85:06:f1:2b:60:f2:33:bf:96:
d2:2e:f4:26:7d:f5:e4:af:58:5e:0d:0f:29:c7:1d:
78:e0:dd:20:4e:07:10:fd:c1:5a:eb:5c:69:48:d9:
4b:3f:68:ba:9c:f8:64:62:7e:85:16:32:79:08:4d:
66:67:dd:5c:43:10:83:37:79:ad:24:dd:02:5c:64:
e2:90:4c:d9:39:c7:76:cd:90:63:6f:69:96:16:58:
7b:e7:f8:b3:fa:be:8f:d1:38:a7:3b:8e:27:e5:4b:
be:be:05:4c:bb:f7:93:2f:de:0d:79:01:ae:fb:cb:
26:24:b8:4d:7c:ad:bc:61:cc:a8:9f:4a:43:1f:e2:
85:38:51:69:76:82:e4:e4:54:cb:f5:5d:da:c3:61:
4f:b8:61:e3:f5:62:21:7c:04:f8:89:ef:9f:77:ae:
48:df:24:7c:1f:c4:ad:59:02:ff:f6:75:b8:d9:f4:
65:42:18:e7:2b:5b:a1:dd:e0:9f:9b:54:a5:03:a2:
73:b9:09:16:ad:8b:e1:a5:cd:13:95:ae:25:00:e9:
12:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:82:66:C7:04:84:12:4D:CA:3F:91:F7:42:87:A6:1E:99:86:22:26
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/NIJmxwSEEk3KP5H3QoemHpmGIiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.37.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:2b:2a:7c:31:5c:4a:03:db:ee:2d:94:ec:dc:e3:b0:f8:70:
08:97:4f:5d:63:aa:9f:2f:79:d6:d1:64:5a:6f:5b:1b:fc:03:
28:3f:60:9e:f2:80:39:2b:df:af:20:0a:ba:fa:16:31:87:6a:
9a:8f:38:fe:9f:58:47:ac:e8:a8:d9:36:a3:4a:9b:8c:63:cc:
0d:b3:62:3e:87:78:4a:dc:8d:b8:c5:42:b0:5b:78:61:ca:e5:
04:0b:9d:a5:6e:5a:00:f7:87:a7:af:82:de:54:58:90:32:05:
45:32:4d:c4:46:a4:f6:35:33:d4:2b:4b:33:af:25:f1:7a:85:
9f:d8:8e:42:b0:16:e8:4f:d1:09:c5:6a:da:2d:68:6b:ed:7e:
91:bb:65:00:6a:8e:30:74:37:ef:33:77:a8:c5:13:b9:7a:36:
a5:91:4f:35:33:bb:eb:b0:a7:2b:22:74:97:8c:e5:3d:98:97:
00:26:00:90:03:37:c5:6a:b8:27:53:c2:85:67:76:ed:de:1c:
b6:b3:11:df:89:c1:b8:d0:2f:18:1b:f2:9f:07:3a:ac:04:b2:
e4:70:d4:f3:15:fa:b5:c8:e4:e8:a0:25:86:5a:a7:f7:11:e1:
62:9d:8a:04:70:e3:bc:dd:93:c1:f8:dd:84:93:84:75:20:7b:
a7:c5:7e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:52 2023 by rpki-client on console-ams.rpki-client.org