Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/23r10t6fWhP-gC3jpiRtQ4VDtxY.roa
File: 23r10t6fWhP-gC3jpiRtQ4VDtxY.roa (raw, json)
Hash identifier: SR+nPhIkL3o1TnOQGLPcc0jmjQEnB/P58pdbcV7DfwA=
Subject key identifier: DB:7A:F5:D2:DE:9F:5A:13:FE:80:2D:E3:A6:24:6D:43:85:43:B7:16
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 05DF3842
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/23r10t6fWhP-gC3jpiRtQ4VDtxY.roa
Signing time: Wed 05 Jan 2022 14:45:04 +0000
ROA not before: Wed 05 Jan 2022 14:45:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 94.137.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98515010 (0x5df3842)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 5 14:45:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db7af5d2de9f5a13fe802de3a6246d438543b716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b4:3b:b8:53:2f:b1:94:64:a6:57:e7:0b:5e:
41:1b:cd:aa:cc:30:5d:70:7f:a1:9e:44:52:5e:8d:
9c:2b:04:1f:93:26:49:71:af:be:64:40:5b:9b:ec:
d7:d9:2d:30:4a:d3:25:08:3c:07:e4:b9:d1:14:a2:
ca:e9:2b:19:75:71:ca:34:2e:8c:3c:75:d3:d3:ce:
61:ca:29:cd:e8:80:59:94:e5:7b:81:39:1d:07:aa:
ff:76:15:1b:7a:59:6b:b8:17:7c:f9:b0:0e:66:47:
77:d1:4f:e1:e7:1b:80:07:74:6e:df:78:fe:96:01:
c0:81:1d:16:7f:48:7c:65:06:8e:54:b6:9b:45:92:
47:4e:8b:75:b6:78:2c:f1:61:84:9e:15:ef:72:19:
74:1e:3b:f6:34:62:a8:17:33:46:78:13:de:65:85:
39:8d:cc:9e:ee:9c:f9:9a:af:54:b9:3a:55:d4:9b:
15:4c:ff:f9:62:aa:84:d7:3e:7f:94:98:e6:66:df:
9d:f8:a9:b2:bd:57:bb:ea:84:16:f2:22:d8:ea:5c:
fa:51:f6:43:c5:c1:84:94:b5:06:64:88:d6:d3:68:
fd:ec:3a:b8:cd:a3:56:f3:fa:e4:78:4f:54:b4:dd:
9f:7f:3e:cb:bc:d7:98:66:34:5a:d8:c1:17:1c:54:
21:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:7A:F5:D2:DE:9F:5A:13:FE:80:2D:E3:A6:24:6D:43:85:43:B7:16
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/23r10t6fWhP-gC3jpiRtQ4VDtxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.76.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:6d:bb:7c:92:aa:7d:b7:90:2d:f8:b9:72:b4:50:d1:9a:2a:
0f:aa:fb:65:11:51:3b:a6:06:2d:51:72:b8:45:e7:3a:88:04:
31:87:a8:9c:6d:30:2f:30:57:fb:4a:f8:c0:2b:f9:83:b5:9c:
d8:a0:24:bd:e6:1c:99:67:9a:15:2e:83:ac:e4:34:4f:9f:5a:
96:78:01:0b:d0:f4:64:4b:8e:58:f3:3d:f7:b8:81:12:53:01:
eb:0f:d0:e9:cc:98:82:3b:ca:bf:e0:e0:93:86:73:ff:b5:e4:
45:93:0e:d0:80:18:20:0b:d8:d9:44:16:29:8b:f6:eb:32:75:
3f:4e:49:16:f9:9b:43:e1:7e:84:23:f0:1a:0b:9b:d2:a9:f2:
04:6b:14:af:87:13:99:24:ab:99:26:b6:86:05:6c:d3:d2:89:
02:7b:47:72:39:e3:35:b9:69:97:7e:41:d5:e0:68:bf:67:a7:
10:6a:ad:61:02:06:3c:4a:ed:b9:97:39:d7:87:16:26:e7:92:
9e:94:79:d9:2b:46:28:74:94:75:05:97:38:f4:86:89:d9:ed:
fa:5a:e6:13:8d:65:d7:14:92:cf:1c:f4:ba:dc:f7:d6:8f:8f:
7a:c9:a7:db:d4:2b:86:cd:96:0f:e9:43:1e:d1:f0:e1:63:d0:
d3:f6:d5:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:27:19 2025 by rpki-client