Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/CmJV4LNGLoShYouS9oYR6aUmib8.roa
File: CmJV4LNGLoShYouS9oYR6aUmib8.roa (raw, json)
Hash identifier: Zi991wzotCWj9mwMBv7RAD5oacLxsbmoOEXOCsss5DY=
Subject key identifier: 0A:62:55:E0:B3:46:2E:84:A1:62:8B:92:F6:86:11:E9:A5:26:89:BF
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 0705FC0F
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/CmJV4LNGLoShYouS9oYR6aUmib8.roa
Signing time: Fri 22 Apr 2022 14:54:41 +0000
ROA not before: Fri 22 Apr 2022 14:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.137.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117832719 (0x705fc0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Apr 22 14:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a6255e0b3462e84a1628b92f68611e9a52689bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5d:ff:06:35:66:b1:f5:db:d4:17:00:09:a2:
db:34:c9:65:f2:3d:a2:71:54:25:9c:a9:0d:c6:83:
b8:cf:13:d1:18:97:1e:bd:7b:7d:fa:0e:ac:6b:91:
a2:c7:ef:9c:25:a1:6b:0e:52:5b:bb:70:c0:11:c0:
3d:3c:8f:9c:d5:16:4b:d2:7d:e0:53:fa:ed:4a:dc:
e2:db:6a:ac:04:0b:d4:53:b7:12:2a:7a:b4:22:9b:
87:1d:29:5a:a5:a8:3e:0f:81:80:d3:e6:ab:9b:08:
40:03:69:d3:67:81:9b:6b:b5:43:06:9f:ad:0b:df:
7c:d0:6a:38:6a:e0:8f:4d:e8:b2:6a:77:30:3e:03:
26:f3:87:86:b5:88:47:b1:f7:52:5b:89:ff:43:ca:
99:f8:8d:c3:fd:5e:9f:4e:f9:b2:05:ae:84:df:65:
f8:dd:ad:7a:3a:fa:9e:2c:80:97:e7:41:78:da:c3:
40:82:44:c3:41:f0:a8:f4:27:a5:9a:a2:db:cd:b4:
b5:90:6d:4a:2a:56:71:12:36:ff:b5:f6:da:90:ea:
4d:9f:f4:52:3e:ec:48:4b:8e:1d:17:74:b3:78:24:
bd:b1:7d:2b:f5:1a:de:f2:93:a2:fe:10:65:ef:02:
31:0f:c1:56:3c:48:54:c8:31:33:f3:90:2f:36:ea:
47:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:62:55:E0:B3:46:2E:84:A1:62:8B:92:F6:86:11:E9:A5:26:89:BF
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/CmJV4LNGLoShYouS9oYR6aUmib8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.90.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:55:d7:3b:78:14:2a:7b:41:d6:16:f1:23:be:d6:48:7c:e3:
01:02:42:36:a7:9b:fa:71:44:93:67:61:32:fe:cc:76:7f:f5:
8b:2e:3a:74:aa:29:4e:72:ed:03:08:e7:b5:8c:ad:cc:9d:cd:
f3:a2:35:83:e2:0a:72:87:15:19:78:2d:10:82:ed:fc:db:f5:
ef:6d:59:61:13:c2:ec:d8:88:d1:e4:c0:dc:d4:e0:ba:f6:49:
58:eb:98:45:ee:f8:4d:53:82:ab:7d:3e:00:e9:7c:e6:93:af:
8b:e5:f8:24:7f:11:19:21:37:66:99:88:4c:28:26:e8:98:a4:
a4:c4:5a:66:59:1e:3c:ec:cd:04:c2:90:ac:38:93:f9:c2:03:
37:5e:4d:e9:83:ec:a8:2d:62:90:ab:20:3e:67:d3:0c:3e:d9:
b3:88:57:4d:06:e0:2f:b2:39:7e:94:c5:e8:88:b0:68:39:32:
d2:d6:93:f6:ab:21:09:f6:a9:e6:95:61:92:7f:cc:b4:cc:1c:
0f:54:19:62:3a:36:e6:45:e0:2c:6c:e2:e8:6e:55:c8:0c:db:
0c:50:14:ae:28:27:cc:d8:72:7a:c4:fc:1c:29:bb:ca:c7:9d:
2b:9c:42:72:1d:2f:88:62:95:3f:65:30:a5:32:e7:2f:39:f4:
e0:17:ed:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org