Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/D1Yn-zZnprPiF49Gr0hKdmNP5Rs.roa
File: D1Yn-zZnprPiF49Gr0hKdmNP5Rs.roa (raw, json)
Hash identifier: sIcTv7Tvac6DBw4WYj+ppsXZv1UzNr9YTylbRz9ZaSs=
Subject key identifier: 0F:56:27:FB:36:67:A6:B3:E2:17:8F:46:AF:48:4A:76:63:4F:E5:1B
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 06FE645B
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/D1Yn-zZnprPiF49Gr0hKdmNP5Rs.roa
Signing time: Wed 20 Apr 2022 20:25:23 +0000
ROA not before: Wed 20 Apr 2022 20:25:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6762
IP address blocks: 94.137.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117335131 (0x6fe645b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Apr 20 20:25:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f5627fb3667a6b3e2178f46af484a76634fe51b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:6d:48:9c:10:c7:65:bd:4a:f3:4a:0b:7e:5e:
21:27:d9:72:41:19:08:b1:13:ff:8d:03:6e:80:8f:
e4:43:46:ee:95:8f:d3:5a:66:c0:8e:fa:8a:3e:45:
9f:91:15:19:a8:9b:fd:2e:3c:f0:bc:7b:94:33:89:
a1:2c:6e:c5:af:38:c3:0c:85:4d:fd:5f:fc:52:13:
3e:96:a7:be:a5:5e:c7:38:1e:91:cd:99:38:cc:6c:
be:1f:96:5d:76:3c:61:0e:ef:7c:90:82:ad:b9:37:
9d:f5:19:6d:23:2f:ca:13:5c:d0:19:db:9c:ff:54:
6c:41:62:21:2d:2f:ab:3d:f2:2b:24:12:d1:c2:40:
4e:8a:68:2c:83:b1:4c:f3:88:37:1e:3e:3d:da:b5:
d0:fd:74:86:13:55:bb:15:10:fe:f7:71:7d:e1:cc:
09:15:c3:b8:c3:54:96:5b:78:06:fc:60:e5:7d:6b:
6e:70:f8:d1:c4:7c:b2:56:0c:f4:a6:fe:d0:20:74:
48:d0:d8:23:99:68:8b:3c:61:ea:1c:bd:e8:68:57:
01:3c:66:03:a5:a9:65:6f:77:ba:fd:3f:1c:cb:a6:
db:88:30:88:f5:d4:07:8b:63:29:e2:3a:b5:d1:82:
a9:84:a2:1d:14:df:55:e2:96:c5:19:a8:db:a2:84:
cd:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:56:27:FB:36:67:A6:B3:E2:17:8F:46:AF:48:4A:76:63:4F:E5:1B
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/D1Yn-zZnprPiF49Gr0hKdmNP5Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.94.0/24
Signature Algorithm: sha256WithRSAEncryption
99:8f:c4:96:5e:ed:0f:ea:81:c6:2e:70:2f:93:96:8a:b1:fd:
f3:e0:0c:63:18:b1:0c:71:f9:83:8d:51:ce:79:17:bf:c2:8d:
5c:0e:e1:64:1a:53:98:6c:a3:1f:56:4c:12:be:3a:78:52:b7:
a1:e0:c5:be:2f:a0:b8:85:3c:2e:90:14:0b:64:ce:58:89:d1:
07:59:e2:98:21:ff:f7:4b:db:ff:9e:13:6f:a3:72:c5:ab:7f:
57:3b:4d:d5:52:8b:60:c1:d0:48:dc:75:6d:16:cb:7f:96:a4:
d0:c1:b8:23:b9:3d:f0:8c:80:75:e7:d7:4b:59:78:ea:0f:12:
38:9e:1a:66:1f:6a:f8:84:76:75:9c:09:9d:59:82:f0:90:48:
cc:34:e6:10:e7:b5:29:6f:82:61:6c:d4:12:ee:47:c8:a6:60:
c1:0d:b7:d2:2a:39:19:b6:98:63:f8:0d:66:40:22:e1:26:82:
b1:cf:d6:e6:dc:bd:4d:f2:1d:45:02:5b:a7:71:a7:9c:26:ab:
20:8f:4e:47:ee:4f:20:30:7b:8a:e5:64:97:6b:60:42:85:38:
f4:ed:02:ae:05:60:11:ea:4c:26:d4:8d:f9:f5:22:e2:1a:28:
65:86:92:6e:77:a9:c8:2e:e9:50:59:21:f3:84:59:f3:e5:53:
87:03:3d:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org