Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/KudOHM4rjh88vfTaBivZePTpgGo.roa
File: KudOHM4rjh88vfTaBivZePTpgGo.roa (raw, json)
Hash identifier: khjja8u1NHGKquk2GHWUP/+HMDxhvkK7hsybZzCcMbs=
Subject key identifier: 2A:E7:4E:1C:CE:2B:8E:1F:3C:BD:F4:DA:06:2B:D9:78:F4:E9:80:6A
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 05CF29CF
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/KudOHM4rjh88vfTaBivZePTpgGo.roa
Signing time: Sat 01 Jan 2022 13:01:26 +0000
ROA not before: Sat 01 Jan 2022 13:01:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 94.137.77.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97462735 (0x5cf29cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 1 13:01:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ae74e1cce2b8e1f3cbdf4da062bd978f4e9806a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7a:20:e3:77:bc:fe:77:ea:1b:f3:ef:22:a7:
39:d3:c6:04:f7:b1:c6:7f:bc:64:84:73:2f:63:e4:
68:dd:48:bf:85:bc:0b:2d:6c:eb:cc:0b:61:c6:17:
9f:84:b4:09:84:4d:be:1c:c2:b8:28:57:d8:6f:8b:
13:a7:7c:f5:6e:26:ea:0c:a4:69:19:1b:af:0e:62:
d8:0a:62:7f:75:76:54:eb:73:85:11:ac:81:13:86:
06:77:10:c0:18:cf:d1:aa:58:2b:4b:d1:65:b8:e1:
8d:46:7d:9d:0c:3a:50:4a:d0:6f:3c:a6:99:52:10:
92:8b:51:22:17:8f:f0:1c:29:40:a2:50:74:66:89:
ba:37:b9:84:fa:10:d5:fe:75:df:3a:d5:8c:64:95:
25:ba:36:2f:21:50:d2:c2:17:fb:0c:4e:45:23:bb:
ef:37:8f:6f:b6:5b:b1:42:c5:c1:5e:ed:53:ee:bb:
62:9b:0f:fc:b0:66:d6:45:1a:8a:23:4b:1e:fa:0d:
0d:ab:ba:b4:df:a6:01:9b:9f:32:77:f1:23:e2:fa:
27:4a:a4:42:2a:df:61:be:20:ac:ca:e8:83:d8:3b:
1d:37:dd:e4:b8:89:a6:e7:d5:bc:32:09:84:f6:21:
cc:45:9a:51:21:b5:dc:5f:7d:31:5f:0a:36:ea:d3:
e5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:E7:4E:1C:CE:2B:8E:1F:3C:BD:F4:DA:06:2B:D9:78:F4:E9:80:6A
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/KudOHM4rjh88vfTaBivZePTpgGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.77.0/24
Signature Algorithm: sha256WithRSAEncryption
28:30:bf:92:19:12:7d:71:b1:2f:72:a7:97:23:96:0d:5f:eb:
98:a3:9c:36:37:a8:ff:44:b5:61:c0:e9:e6:98:b5:a7:6f:3b:
4e:2b:b9:7c:23:f8:87:58:ba:32:b3:c2:e5:b2:f0:55:0a:3f:
b0:84:68:6e:67:9f:4e:70:ba:a7:dc:d5:62:b9:81:44:ba:43:
65:ac:50:57:87:b4:94:6d:46:77:ab:3b:28:9d:40:00:f0:67:
bc:b6:f5:e8:d8:63:c7:1b:37:44:c7:07:37:6a:ac:64:f2:2e:
21:47:5f:37:a3:fb:3c:34:76:48:7e:75:7e:07:ff:d1:61:67:
73:fb:c0:83:0b:2f:41:44:48:c5:4a:68:24:2e:ec:e7:b5:f2:
6b:3c:70:0c:29:5d:71:18:9c:a4:ca:1f:8c:81:fe:2a:b7:14:
af:69:ef:14:82:b6:bb:d0:ca:6b:56:27:a0:eb:ae:87:b8:d0:
04:f3:95:90:be:3a:44:f0:56:d4:10:01:57:e4:bd:d0:15:91:
ce:45:59:a4:64:87:d1:dc:95:13:a1:02:3b:b9:38:f7:4b:5d:
69:06:f8:09:93:a7:d3:4a:21:41:dd:c6:9f:6d:79:70:88:66:
d2:ce:e0:04:aa:9a:67:34:58:94:57:2a:86:5a:64:91:e4:89:
c4:9d:3d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:23 2025 by rpki-client