Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/dLMT5tXYcE4JpKWuSDPL9X6yg2M.roa
File: dLMT5tXYcE4JpKWuSDPL9X6yg2M.roa (raw, json)
Hash identifier: q1FiSnY+2EFFEO9aP3jwvWid9+FKinHO8h5r07KVndI=
Subject key identifier: 74:B3:13:E6:D5:D8:70:4E:09:A4:A5:AE:48:33:CB:F5:7E:B2:83:63
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 01857067226675B5EB1E40A155BBDEA0BE5A
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/dLMT5tXYcE4JpKWuSDPL9X6yg2M.roa
Signing time: Mon 02 Jan 2023 02:54:45 +0000
ROA not before: Mon 02 Jan 2023 02:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 40676
IP address blocks: 94.137.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:22:66:75:b5:eb:1e:40:a1:55:bb:de:a0:be:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 2 02:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74b313e6d5d8704e09a4a5ae4833cbf57eb28363
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:22:f2:62:a0:f4:e0:58:b8:db:f7:63:2e:97:
88:5b:c3:97:3a:a7:6d:18:0e:09:e0:a2:de:2f:f1:
9b:64:b3:2c:20:19:b1:f9:09:2b:20:ed:2a:fd:62:
08:a0:6b:dd:22:e7:27:d4:3f:c6:74:5a:51:db:64:
d9:2e:58:c7:bf:2e:d6:e7:80:85:af:f7:65:cd:e0:
00:04:5a:00:7a:93:17:40:52:34:ab:fa:82:dc:24:
34:a2:f2:3c:43:50:83:cf:5e:bb:15:1c:31:bb:97:
55:f9:95:36:1b:72:6b:55:dc:8c:b4:db:76:d2:8e:
06:be:3f:58:56:da:eb:5a:2a:34:80:d4:ea:db:db:
af:ff:2f:c3:1c:e2:0f:c3:5f:e6:2c:06:8d:31:be:
3c:20:69:55:60:f2:6a:ea:50:41:32:a1:f9:4e:1d:
62:7b:e6:e1:73:be:e4:6d:a8:00:5a:ed:17:a5:13:
bc:ec:9a:6f:71:60:24:62:fc:77:78:9d:5c:e5:97:
6d:15:ee:21:f8:07:a5:30:9d:e1:cb:9e:ac:c8:d7:
b2:37:65:c0:4a:2e:ff:f1:62:ac:59:9c:5f:b1:61:
56:83:02:27:ce:33:1a:9b:65:d9:3f:f6:e7:c2:e0:
bc:9f:70:96:b7:02:07:96:9b:8f:02:c9:18:13:7e:
cf:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B3:13:E6:D5:D8:70:4E:09:A4:A5:AE:48:33:CB:F5:7E:B2:83:63
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/dLMT5tXYcE4JpKWuSDPL9X6yg2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:06:44:ef:fc:82:71:83:d5:ad:11:36:fc:24:38:c3:75:c5:
d1:55:31:b6:f6:1e:8e:fa:26:23:da:59:32:15:ba:27:9d:2b:
16:da:02:4e:f8:54:e1:b2:4d:21:3e:23:2d:3a:bd:19:1d:b0:
43:80:fc:b1:b0:de:f4:02:d5:6d:90:a1:bf:22:6e:83:6f:17:
c3:4b:d7:de:24:94:17:a2:65:2e:3d:74:ed:f1:c3:ab:43:98:
e3:18:17:50:16:2d:0d:81:f5:55:74:5e:56:dc:6b:d0:74:99:
d4:29:06:be:e9:5e:e9:92:2a:c0:b8:c1:de:31:3d:25:8d:66:
6c:ef:cd:97:bc:b6:8a:da:df:c0:66:d6:52:9c:ba:7e:48:80:
b7:6f:5b:39:28:b0:6a:89:0a:d5:ec:fa:cc:1e:a5:0f:fb:89:
bd:a1:1f:64:d7:0a:cc:08:65:c8:67:89:0e:68:58:5e:f4:01:
39:ed:95:90:39:a6:d1:7a:68:00:99:08:67:18:f7:ff:f2:dc:
11:3c:2a:e0:48:a8:66:42:31:45:e3:04:c4:4c:b7:54:db:89:
50:db:f0:d2:ff:32:23:5f:21:12:21:58:e4:06:6a:ac:5f:95:
6d:87:ab:aa:a0:61:2b:c5:c3:1b:77:ad:85:4b:7d:05:ff:ac:
aa:91:7c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:13:30 2025 by rpki-client