Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/erNXl8zAZkvlz9PFAAeNwiO_MO4.roa
File: erNXl8zAZkvlz9PFAAeNwiO_MO4.roa (raw, json)
Hash identifier: obb9iAm7YwCXHvtw3py3bbj6ZWhBvkSe4/8wriKHrWI=
Subject key identifier: 7A:B3:57:97:CC:C0:66:4B:E5:CF:D3:C5:00:07:8D:C2:23:BF:30:EE
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 06787274
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/erNXl8zAZkvlz9PFAAeNwiO_MO4.roa
Signing time: Fri 04 Mar 2022 08:37:39 +0000
ROA not before: Fri 04 Mar 2022 08:37:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.137.78.0/24 maxlen: 24
94.137.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108556916 (0x6787274)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Mar 4 08:37:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7ab35797ccc0664be5cfd3c500078dc223bf30ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:3f:f6:5a:08:ea:16:99:67:32:1f:4f:da:
69:4a:76:6b:f1:1b:bb:7b:be:24:ef:d2:a7:03:07:
5c:e8:bd:8f:f8:99:9a:6a:eb:c3:cd:af:3b:18:5a:
68:32:58:bc:de:dc:78:c5:5c:20:ca:80:f4:19:07:
50:f2:60:f5:5e:a0:11:31:3e:7d:34:4c:32:6c:b1:
f9:3e:63:3a:25:0a:7f:f8:01:02:0d:fe:12:4a:7d:
d1:1f:ee:c5:ea:1d:ea:2f:aa:41:75:4d:26:0b:7f:
d4:07:e0:51:6d:5a:97:61:60:9a:30:61:88:3c:09:
31:b1:b2:fe:3c:72:73:10:7e:ae:b6:e3:0d:b3:25:
f5:55:4d:b2:51:71:0c:a4:2f:c3:5f:c1:53:3d:1c:
ee:6e:df:ab:a0:aa:a2:97:d9:1e:be:65:84:68:7f:
f7:ea:07:24:ab:b7:51:96:0d:9b:1b:d5:16:cd:35:
c2:a2:2b:b2:79:95:a9:e6:73:7b:f4:68:8a:ed:5e:
68:d6:8c:37:64:1d:e4:da:d8:0e:84:e2:83:0d:84:
0b:ca:10:cd:94:56:81:1b:94:c0:56:66:ca:35:79:
24:46:54:c1:cc:47:cc:73:58:84:c7:19:cd:3c:ce:
b3:66:be:f9:66:8e:75:29:8a:a8:78:31:74:60:9b:
ab:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:B3:57:97:CC:C0:66:4B:E5:CF:D3:C5:00:07:8D:C2:23:BF:30:EE
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/erNXl8zAZkvlz9PFAAeNwiO_MO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.74.0/24
94.137.78.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:bd:8b:74:6f:e1:23:08:2e:6f:a0:ab:9a:74:9e:c8:c5:be:
9c:2b:bc:d6:5e:ec:df:c0:e5:75:de:5b:ee:f5:70:61:d3:99:
88:75:60:db:4b:32:d0:34:21:0e:54:e1:c7:2d:ea:fe:87:c9:
9d:02:b7:26:bd:d7:34:ed:08:d4:51:1f:c6:7b:2f:57:cf:d6:
60:e1:97:95:b9:c7:21:75:59:0d:cc:3c:55:f9:91:43:43:53:
4f:f3:45:24:c9:ed:a8:a0:b8:07:e6:b0:99:23:29:87:23:58:
e6:01:9f:c0:49:2c:db:69:53:96:4d:7e:6f:00:93:b6:73:14:
0d:bc:68:ad:a0:d3:e5:df:6a:63:e9:19:27:af:cc:4b:d7:f6:
52:55:44:d5:4f:3d:c8:21:e2:78:65:e6:41:06:0b:31:4a:52:
b0:f9:9b:6b:04:9f:c6:9c:06:fe:b0:d5:ab:c5:16:b4:bb:21:
73:52:63:0c:77:ec:ba:40:94:12:de:5d:95:1f:9d:36:3f:4f:
1d:ff:e0:d6:d7:99:80:a3:b2:9c:d0:ba:5d:0f:3e:4e:93:12:
06:8c:41:2f:b1:ff:57:44:a4:55:bc:ea:5d:25:ef:92:01:94:
12:f8:2b:ee:01:2d:93:b9:49:30:ff:49:a1:7d:84:97:e6:ea:
ee:2f:1c:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org