Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/kwDozC6W5zsjALROmmNjx69iqnU.roa
File: kwDozC6W5zsjALROmmNjx69iqnU.roa (raw, json)
Hash identifier: WjParHXcTYmLV5xwq/rtOoyrkYnHwKomOVZ+cwvtWEI=
Subject key identifier: 93:00:E8:CC:2E:96:E7:3B:23:00:B4:4E:9A:63:63:C7:AF:62:AA:75
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 018235CA8EAD294BA85BC2D4ADAD58603644
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/kwDozC6W5zsjALROmmNjx69iqnU.roa
Signing time: Mon 25 Jul 2022 14:37:23 +0000
ROA not before: Mon 25 Jul 2022 14:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 94.137.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:35:ca:8e:ad:29:4b:a8:5b:c2:d4:ad:ad:58:60:36:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jul 25 14:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9300e8cc2e96e73b2300b44e9a6363c7af62aa75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:e3:cc:25:66:d7:a9:86:3d:10:3b:61:cc:
ba:e0:b0:63:cd:ff:df:ae:9e:f1:51:80:4e:01:1a:
66:89:8d:48:99:dd:41:1b:ae:33:68:00:2a:da:4a:
d8:07:6d:9d:22:cb:0e:6c:3c:37:04:86:66:c5:9a:
c9:9b:f6:d3:ef:7a:37:52:9d:68:b2:e6:0a:fa:da:
5f:cf:4c:32:8f:9f:a2:46:7c:9f:92:e9:bd:ca:24:
07:7c:46:13:d8:75:03:30:23:04:96:65:56:5d:66:
b3:2c:0f:33:27:cc:f1:2c:f0:e7:b8:c9:dd:c6:dc:
17:ba:a4:2d:51:54:8c:bf:e0:f7:0a:7a:e8:08:65:
b2:3f:f4:d7:30:d7:55:aa:1b:cc:26:1b:02:c5:60:
38:8e:59:8f:ed:67:2f:83:fc:b9:cb:cf:c1:0b:08:
36:b9:b7:5c:cf:12:d7:91:9d:f7:60:3d:33:c1:fb:
27:c8:d9:39:a9:ca:5f:1b:15:88:e7:61:38:e5:6f:
ed:a2:fb:c1:af:e1:21:1c:79:d0:07:8e:e9:d8:7d:
bc:70:83:ef:f3:8e:2e:23:1c:ce:b3:2f:a4:54:8b:
1b:f4:5d:02:2b:35:30:9e:bc:32:cd:3b:46:e4:f5:
6d:cf:dd:03:d3:90:f2:ef:98:68:e1:c8:f0:50:f6:
d6:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:00:E8:CC:2E:96:E7:3B:23:00:B4:4E:9A:63:63:C7:AF:62:AA:75
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/kwDozC6W5zsjALROmmNjx69iqnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.92.0/24
Signature Algorithm: sha256WithRSAEncryption
16:38:3b:d8:aa:e9:f0:56:e1:8a:5f:e5:d2:bb:4b:fb:57:bf:
11:56:9f:c4:c3:0c:a4:94:77:c6:e5:23:0c:62:30:57:37:e6:
66:0c:56:68:7b:f8:88:3e:6e:f1:32:4c:75:f2:a7:d4:18:a3:
eb:36:b9:30:68:4b:58:a4:48:f7:24:0b:6f:9c:d4:73:ac:e7:
1a:1b:74:26:08:84:91:56:c8:40:b1:93:81:c8:f0:eb:6b:a1:
d4:2e:93:e1:91:5f:63:1c:f3:f7:97:0b:c9:7d:86:70:5b:8e:
c1:24:3d:fb:04:71:59:c2:0e:f5:41:79:f5:24:96:14:a1:17:
3d:c4:cf:a3:81:60:ac:e8:6a:20:d9:39:01:48:41:2e:5a:e6:
20:8a:d9:fc:c0:74:2c:8f:69:cf:24:5e:75:82:7a:a5:5b:51:
50:12:96:6f:e8:01:6e:1e:b8:db:93:85:7b:38:54:e6:0b:f2:
66:31:0d:83:de:a4:9f:6e:49:7f:57:e3:32:9d:31:98:34:b4:
1d:75:3d:35:1b:f2:c6:f0:f4:7d:8a:2c:32:ba:f8:8f:e9:cf:
4c:fe:83:00:00:40:21:76:ce:e7:d4:0d:c9:b2:d2:2e:8c:74:
4a:0e:0f:ec:46:c7:2a:43:60:16:dd:6c:ca:c0:d3:6b:79:1f:
90:36:0b:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org