Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/lq4ijLN4PVV_raBKFKFPMvXNzNc.roa
File: lq4ijLN4PVV_raBKFKFPMvXNzNc.roa (raw, json)
Hash identifier: KN7fl6jXeG/fR8tr/qKOivEl9QlPWliOGDQ7ZSzd1Ik=
Subject key identifier: 96:AE:22:8C:B3:78:3D:55:7F:AD:A0:4A:14:A1:4F:32:F5:CD:CC:D7
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 05F95471
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/lq4ijLN4PVV_raBKFKFPMvXNzNc.roa
Signing time: Thu 13 Jan 2022 20:11:09 +0000
ROA not before: Thu 13 Jan 2022 20:11:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 94.137.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100226161 (0x5f95471)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 13 20:11:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96ae228cb3783d557fada04a14a14f32f5cdccd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:04:44:e5:8f:08:bd:6e:60:5c:c9:79:7e:65:
7c:f8:19:c9:06:ea:cb:a1:8a:e3:fe:d9:8b:54:68:
a7:62:f2:df:d1:85:9f:66:25:3a:ed:37:ca:76:6e:
f5:2d:c3:87:2d:1f:de:c8:74:37:cb:f3:56:8d:e0:
41:12:28:8b:ae:35:bb:70:15:55:e5:76:eb:c4:80:
ee:67:76:87:50:87:0c:09:71:99:7f:d3:6b:19:01:
bd:96:a6:0c:cd:82:b2:33:ed:67:c7:92:74:5b:6e:
b9:04:83:33:3f:24:68:d4:fe:08:12:5c:ce:56:47:
67:34:38:93:80:27:dd:0f:ec:44:24:ea:32:e3:72:
c3:e9:49:9a:fb:69:81:68:89:4d:5d:c5:26:95:65:
d7:af:82:2d:9f:04:15:9d:41:f6:32:47:d8:b5:be:
3c:c2:c2:8d:34:97:30:da:84:54:b5:d8:90:6a:bb:
58:22:6c:18:5a:ed:4d:ed:c4:3b:ec:0f:20:87:9e:
d6:89:f6:4c:22:9e:78:57:f1:3f:0e:20:48:58:e7:
7c:bc:55:ba:f4:dd:77:5f:61:b5:1d:40:39:cc:eb:
78:af:8c:6d:e0:76:5b:d5:08:dd:25:6c:a5:6e:93:
5c:01:9f:7a:bc:94:13:e6:5e:58:e2:af:76:29:c0:
3d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:AE:22:8C:B3:78:3D:55:7F:AD:A0:4A:14:A1:4F:32:F5:CD:CC:D7
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/lq4ijLN4PVV_raBKFKFPMvXNzNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.95.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:c7:54:94:4c:e6:4d:88:b1:57:82:fe:3b:41:0d:69:57:c5:
99:f6:56:fa:64:dd:49:17:f8:32:cc:88:1f:f0:ec:11:3a:96:
5e:34:ec:f0:44:25:0d:67:99:fb:0d:10:06:a2:d3:40:4e:fe:
7d:60:95:3f:bc:79:7b:00:89:73:e1:bc:f6:3b:b6:86:fa:6a:
44:39:ca:8c:cd:61:b3:91:ad:57:28:52:6f:24:35:3b:83:8a:
b3:80:a2:2a:57:0f:52:a5:45:3c:b4:8a:a5:e0:a3:0b:db:e3:
60:20:16:aa:8a:ff:33:c0:6a:9a:b2:0a:17:c5:85:23:5f:24:
65:9c:4c:5a:18:23:7d:3c:e0:3c:7a:f7:9b:b9:b2:af:32:b5:
8d:ce:1c:87:b4:e4:6d:8a:f4:b1:7f:1e:f5:b8:72:ed:7a:a2:
39:12:34:78:9d:16:21:f5:0d:b6:0c:81:aa:05:e0:8d:c5:2e:
3f:e3:e7:9d:7c:cb:45:4f:f3:6e:5c:29:50:b7:3a:d9:23:ff:
84:61:40:b5:ef:19:47:16:d5:d7:09:e6:9e:06:22:fe:f0:81:
55:e8:73:ed:0e:d0:13:67:04:13:58:55:34:93:d0:9f:59:ec:
de:11:5a:98:5e:92:4f:f0:15:b5:58:5a:57:16:17:41:41:c1:
9a:70:88:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org