Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/sn056boStWvqXa0yzftbeQiHiE8.roa
File: sn056boStWvqXa0yzftbeQiHiE8.roa (raw, json)
Hash identifier: 8f+HXaKsVoVt2zTn2GQL8EJuBRUkdbHyy+9EsXnJF+M=
Subject key identifier: B2:7D:39:E9:BA:12:B5:6B:EA:5D:AD:32:CD:FB:5B:79:08:87:88:4F
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 06C6C1F3
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/sn056boStWvqXa0yzftbeQiHiE8.roa
Signing time: Fri 01 Apr 2022 19:11:12 +0000
ROA not before: Fri 01 Apr 2022 19:11:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 94.137.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113689075 (0x6c6c1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Apr 1 19:11:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b27d39e9ba12b56bea5dad32cdfb5b790887884f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:27:1e:83:c8:52:03:c1:af:62:c8:fd:98:69:
a7:61:4c:7d:19:de:b2:52:37:50:43:35:c1:24:f8:
da:38:e7:61:87:e0:83:f1:61:c8:62:d6:ae:5f:20:
6c:c8:5d:03:61:1b:d1:03:c2:0f:f1:c8:c4:3f:a5:
26:6e:4a:13:31:58:7a:dd:2b:c7:38:3f:ba:e5:83:
33:e0:39:6c:98:f2:44:3f:66:64:e8:34:f4:b6:a7:
e0:e5:be:84:4b:de:9a:3c:ec:ce:6d:76:92:cd:f0:
4c:08:08:4c:55:11:9c:7e:7b:a0:10:1d:16:e0:b5:
ca:e3:21:1d:1f:44:7e:48:0a:57:8c:11:e5:75:bc:
71:2c:d8:a8:d5:46:b3:91:a6:b8:a3:26:d7:be:48:
e6:9a:0e:74:23:6e:ce:b1:13:2b:00:f8:9f:ab:ba:
53:9b:59:92:66:a1:8d:37:b2:1f:f5:66:40:b0:1e:
84:39:74:49:7c:23:bd:5d:ae:2f:48:5b:41:18:8c:
56:a1:28:9b:5d:56:4c:a7:03:d0:f0:03:58:93:65:
90:15:c0:5c:d3:a8:51:46:21:f0:02:9d:b4:46:94:
07:ce:c9:e0:cb:0e:05:9b:e9:33:97:47:11:2f:ba:
56:cc:7b:80:e6:3e:66:c3:30:da:db:34:12:3b:0a:
c0:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7D:39:E9:BA:12:B5:6B:EA:5D:AD:32:CD:FB:5B:79:08:87:88:4F
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/sn056boStWvqXa0yzftbeQiHiE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.137.76.0/24
Signature Algorithm: sha256WithRSAEncryption
01:cd:51:0e:66:96:f2:74:8f:0d:f1:4d:de:1d:79:b4:37:58:
f3:56:02:cb:27:bd:5e:d4:f8:a9:ca:0b:f7:83:e8:2f:51:b0:
d2:51:9e:5a:36:8d:ae:b1:6b:d8:fc:9a:2a:65:b6:0a:cd:32:
b4:03:e3:cd:a3:f4:82:53:19:e2:27:7c:a6:67:ae:77:a8:93:
07:82:9f:7b:b9:25:10:50:a7:9b:bd:cb:0f:4a:33:1f:a9:2a:
4c:1d:bb:42:06:d1:5e:3b:f5:63:1c:03:68:b5:ec:c7:06:d5:
74:95:41:01:10:ed:11:9f:4c:f5:b8:64:9b:4c:b1:2f:d5:09:
74:7d:bd:af:11:5a:cc:90:e1:a6:8d:17:41:be:75:bb:a3:ef:
f7:9a:a8:c0:9d:ea:8d:40:a1:de:77:69:2c:64:bd:5f:37:c3:
72:ff:3b:66:c9:e4:20:8a:c4:8e:d6:73:f8:b9:d2:1d:ca:c5:
37:7f:29:3f:61:bd:58:6d:4f:a1:5e:b2:5e:a2:36:2a:b4:ce:
36:5d:74:60:65:0b:3c:34:fc:d3:e4:43:2c:12:b5:5f:21:2e:
3c:51:c7:48:c9:6b:8e:ef:48:6a:2b:fa:d4:86:cf:89:64:93:
3d:5b:2b:0e:88:6f:80:d5:5b:d9:9b:d4:ec:81:ec:8e:e2:24:
26:47:df:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:12:54 2025 by rpki-client