Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/2b38b3-12f1-4242-adae-b7d1cac51e0c/1/ml7Vkv4V6sZ0TkuFcng_9TXioqc.roa
File: ml7Vkv4V6sZ0TkuFcng_9TXioqc.roa (raw, json)
Hash identifier: ISz5Cbm0173SWFE2DU2O3QCk0m9Jhh+vzylOavzlqtY=
Subject key identifier: 9A:5E:D5:92:FE:15:EA:C6:74:4E:4B:85:72:78:3F:F5:35:E2:A2:A7
Certificate issuer: /CN=4c911324e869bc4ca5ec8bad0d3ddff685441979
Certificate serial: 0793F12F
Authority key identifier: 4C:91:13:24:E8:69:BC:4C:A5:EC:8B:AD:0D:3D:DF:F6:85:44:19:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TJETJOhpvEyl7IutDT3f9oVEGXk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/2b38b3-12f1-4242-adae-b7d1cac51e0c/1/ml7Vkv4V6sZ0TkuFcng_9TXioqc.roa
Signing time: Sat 01 Jan 2022 16:05:01 +0000
ROA not before: Sat 01 Jan 2022 16:05:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20539
IP address blocks: 94.199.160.0/21 maxlen: 24
2a02:680:8000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127136047 (0x793f12f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c911324e869bc4ca5ec8bad0d3ddff685441979
Validity
Not Before: Jan 1 16:05:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a5ed592fe15eac6744e4b8572783ff535e2a2a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ee:73:27:6d:c0:7d:cd:dc:83:2f:14:89:27:
49:ac:e4:de:7f:3b:70:27:74:c3:ca:25:fc:25:d5:
e8:5c:5a:3b:a2:1c:30:01:ff:dc:55:6d:01:80:8a:
82:47:0a:c4:7a:9e:2b:f2:3d:bc:a7:d5:88:c3:16:
67:3b:b9:ae:fa:6c:94:9c:a3:67:f1:fc:76:f7:8d:
e3:94:a6:2f:86:4f:bf:9e:45:25:d5:16:c7:61:6b:
a3:52:a1:ef:ce:df:9a:1c:98:d1:8e:66:6b:c5:05:
25:6c:59:11:fc:9b:4a:0a:1c:d0:81:7d:60:60:bf:
d5:e5:2d:96:ff:59:af:63:6c:6c:87:dc:c3:85:1a:
7d:63:fd:73:cc:d2:2c:2f:5b:b2:10:54:48:0a:1d:
52:40:b9:da:48:9d:3d:de:f5:83:17:c4:66:d9:58:
29:fa:33:b6:82:d4:e6:94:a8:f3:45:51:17:d5:59:
14:dc:fc:8c:77:16:65:f2:ff:3e:24:ab:93:82:94:
16:7c:b5:63:b4:19:6e:d6:a2:79:07:ee:b1:9d:e1:
c0:3a:35:eb:99:73:18:b9:b5:61:3d:05:0c:87:c3:
91:b0:2a:88:08:59:0d:13:4c:de:4b:eb:5e:a0:ba:
3d:15:85:ef:da:71:17:ff:7a:21:d3:47:1d:b3:17:
5e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:5E:D5:92:FE:15:EA:C6:74:4E:4B:85:72:78:3F:F5:35:E2:A2:A7
X509v3 Authority Key Identifier:
keyid:4C:91:13:24:E8:69:BC:4C:A5:EC:8B:AD:0D:3D:DF:F6:85:44:19:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TJETJOhpvEyl7IutDT3f9oVEGXk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/2b38b3-12f1-4242-adae-b7d1cac51e0c/1/ml7Vkv4V6sZ0TkuFcng_9TXioqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/2b38b3-12f1-4242-adae-b7d1cac51e0c/1/TJETJOhpvEyl7IutDT3f9oVEGXk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.199.160.0/21
IPv6:
2a02:680:8000::/36
Signature Algorithm: sha256WithRSAEncryption
a1:5b:5a:b5:8f:ce:c8:d4:17:97:9d:da:d7:15:f7:5e:01:ff:
ae:27:07:a7:c2:cd:45:28:4e:51:64:77:ce:c8:ce:e2:95:51:
1e:27:43:04:22:52:d7:2e:b3:61:f7:30:b4:98:42:25:4b:78:
ed:33:02:c3:c4:06:79:d8:0d:ba:66:fe:0b:3e:dc:80:ec:76:
88:2a:95:7a:cb:31:f9:2d:53:5c:30:7c:70:7f:ca:63:73:d7:
eb:4c:2c:fe:f3:15:58:b7:29:31:8b:43:49:17:7b:53:be:bb:
c3:c5:f8:0e:e6:d1:89:ef:ba:ee:15:1b:9f:db:c5:4b:80:14:
54:fa:f0:a8:17:ac:69:3a:cf:8e:3c:61:51:75:ba:37:d6:16:
45:d0:24:09:52:87:f4:41:d4:58:d8:30:75:8b:97:25:2b:61:
a0:9f:b2:c3:53:de:03:ac:a5:bc:a3:df:4e:db:9b:3c:13:bf:
ae:31:53:c6:46:da:94:f4:a4:c6:b0:6b:3f:a6:93:f0:69:80:
19:71:f3:5a:69:12:b9:e4:62:e3:aa:51:59:54:10:6d:ce:45:
eb:d6:dc:46:6d:ae:e0:58:0e:19:cd:f3:6f:dd:85:55:d5:dd:
04:21:38:4d:61:aa:94:b7:a7:f8:89:83:c2:23:cb:fd:20:1d:
4c:ce:43:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:44 2024 by rpki-client on console-fra.rpki-client.org