Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/rnwAXDzNHZHVJEvNPeP_uMEYvB0.roa
File: rnwAXDzNHZHVJEvNPeP_uMEYvB0.roa (raw, json)
Hash identifier: EIKsonckFeNcNWa/HSJVv0j71iMG+vx7LG5PgHpEnGk=
Subject key identifier: AE:7C:00:5C:3C:CD:1D:91:D5:24:4B:CD:3D:E3:FF:B8:C1:18:BC:1D
Certificate issuer: /CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Certificate serial: 01830F9C6C5FC43B98BCF4638C976991256A
Authority key identifier: D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/rnwAXDzNHZHVJEvNPeP_uMEYvB0.roa
Signing time: Mon 05 Sep 2022 21:44:12 +0000
ROA not before: Mon 05 Sep 2022 21:44:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203321
IP address blocks: 94.142.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0f:9c:6c:5f:c4:3b:98:bc:f4:63:8c:97:69:91:25:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d89b44e2c057f01a99261f94bbf6da1bf1865f39
Validity
Not Before: Sep 5 21:44:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ae7c005c3ccd1d91d5244bcd3de3ffb8c118bc1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:fa:67:78:69:61:11:94:45:50:e9:c2:bc:b7:
9c:d4:5a:26:10:c3:d3:af:82:0b:83:fa:b6:8c:66:
eb:8e:5f:f3:f2:ff:cf:a4:e2:22:48:46:97:3c:8d:
f1:7e:f8:ca:12:8d:4c:ab:79:02:10:70:9f:e0:b7:
a8:09:a3:4c:fa:38:0a:77:5c:b2:2d:84:19:0d:bd:
6e:df:04:94:f6:76:db:63:2d:9f:b4:68:8a:ef:cc:
e4:94:97:09:5c:b3:1a:43:a4:90:80:f3:f1:1c:41:
da:11:ad:ba:64:3b:d9:fb:0b:1d:48:bd:84:1d:66:
73:d0:12:56:bb:37:24:cb:0e:c2:25:cf:59:53:57:
2a:7b:74:e1:90:74:17:c5:ca:a6:58:27:b4:7e:71:
8e:95:c6:ca:6b:89:85:33:63:bd:2a:59:4a:6e:ba:
d8:46:35:1f:3f:55:85:b5:74:59:f4:af:6f:47:ee:
f0:19:3b:5c:5f:81:9c:ba:80:53:71:f1:db:74:77:
27:63:de:0d:ca:a6:79:f2:33:48:81:40:b5:d5:03:
75:26:07:1e:6f:4c:e1:ea:6d:98:39:9f:42:94:4d:
b6:80:36:8b:e7:75:44:fe:5f:50:3c:50:42:40:6f:
13:24:4a:a7:02:b3:f1:b4:21:d9:74:e4:19:08:14:
48:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7C:00:5C:3C:CD:1D:91:D5:24:4B:CD:3D:E3:FF:B8:C1:18:BC:1D
X509v3 Authority Key Identifier:
keyid:D8:9B:44:E2:C0:57:F0:1A:99:26:1F:94:BB:F6:DA:1B:F1:86:5F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JtE4sBX8BqZJh-Uu_baG_GGXzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/rnwAXDzNHZHVJEvNPeP_uMEYvB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/00a71e-def8-4a4f-a499-b60fbb14c19d/1/2JtE4sBX8BqZJh-Uu_baG_GGXzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.142.254.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:4f:ff:cd:f1:26:5b:bb:47:17:3f:7d:5b:dd:41:ae:92:96:
bf:cd:6c:eb:c8:d1:c3:1d:23:80:84:f8:62:42:6b:95:b4:af:
26:af:fd:2e:41:cd:8c:6b:e5:71:3b:d3:1a:03:88:f5:a6:f8:
42:51:f6:70:44:09:7f:16:a8:5c:2c:d9:c4:0a:43:6a:9e:52:
c2:77:97:c3:c1:cc:31:a0:55:3b:aa:21:77:42:40:d2:f9:a1:
83:fb:06:96:a8:fe:8e:45:cd:78:68:0f:40:cb:d2:92:4f:95:
86:52:61:d0:17:06:2d:b0:7b:46:94:da:75:ae:54:13:76:3e:
02:a2:92:6c:af:81:43:7e:41:1c:69:c7:63:97:a6:ea:29:89:
60:3d:cd:bb:e9:c0:8f:c2:0d:53:3c:5e:5f:5c:9b:8f:a8:34:
03:aa:ec:3a:b6:c0:76:75:f6:81:71:44:2c:1e:a0:d1:54:c3:
4b:a2:04:01:03:8b:07:27:20:51:96:b4:1b:41:7e:e1:de:5d:
a1:05:31:60:74:f2:55:67:4f:ab:7c:a9:03:a4:48:72:50:a8:
48:a5:05:46:99:1f:a4:7e:d4:a6:44:31:aa:e7:e5:02:5a:b2:
ad:0c:f8:9b:0d:0e:35:b1:ce:31:08:dd:2d:95:29:c5:85:27:
b7:72:5c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:57 2024 by rpki-client on console-ams.rpki-client.org