Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/nJ_lZs0jYeZdHkP1OC-5xD3cq2A.roa
File: nJ_lZs0jYeZdHkP1OC-5xD3cq2A.roa (raw, json)
Hash identifier: G0O3EhD7Q3biHcP7L5JG0NFgSwcdwzOoGDR5GfeKqDI=
Subject key identifier: 9C:9F:E5:66:CD:23:61:E6:5D:1E:43:F5:38:2F:B9:C4:3D:DC:AB:60
Certificate issuer: /CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Certificate serial: 0E175C25
Authority key identifier: E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/nJ_lZs0jYeZdHkP1OC-5xD3cq2A.roa
Signing time: Sat 01 Jan 2022 03:02:52 +0000
ROA not before: Sat 01 Jan 2022 03:02:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12184
IP address blocks: 94.31.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236411941 (0xe175c25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30cc9429b63382e9b1714d21b3c96d2e5ebe257
Validity
Not Before: Jan 1 03:02:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9c9fe566cd2361e65d1e43f5382fb9c43ddcab60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b2:03:1c:e9:19:99:43:61:ee:71:cf:b3:da:
33:5a:88:02:16:8a:e8:4a:6d:38:d3:bf:bd:47:fb:
88:47:4b:19:38:61:7d:10:3b:a9:48:d3:36:52:b9:
e6:fe:dc:e7:9e:ef:fa:63:0a:d0:03:c5:c9:e6:bc:
17:60:de:b4:e3:69:08:bd:67:be:5c:5b:81:c9:06:
63:9b:83:ad:b2:93:2c:71:23:f4:c2:5e:be:44:97:
c5:4a:f2:10:b9:c8:4b:14:45:e9:98:b6:90:4c:cc:
c3:92:43:3c:3d:ea:94:9c:02:fe:03:6f:85:d1:6b:
5d:42:26:fe:6c:c8:55:fd:a7:de:3c:df:db:2a:1e:
09:5d:a2:12:ae:94:e3:d8:af:ce:7a:80:1b:c8:af:
76:2d:e5:12:6c:f5:fa:84:0f:b4:93:77:33:c2:88:
38:2e:40:cb:ee:c0:bc:88:99:03:10:0e:c8:9a:df:
3f:57:70:23:6e:5c:27:6b:51:f4:87:d0:51:02:58:
c1:41:2c:47:2e:2c:b3:9c:23:aa:6e:48:12:8b:e9:
0d:46:c5:2a:58:ca:19:6f:24:b6:c7:84:1d:74:67:
88:d1:a8:a4:7e:21:29:a2:b0:ba:9c:23:b5:86:27:
e1:01:86:ba:3e:1f:7d:62:27:44:3b:e5:b1:b2:26:
82:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:9F:E5:66:CD:23:61:E6:5D:1E:43:F5:38:2F:B9:C4:3D:DC:AB:60
X509v3 Authority Key Identifier:
keyid:E3:0C:C9:42:9B:63:38:2E:9B:17:14:D2:1B:3C:96:D2:E5:EB:E2:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4wzJQptjOC6bFxTSGzyW0uXr4lc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/nJ_lZs0jYeZdHkP1OC-5xD3cq2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c73287-b1b1-4aca-bd2e-db4f352e9ad3/1/4wzJQptjOC6bFxTSGzyW0uXr4lc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.31.8.0/24
Signature Algorithm: sha256WithRSAEncryption
68:4d:7f:88:cc:eb:8a:9f:5a:fb:c9:cd:6b:7d:0a:69:32:36:
92:ac:16:01:b2:6b:e5:f7:92:62:34:0d:70:eb:9a:d0:21:14:
7a:b6:fd:79:83:a9:8e:06:a9:c7:fe:01:91:4f:af:eb:61:9d:
f7:0b:be:21:ef:2f:b5:dd:6a:2f:fa:63:2b:f4:47:3f:b8:e2:
e6:b4:32:ca:fd:95:a7:f9:55:b1:cd:63:bb:50:c7:9c:e6:28:
24:40:d2:a5:a8:05:f7:32:ec:74:0d:97:87:7d:e6:4a:3a:6e:
d4:8c:b3:68:19:17:9c:f1:f0:5c:a5:89:90:c5:b4:cb:bb:3e:
0f:c8:63:2d:93:ae:72:3a:0a:b2:69:67:12:2c:09:fb:55:45:
3a:a8:56:af:57:3a:1f:5a:e2:ca:4a:1a:53:63:af:d8:50:2a:
7f:d8:ea:4d:66:26:e9:e1:cd:ed:3d:86:1b:cd:a8:41:30:fe:
6f:1f:7c:6d:b4:fb:d4:83:0b:83:e8:b0:b1:5a:dc:43:f3:0c:
d6:01:59:1a:b1:c1:56:4d:7e:f7:bb:c4:ab:da:fc:5b:e4:97:
cd:70:58:d2:a7:ca:41:43:b1:c4:ca:ad:0f:8f:2a:41:2a:02:
9a:ff:7c:50:11:06:7e:9b:e2:f0:b2:83:91:1c:9b:34:15:bf:
3e:42:06:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-fra.rpki-client.org