Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/N8gu9srmzJYDkdD-WaiqoejgTN0.roa
File: N8gu9srmzJYDkdD-WaiqoejgTN0.roa (raw, json)
Hash identifier: UkdANZ9LHqQkORf2G2fkwLqPG5jSu1OTJEkFDULOE9k=
Subject key identifier: 37:C8:2E:F6:CA:E6:CC:96:03:91:D0:FE:59:A8:AA:A1:E8:E0:4C:DD
Certificate issuer: /CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Certificate serial: 38872CD8
Authority key identifier: B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/N8gu9srmzJYDkdD-WaiqoejgTN0.roa
Signing time: Sat 01 Jan 2022 12:00:54 +0000
ROA not before: Sat 01 Jan 2022 12:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48850
IP address blocks: 94.246.183.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948382936 (0x38872cd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9b87b3b09ccb69a6de20468e90ecbb18f5ecbb6
Validity
Not Before: Jan 1 12:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37c82ef6cae6cc960391d0fe59a8aaa1e8e04cdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:28:13:01:9a:c3:e2:fc:c7:56:34:34:38:ec:
43:3b:87:f9:0d:4d:5d:42:65:c9:04:78:50:27:c9:
c5:59:ab:b5:ea:7f:28:2f:8c:13:e3:f2:de:9c:be:
d0:75:60:ca:0e:24:dd:fa:ae:a4:b5:a2:29:37:03:
7d:90:d9:0e:98:17:d9:cf:c7:f3:a2:af:24:a0:53:
cb:6d:97:8e:f9:ff:da:06:29:71:ef:6f:ea:41:c5:
0f:93:27:1c:e3:55:ab:29:08:dd:ee:a2:f8:14:95:
b0:c4:9f:a0:01:df:9d:dd:ee:df:37:61:15:6e:eb:
13:62:74:28:01:45:35:27:af:11:e4:33:11:a1:b4:
20:2c:15:c4:d2:5a:cf:60:3f:27:30:bf:56:ff:b6:
6f:eb:dd:ce:b2:16:4f:0b:94:8a:6c:8a:09:22:ba:
b8:9a:28:18:19:9a:bc:31:3c:b1:b7:d4:2a:18:ee:
e5:5f:f5:1b:aa:f4:4b:a2:c5:e7:99:19:9d:98:ab:
d6:a7:d0:61:be:2d:17:20:ff:7b:9c:1a:d5:22:fe:
26:53:52:1a:bb:a3:36:50:08:15:9d:0c:86:d3:6d:
00:87:5c:0c:fc:bf:8f:ea:e9:bf:01:ef:c1:9f:af:
79:f2:ce:fa:56:ae:86:6c:f8:2a:06:c8:67:8b:1c:
d3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C8:2E:F6:CA:E6:CC:96:03:91:D0:FE:59:A8:AA:A1:E8:E0:4C:DD
X509v3 Authority Key Identifier:
keyid:B9:B8:7B:3B:09:CC:B6:9A:6D:E2:04:68:E9:0E:CB:B1:8F:5E:CB:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/N8gu9srmzJYDkdD-WaiqoejgTN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/00ddaf-3be5-420d-919f-3b4cb975a9bc/1/ubh7OwnMtppt4gRo6Q7LsY9ey7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.246.183.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:82:a5:6c:9e:ae:a5:c0:c1:7f:77:c9:05:74:5d:60:2e:2f:
81:d7:ca:58:dc:f0:e1:59:36:ad:32:7a:c7:9f:05:11:88:cc:
22:47:12:69:26:61:2f:b7:a9:fe:11:86:51:b7:09:bc:8c:43:
75:03:4e:fc:d2:93:87:13:5d:c3:95:0e:a6:f9:bf:9d:73:34:
13:fa:7a:6d:c9:73:21:b9:91:c1:70:96:27:a6:e2:b9:11:89:
dc:34:87:e9:ad:8b:b0:2e:99:d9:22:83:18:63:51:df:77:e8:
ef:07:3c:a4:35:e0:01:25:3a:49:98:3d:e0:3d:b0:3b:e8:52:
d7:4f:5f:ad:75:7e:34:5e:77:41:19:0a:9c:9b:25:1b:3d:30:
59:7b:d5:54:53:46:b2:ef:b4:0f:56:db:82:7d:14:d3:79:7f:
93:fb:1f:cc:0b:7c:eb:af:56:68:6e:9c:05:7b:97:15:c6:9f:
9b:ec:2c:69:c9:e1:82:49:82:23:8f:a9:c8:9c:cf:aa:12:99:
cb:7d:10:c1:7a:8a:5b:0e:49:cb:59:06:e3:8e:24:50:36:62:
8b:08:6d:58:9b:fe:8b:c6:0f:17:f6:43:b4:bc:3e:0e:e7:51:
2f:98:d6:49:65:05:11:75:2b:26:fc:f4:27:b6:ad:46:0e:be:
c2:c9:03:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:50 2023 by rpki-client on console-ams.rpki-client.org