Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/P74IQEY18pBAitEfdjfiJmVkMz8.roa
File: P74IQEY18pBAitEfdjfiJmVkMz8.roa (raw, json)
Hash identifier: 3pvTCb0cKc2IWFGk+Ad4TxsPRtUOqIPDkIqsrrJwncU=
Subject key identifier: 3F:BE:08:40:46:35:F2:90:40:8A:D1:1F:76:37:E2:26:65:64:33:3F
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018545AF1B8BD37F0E692788223C8073ACCF
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/P74IQEY18pBAitEfdjfiJmVkMz8.roa
Signing time: Sat 24 Dec 2022 19:49:41 +0000
ROA not before: Sat 24 Dec 2022 19:49:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 94.176.214.0/24 maxlen: 24
94.176.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:45:af:1b:8b:d3:7f:0e:69:27:88:22:3c:80:73:ac:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 24 19:49:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fbe08404635f290408ad11f7637e2266564333f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:c9:09:58:9a:0b:fd:02:8d:a3:8b:66:19:03:
98:53:fa:6a:2e:19:88:b5:92:7f:79:c7:22:b1:6a:
f8:57:d2:47:8d:52:0e:01:c7:59:3f:99:a7:20:d4:
d3:96:d1:4c:8c:87:e6:29:6f:a9:74:92:92:9e:eb:
d3:ba:75:38:ce:d9:49:dc:1f:99:7e:d5:4a:c0:f8:
eb:d4:06:63:d8:81:da:4f:68:55:3a:e5:1e:93:dc:
78:ae:ba:79:68:86:48:eb:b2:0e:3e:83:f3:07:58:
46:29:4b:06:06:db:ae:4a:1e:36:5f:7c:64:3b:55:
83:ef:92:33:c9:9a:b0:6c:7c:94:5c:d7:52:56:8f:
6f:6f:8b:e0:1b:be:48:7e:ec:0b:c1:f6:9b:96:5a:
db:c2:1f:2d:41:42:fb:62:86:11:9a:85:87:8b:9b:
0b:9f:85:3b:30:f0:e6:2c:78:42:5a:a9:34:a8:8d:
4a:24:a6:4c:9b:b8:9e:de:ca:1e:61:d4:61:5c:cf:
82:c9:a2:2b:1c:fb:ca:13:82:7e:6f:70:88:9f:f0:
a6:3e:7f:9b:c4:69:45:ec:b2:e7:4b:ef:fa:e6:92:
38:bd:a2:36:83:7d:cb:f6:46:57:e9:bc:aa:ff:51:
38:79:ae:87:ff:fd:34:11:01:37:e5:74:b4:aa:d7:
3f:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BE:08:40:46:35:F2:90:40:8A:D1:1F:76:37:E2:26:65:64:33:3F
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/P74IQEY18pBAitEfdjfiJmVkMz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.214.0/23
Signature Algorithm: sha256WithRSAEncryption
27:d1:5f:82:cb:42:94:20:04:4f:1d:7f:70:97:b6:ed:2b:4f:
6f:da:e3:3b:fc:25:e6:fa:55:3f:09:de:b6:9b:77:f0:f2:a9:
ec:f3:cc:d3:1c:f4:18:19:02:72:06:4d:3b:c3:9a:1d:09:10:
8f:79:9b:9b:0c:82:cb:e2:b5:e4:90:31:31:d5:20:d9:f2:20:
57:49:33:ce:bd:7e:6d:25:7d:d0:04:94:eb:da:56:28:d2:f8:
c3:06:0a:d3:86:af:a5:22:da:05:66:f5:9e:65:62:f3:1a:b2:
a8:4d:05:00:12:f3:39:36:73:fd:46:8a:38:05:07:61:5c:11:
c6:10:5c:2d:ec:cb:53:42:6e:d0:43:c8:b8:4b:69:f8:8a:38:
39:cd:45:3c:42:ba:7d:8c:87:db:e4:31:f4:12:39:20:67:f4:
3f:58:23:51:26:d9:6d:bd:5f:bc:d0:b7:6c:4f:62:4c:8f:2e:
e3:dc:34:79:33:c1:f5:39:74:1f:31:f7:8c:49:2e:60:dd:f5:
db:d4:0e:64:78:1a:6b:1c:44:3d:60:f0:a2:34:2f:2d:04:9a:
72:66:04:70:33:a2:e6:20:e9:e1:47:ec:9a:97:23:3a:e7:20:
ef:c7:bc:63:4c:f5:e9:0a:2d:2b:b7:5d:ee:60:ef:a6:e0:ea:
0a:78:58:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:13 2024 by rpki-client on console-ams.rpki-client.org