Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/4oNU8qmvE77-W7GPCx5zoxV9l1I.roa
File: 4oNU8qmvE77-W7GPCx5zoxV9l1I.roa (raw, json)
Hash identifier: cqzpK5+9Yp4ch/Me4CDlENgr1RqwZUs15h41V0mo5kw=
Subject key identifier: E2:83:54:F2:A9:AF:13:BE:FE:5B:B1:8F:0B:1E:73:A3:15:7D:97:52
Certificate issuer: /CN=b06551937efc96e145e33a1ebca24492dc120ecb
Certificate serial: 09DFEEE4
Authority key identifier: B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/4oNU8qmvE77-W7GPCx5zoxV9l1I.roa
Signing time: Sat 01 Jan 2022 15:01:42 +0000
ROA not before: Sat 01 Jan 2022 15:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212193
IP address blocks: 93.184.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 165670628 (0x9dfeee4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06551937efc96e145e33a1ebca24492dc120ecb
Validity
Not Before: Jan 1 15:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e28354f2a9af13befe5bb18f0b1e73a3157d9752
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:99:36:2d:57:66:03:22:93:d3:13:9a:5c:eb:
e6:54:09:d1:c1:d1:fd:b6:9e:ec:39:8e:03:2b:62:
b5:c4:a0:1d:4d:4c:10:f7:20:7f:1c:95:98:22:b6:
d0:b5:13:53:74:46:e7:40:5c:b0:3e:1b:bb:91:3d:
90:b4:34:8e:01:9c:7d:fb:7a:36:10:86:82:06:8e:
e1:42:22:4c:65:44:25:a7:fb:5c:b6:a6:5d:38:e3:
8c:15:ea:4e:6c:61:e9:e8:07:04:77:7b:d3:fb:8a:
fb:e6:7e:45:73:9c:28:aa:d6:2c:26:2e:a7:ce:b3:
7b:cb:78:9b:3e:36:d8:05:75:cc:85:cd:b3:2a:1e:
02:50:1a:cb:76:f8:ec:18:7c:73:17:0d:52:01:d5:
6d:6f:61:a6:a2:0e:1d:76:11:cb:98:1d:84:ab:50:
46:70:d2:f4:8b:c8:93:3b:34:57:5c:89:7b:41:75:
37:c1:58:8a:ea:b7:f3:40:1f:31:37:83:56:83:59:
95:ca:98:aa:aa:23:e4:d6:5c:df:a0:51:de:e1:ea:
b1:b0:f3:3a:6e:c8:a1:d5:6f:5a:bf:e2:2e:ca:0f:
60:f9:69:ca:96:c3:4f:b1:75:21:88:d1:8c:6f:0a:
2c:71:44:92:d5:ef:3a:6a:6f:bf:0b:63:5d:b4:a4:
2f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:83:54:F2:A9:AF:13:BE:FE:5B:B1:8F:0B:1E:73:A3:15:7D:97:52
X509v3 Authority Key Identifier:
keyid:B0:65:51:93:7E:FC:96:E1:45:E3:3A:1E:BC:A2:44:92:DC:12:0E:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sGVRk378luFF4zoevKJEktwSDss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/4oNU8qmvE77-W7GPCx5zoxV9l1I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/2c4731-89d5-4e9b-b4aa-bf09ad32c888/1/sGVRk378luFF4zoevKJEktwSDss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.184.144.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:47:c7:1d:7f:f9:f9:d5:40:1e:70:20:f5:37:37:a9:df:36:
68:88:86:d3:84:80:b1:6e:58:75:5d:48:35:78:a7:e3:78:08:
61:22:8d:8e:2f:70:10:e4:b2:9d:5d:47:70:bc:e4:65:9e:67:
d8:07:43:ed:e8:da:9c:3a:df:90:b7:6b:8a:4a:eb:4e:c2:4b:
f6:fe:dd:59:5f:0e:1d:e7:69:7a:f5:26:7f:c0:74:6f:46:75:
4a:08:07:42:63:a6:e9:08:d2:da:ab:ed:da:da:a1:64:f8:74:
df:5a:4a:c7:ad:89:ed:ae:47:f8:87:81:2c:d3:3d:79:8b:df:
a2:95:e1:cf:15:73:8f:73:ae:88:f4:ed:44:fa:ae:5e:83:93:
29:67:37:39:7b:a6:23:6e:c8:13:4b:aa:ce:12:19:da:8b:04:
e2:b3:f0:05:c2:f5:1d:e2:b2:31:78:c6:f7:7e:d1:57:91:cd:
8c:37:6f:6a:d2:1f:f9:2e:fd:a1:42:7d:0d:b3:9b:8f:cb:33:
a3:b1:6a:79:f0:a4:2b:2a:d8:e9:fe:9c:17:e8:4e:57:10:7c:
da:95:37:1c:e6:80:09:89:fe:c4:f4:94:a3:2f:db:ce:cb:a4:
1a:c7:1c:32:c3:24:63:06:83:0d:89:dc:23:fb:a4:c0:43:24:
85:61:97:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:57 2023 by rpki-client on console-ams.rpki-client.org