Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/ClTPrHzXjXp1f0XLWLvsOFHYzac.roa
File: ClTPrHzXjXp1f0XLWLvsOFHYzac.roa (raw, json)
Hash identifier: IsDP1hOLQ06w64eYA5722B/VX509oC60EkMOLNmSS8U=
Subject key identifier: 0A:54:CF:AC:7C:D7:8D:7A:75:7F:45:CB:58:BB:EC:38:51:D8:CD:A7
Certificate issuer: /CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Certificate serial: 018738115BEFBE8B3778A632BE121FD6058E
Authority key identifier: B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/ClTPrHzXjXp1f0XLWLvsOFHYzac.roa
Signing time: Fri 31 Mar 2023 14:27:54 +0000
ROA not before: Fri 31 Mar 2023 14:27:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48108
IP address blocks: 94.247.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:38:11:5b:ef:be:8b:37:78:a6:32:be:12:1f:d6:05:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b35002ba088d5bd09c1553dced5b0bf3907ff736
Validity
Not Before: Mar 31 14:27:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a54cfac7cd78d7a757f45cb58bbec3851d8cda7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9e:a2:57:61:33:0d:32:b1:ee:da:2a:f5:58:
c5:ea:e1:3f:b1:bf:86:d1:2d:f6:62:0d:c5:01:97:
83:14:db:82:07:2a:0c:7a:d9:e1:65:76:a5:76:bb:
a1:53:4f:b9:5f:76:bc:a5:b0:c5:f6:8a:46:a0:4b:
7d:a9:49:32:5a:1b:47:bc:ad:61:81:25:79:bb:b3:
40:10:9c:e9:5e:d8:05:c9:c6:c4:43:ba:ea:7e:9a:
3e:b1:58:a3:37:49:db:31:0b:18:b4:51:b9:bb:31:
c7:69:a4:32:8f:8a:e2:3c:80:66:6c:6c:5d:d4:8a:
31:2b:93:7d:fa:d1:33:7c:a0:89:8f:87:50:80:f0:
93:35:06:22:82:9d:ab:7e:42:fe:ff:ca:7e:26:a1:
01:5c:9d:f2:ae:2f:7a:5b:eb:e0:6f:4c:8c:cc:a3:
88:2f:22:f1:61:b8:4d:74:fd:6f:4f:f4:b3:6c:d5:
ca:6e:16:9a:bf:da:d2:7c:5d:30:0c:84:ab:96:dc:
25:f6:d3:06:32:2e:82:b6:f9:e3:eb:de:2e:f1:db:
fa:04:d5:33:04:8d:33:11:fc:5c:98:f8:b0:3b:aa:
42:30:d5:36:54:39:f6:d5:14:cc:e4:ae:bf:d4:4e:
cc:c9:c6:9e:3e:b5:87:0e:a4:db:8f:70:90:5b:aa:
c5:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:54:CF:AC:7C:D7:8D:7A:75:7F:45:CB:58:BB:EC:38:51:D8:CD:A7
X509v3 Authority Key Identifier:
keyid:B3:50:02:BA:08:8D:5B:D0:9C:15:53:DC:ED:5B:0B:F3:90:7F:F7:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s1ACugiNW9CcFVPc7VsL85B_9zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/ClTPrHzXjXp1f0XLWLvsOFHYzac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/fe4b06-fc2e-4bcb-877e-af1ef1d7afb8/1/s1ACugiNW9CcFVPc7VsL85B_9zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.247.137.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:49:ce:2e:c7:b6:e0:c9:fa:eb:49:28:9c:6d:e5:99:f8:50:
e3:5a:93:9f:af:04:ac:3b:1d:9b:43:84:ca:65:b9:57:e7:c4:
b8:e8:ba:c0:5d:62:d0:7a:d6:da:12:dc:63:59:3f:e3:0d:f0:
16:5c:0e:2c:88:26:c8:25:37:19:0f:bb:ab:6f:8e:2f:e3:2f:
9c:24:18:c1:84:48:1a:c5:78:a4:d9:65:df:f3:bb:71:43:4b:
e2:ee:99:d2:c5:c8:50:d0:28:07:37:d3:62:35:af:39:6d:7a:
40:82:ef:88:5c:02:14:24:9f:6f:8c:a9:71:a3:6e:82:fd:e1:
6c:fb:28:c5:b8:f7:a8:cb:da:70:8d:bf:9c:58:74:d5:88:06:
25:46:63:58:61:fd:6c:8d:f2:96:ea:a7:18:ed:5d:0c:60:c0:
9a:7e:ee:af:85:38:1a:46:da:c7:36:d8:b6:da:04:fe:c2:69:
43:53:4c:af:97:fa:60:35:8d:47:f1:f8:a6:f9:e6:b2:93:48:
9d:08:a5:01:90:26:10:01:d0:20:a2:77:71:41:fe:91:0a:e7:
60:8a:79:12:f2:e5:13:e0:02:9a:69:ad:53:97:60:57:b2:aa:
8d:4b:b1:92:e6:29:ad:5e:bd:83:70:ba:9e:bf:c2:11:ce:cb:
2c:e9:91:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:23:53 2025 by rpki-client