Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/DppDmS1J4F4p0XNGxak2ZJcZYaY.roa
File: DppDmS1J4F4p0XNGxak2ZJcZYaY.roa (raw, json)
Hash identifier: ae+7rAISD9KSb4pLnxTOChJ8WUg0c/sOy+IWdLCRIjw=
Subject key identifier: 0E:9A:43:99:2D:49:E0:5E:29:D1:73:46:C5:A9:36:64:97:19:61:A6
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 3944E9A1
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/DppDmS1J4F4p0XNGxak2ZJcZYaY.roa
Signing time: Sat 01 Jan 2022 08:05:33 +0000
ROA not before: Sat 01 Jan 2022 08:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47558
IP address blocks: 94.184.176.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960817569 (0x3944e9a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 1 08:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e9a43992d49e05e29d17346c5a93664971961a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f1:32:9c:ac:ca:67:b4:ed:d8:8b:04:2b:6b:
17:c8:31:d1:f7:eb:89:73:b9:99:f9:c5:cc:ac:2e:
50:02:c8:42:33:d3:66:c5:26:dd:ea:48:8c:34:2f:
41:33:a2:b2:ba:a9:3b:61:b1:3b:cf:c6:0b:3d:54:
4d:f2:a4:dc:fd:e9:23:60:95:0e:6a:ed:3d:0b:48:
45:3f:b0:5e:fe:17:f5:ca:b4:d5:58:14:54:e8:c1:
36:75:03:ee:32:d4:cb:6c:85:8d:c0:0b:a6:7c:42:
f4:e9:7d:cc:9d:f2:27:88:4a:26:84:b5:7c:0f:88:
d8:eb:35:9f:1c:80:2a:cb:16:c4:a2:4d:94:fb:72:
69:13:54:9e:d0:9e:0b:36:ee:99:31:17:b3:1d:4f:
20:99:5f:45:cd:d1:96:61:75:d1:84:04:09:c9:60:
8a:e2:54:8d:89:3c:47:bd:9d:11:ff:01:90:0c:6a:
ea:b7:72:cd:a8:8e:d7:c7:4b:b1:32:1c:24:18:02:
ae:f3:24:5a:72:18:1c:25:89:8c:57:e7:e4:57:8e:
25:89:be:bb:46:75:39:c9:e1:a1:ef:3b:d5:d3:5e:
e0:d2:5e:12:23:53:5d:b6:fc:3d:50:1d:b6:37:7b:
b3:21:40:1b:36:68:4b:31:8c:9a:d9:a0:6d:0e:65:
b7:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9A:43:99:2D:49:E0:5E:29:D1:73:46:C5:A9:36:64:97:19:61:A6
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/DppDmS1J4F4p0XNGxak2ZJcZYaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.184.176.0/21
Signature Algorithm: sha256WithRSAEncryption
22:93:75:b6:ff:c6:4f:9e:0c:e4:02:1a:9b:22:5b:1b:8d:90:
c6:e5:cb:f4:98:58:37:01:72:95:24:f2:d9:98:6a:ec:b0:e4:
92:25:b5:83:85:82:0d:89:0c:8c:2e:c3:d2:c2:4f:70:26:61:
03:d7:47:a6:99:c4:68:c3:8c:62:2e:bf:f7:4f:33:4c:4e:7c:
f9:a1:1d:d2:aa:d5:c8:b6:37:19:5d:d1:0c:5a:b2:fe:40:b4:
7e:97:7f:65:37:3b:33:c2:97:58:0e:38:ed:2d:97:b4:6d:dd:
30:cb:71:64:ed:18:16:41:38:73:49:79:bf:a0:f4:9d:7c:03:
3d:08:80:f4:6f:3d:53:f9:d3:65:dd:e6:54:b8:a3:1a:23:4d:
e5:84:a5:8c:0a:8f:3c:85:8f:a1:ff:df:86:55:a2:13:47:2b:
f4:2a:13:f3:d5:9b:51:9f:dc:af:d8:d1:f7:7b:1c:d2:ea:a5:
20:69:27:ec:a3:76:90:93:d4:a6:2c:b6:1e:35:40:ed:53:30:
b8:c1:0b:ed:f4:e4:e6:4d:24:6a:58:ba:eb:09:a6:b2:4a:2c:
e6:cf:bf:b7:62:b0:43:3b:44:72:1d:63:be:05:f8:d2:a1:cc:
b1:5e:df:bf:49:47:74:d4:46:20:1c:1d:e9:2e:bc:1f:c4:81:
55:04:d3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:49 2023 by rpki-client on console-fra.rpki-client.org