Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/4lpqUNaLr4weaBlL0qHb-eS9UFU.roa
File: 4lpqUNaLr4weaBlL0qHb-eS9UFU.roa (raw, json)
Hash identifier: G7Mn7tBbdG33GEX71wE3OamagUo/FHQ3DJkP72AwYUA=
Subject key identifier: E2:5A:6A:50:D6:8B:AF:8C:1E:68:19:4B:D2:A1:DB:F9:E4:BD:50:55
Certificate issuer: /CN=1149bd5764a8bb849fea2c54069ac423120250ba
Certificate serial: 01821CFE4DED4E4E04C746EFA612C6456174
Authority key identifier: 11:49:BD:57:64:A8:BB:84:9F:EA:2C:54:06:9A:C4:23:12:02:50:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUm9V2Sou4Sf6ixUBprEIxICULo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/4lpqUNaLr4weaBlL0qHb-eS9UFU.roa
Signing time: Wed 20 Jul 2022 19:03:24 +0000
ROA not before: Wed 20 Jul 2022 19:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 996
IP address blocks: 94.103.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1c:fe:4d:ed:4e:4e:04:c7:46:ef:a6:12:c6:45:61:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1149bd5764a8bb849fea2c54069ac423120250ba
Validity
Not Before: Jul 20 19:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e25a6a50d68baf8c1e68194bd2a1dbf9e4bd5055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:33:45:c4:74:be:cf:7f:05:01:8a:b1:4d:5e:
ce:d9:ef:e0:21:1e:5e:b7:cf:7e:80:8f:02:3c:cc:
c9:cf:b4:a1:b9:73:8b:cd:6e:37:83:df:4d:2c:bd:
87:e8:e5:88:ca:1b:b6:d1:b6:e9:b1:12:6a:3c:72:
16:d2:82:f6:b7:e5:fd:38:ee:4a:a7:1f:70:a1:f5:
e7:b5:be:34:d1:02:d7:35:fb:23:ab:8d:4c:d0:c8:
de:88:e2:a5:b7:16:3f:f0:3d:36:0f:2d:76:89:cc:
10:30:11:05:da:fe:ab:36:ce:de:99:24:53:9b:46:
22:4e:74:55:f1:70:cc:40:02:6b:e8:12:ea:57:62:
00:05:f2:e4:d7:1d:29:47:36:14:c7:b3:5b:29:c6:
6f:a6:b2:72:26:ea:f4:d5:b7:ab:85:96:68:95:04:
bd:a3:0e:37:89:b4:f2:d0:3d:b6:ee:cd:53:71:bb:
3e:24:98:f4:d4:da:ed:ce:21:1a:0f:bb:86:72:9b:
27:c9:06:a5:df:a8:66:5d:13:14:20:f0:c4:a0:e7:
31:84:12:7e:8e:9b:82:d7:bb:ad:b4:a4:d6:ad:04:
a4:86:09:b5:fc:cf:2c:bf:fe:e5:8c:d6:2c:59:74:
d7:69:80:67:8f:ab:04:0f:05:f6:6b:4e:fb:cc:e2:
f1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:5A:6A:50:D6:8B:AF:8C:1E:68:19:4B:D2:A1:DB:F9:E4:BD:50:55
X509v3 Authority Key Identifier:
keyid:11:49:BD:57:64:A8:BB:84:9F:EA:2C:54:06:9A:C4:23:12:02:50:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUm9V2Sou4Sf6ixUBprEIxICULo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/4lpqUNaLr4weaBlL0qHb-eS9UFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/EUm9V2Sou4Sf6ixUBprEIxICULo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.191.0/24
Signature Algorithm: sha256WithRSAEncryption
52:3f:04:01:a0:b6:11:26:c9:35:c0:b0:f9:a5:84:43:af:7d:
e8:01:23:ce:b7:88:41:d8:50:86:90:2b:e4:3e:fc:4f:88:1f:
ac:cd:7d:78:f5:1d:25:92:a1:4a:6f:44:f6:d1:86:0a:8c:d0:
ee:7c:fb:de:c7:13:65:e0:41:77:db:e5:a6:0d:71:1f:77:4e:
c6:43:1c:f3:96:90:85:5a:ec:0f:6c:a0:23:d0:03:97:8c:a9:
c3:0c:92:02:49:20:6f:72:a4:6b:af:96:46:32:00:4d:e4:eb:
74:da:93:d3:9e:d1:d1:0b:4b:03:52:75:e8:3e:75:e1:63:39:
da:1a:cf:23:75:11:35:53:52:81:ff:54:3a:c1:92:29:b9:b6:
24:4b:35:ac:ab:7f:a9:b0:9b:e1:e1:fb:6d:fd:69:db:60:7f:
79:6c:72:97:b0:a5:14:6c:f6:37:3e:f4:9f:3d:00:38:f8:f1:
cb:f5:4e:2e:7f:fe:0e:a9:ef:10:a4:19:aa:9f:a0:9f:f6:8a:
d1:78:1a:f2:f2:e7:9d:56:c7:8b:d9:05:e5:f9:d3:93:80:34:
61:ee:70:24:ca:3e:93:e3:e9:99:a3:7d:89:40:b1:10:76:7e:
f3:f2:d3:9a:52:51:f0:dd:93:f0:80:c7:a9:f7:1a:63:cd:f4:
27:37:46:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:35 2023 by rpki-client on console-ams.rpki-client.org