Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/gfjQxiS9rkkfGJ27sfy88Vzx2zw.roa
File: gfjQxiS9rkkfGJ27sfy88Vzx2zw.roa (raw, json)
Hash identifier: bZuUYR7wRFupp2xPpyTayPCEF2w+MoxXIwaYtdysEAA=
Subject key identifier: 81:F8:D0:C6:24:BD:AE:49:1F:18:9D:BB:B1:FC:BC:F1:5C:F1:DB:3C
Certificate issuer: /CN=ca19abeb8ab9e63890a223c2fd6ba568498bdbba
Certificate serial: 0A5B96CC
Authority key identifier: CA:19:AB:EB:8A:B9:E6:38:90:A2:23:C2:FD:6B:A5:68:49:8B:DB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yhmr64q55jiQoiPC_WulaEmL27o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/gfjQxiS9rkkfGJ27sfy88Vzx2zw.roa
Signing time: Sat 01 Jan 2022 08:53:31 +0000
ROA not before: Sat 01 Jan 2022 08:53:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48918
IP address blocks: 94.186.128.0/17 maxlen: 24
2a02:c98::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173774540 (0xa5b96cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca19abeb8ab9e63890a223c2fd6ba568498bdbba
Validity
Not Before: Jan 1 08:53:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81f8d0c624bdae491f189dbbb1fcbcf15cf1db3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:2d:6a:84:22:a3:f1:fd:16:9a:75:c1:14:25:
d5:4b:ee:b2:d3:5a:03:36:8e:c9:0d:98:e6:ab:4d:
4c:da:6d:f3:61:47:4f:dd:bc:93:0b:bb:80:d5:3e:
49:86:61:e2:45:45:67:29:bd:6f:12:4f:94:13:d9:
ee:66:20:4a:f8:8f:1f:0b:83:f8:b6:53:31:f2:e5:
15:d2:80:a9:29:58:fe:5b:8b:c6:d1:4c:49:54:55:
a3:0a:a9:de:4f:dd:e1:54:b7:9b:04:c7:b2:98:f7:
1e:e2:5e:80:1f:0b:69:4c:ee:11:ba:cf:9a:ee:27:
e8:00:f2:22:86:59:fd:88:63:dd:96:da:f6:b4:95:
b5:ae:39:44:03:7d:45:68:31:19:7c:e1:75:d6:2c:
db:2e:9a:e0:a7:cf:60:65:1e:46:14:7d:e4:bd:71:
01:50:20:77:bf:b9:26:64:42:1f:7d:9a:39:77:1c:
cf:ff:28:18:2a:e9:1c:14:ce:ac:e6:b7:36:de:a2:
43:16:cc:fc:56:05:cc:13:2b:a0:bc:7c:f8:c7:7b:
55:6c:e1:c8:27:32:a6:e1:34:bc:5d:02:ec:7f:d9:
53:d5:0a:e7:1d:cd:c1:3b:91:e0:cc:23:90:ea:6a:
df:dc:9c:b5:93:fe:27:5c:ec:10:3f:18:62:f1:47:
45:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F8:D0:C6:24:BD:AE:49:1F:18:9D:BB:B1:FC:BC:F1:5C:F1:DB:3C
X509v3 Authority Key Identifier:
keyid:CA:19:AB:EB:8A:B9:E6:38:90:A2:23:C2:FD:6B:A5:68:49:8B:DB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yhmr64q55jiQoiPC_WulaEmL27o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/gfjQxiS9rkkfGJ27sfy88Vzx2zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/b17e1d-fd91-4923-9d3c-13bbcd0f9376/1/yhmr64q55jiQoiPC_WulaEmL27o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.186.128.0/17
IPv6:
2a02:c98::/32
Signature Algorithm: sha256WithRSAEncryption
b1:f5:be:cb:02:17:83:f3:d5:06:fe:70:6c:0e:ae:40:45:a4:
d0:a0:3c:70:1b:57:73:b9:58:a1:8c:51:f5:51:dc:6c:6f:6f:
13:b9:d2:49:09:7d:68:86:4e:68:8d:02:b9:ff:55:ce:e8:f6:
b7:65:45:a7:80:d6:05:b2:8c:20:aa:06:ae:fb:02:8a:f8:4e:
a2:be:2a:cf:0d:a6:a4:4a:eb:75:8e:c4:32:8b:cb:ad:c1:b9:
b3:06:7e:c4:8e:21:90:b6:fd:71:28:49:51:8d:b3:2a:07:58:
74:c0:e1:2c:05:06:73:ca:2b:70:43:b2:9c:5d:73:cc:4d:b2:
70:21:a7:36:e6:fb:76:e6:c6:5a:ad:66:61:96:19:a8:33:c0:
a7:3a:2e:88:4c:bc:14:0d:40:08:2f:be:e0:ac:17:16:a9:e5:
3b:6d:7b:02:00:27:10:66:7c:33:01:05:4c:33:d1:db:39:79:
8e:49:78:84:e4:57:16:a8:5f:db:1e:ab:e0:09:3e:96:57:c5:
db:06:40:98:de:77:75:2e:02:05:b3:3b:c5:7f:cd:89:01:9c:
85:5e:c6:79:52:a2:a4:c2:d5:7e:c8:80:e6:36:bf:49:e9:2a:
78:b3:3d:76:9a:f6:77:56:40:5c:9a:3b:ad:1e:07:52:70:7a:
f8:4e:34:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:49 2024 by rpki-client on console-fra.rpki-client.org