Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/yA0OxhomJtaj2MOSAmDdsnLLj60.roa
File: yA0OxhomJtaj2MOSAmDdsnLLj60.roa (raw, json)
Hash identifier: 3TNCNoT6+sSc+THLlUtdhDKizYQhswWymn2ln0pMkck=
Subject key identifier: C8:0D:0E:C6:1A:26:26:D6:A3:D8:C3:92:02:60:DD:B2:72:CB:8F:AD
Certificate issuer: /CN=55d5dc9e220112a27c152bc32389038974ae4572
Certificate serial: 03C0163A
Authority key identifier: 55:D5:DC:9E:22:01:12:A2:7C:15:2B:C3:23:89:03:89:74:AE:45:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VdXcniIBEqJ8FSvDI4kDiXSuRXI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/yA0OxhomJtaj2MOSAmDdsnLLj60.roa
Signing time: Sat 01 Jan 2022 02:58:56 +0000
ROA not before: Sat 01 Jan 2022 02:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12586
IP address blocks: 94.100.130.0/24 maxlen: 32
2a01:6780:8::/48 maxlen: 128
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62920250 (0x3c0163a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55d5dc9e220112a27c152bc32389038974ae4572
Validity
Not Before: Jan 1 02:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c80d0ec61a2626d6a3d8c3920260ddb272cb8fad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f7:1a:0b:d7:db:aa:fb:8f:60:c7:8a:9e:73:
f0:d8:53:d0:40:0b:42:d4:77:0c:c9:a3:32:2e:d9:
57:02:9a:df:a2:1b:f9:a9:16:c9:87:3d:8a:1e:75:
ef:f6:5d:51:50:83:3b:04:99:02:32:01:ae:39:5a:
9d:af:09:c4:3e:3e:89:60:45:ad:c8:b7:6a:38:ad:
31:cd:6c:a5:d8:6d:af:92:d7:6f:17:94:91:07:a2:
11:57:4a:50:b3:3f:65:11:1f:55:01:eb:a1:0a:78:
88:5d:3e:79:4e:51:81:71:52:ed:5e:3e:dd:88:ef:
ed:69:db:55:77:83:5a:fa:8e:24:06:69:2d:56:23:
54:d6:f2:11:7a:c9:81:10:9b:41:d9:15:2c:3e:4f:
96:2c:5a:3a:57:74:4e:4b:c7:e0:78:5b:92:e7:9f:
15:93:db:7c:a2:5e:b3:28:b7:0a:48:f0:23:b8:0e:
ac:8d:fa:fc:07:4b:ea:1d:18:66:7e:b4:ff:a4:0a:
f5:22:b8:ce:5c:a7:8d:0a:12:33:14:8a:6c:3f:a9:
34:b0:ae:2b:4a:7f:0c:ff:58:d4:6f:b3:94:a2:73:
dd:5e:eb:b5:0c:3f:f7:2e:06:58:10:aa:e7:d3:32:
1e:8b:ed:60:a7:0b:a9:c8:10:6b:f7:1a:18:30:e5:
bd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:0D:0E:C6:1A:26:26:D6:A3:D8:C3:92:02:60:DD:B2:72:CB:8F:AD
X509v3 Authority Key Identifier:
keyid:55:D5:DC:9E:22:01:12:A2:7C:15:2B:C3:23:89:03:89:74:AE:45:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VdXcniIBEqJ8FSvDI4kDiXSuRXI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/yA0OxhomJtaj2MOSAmDdsnLLj60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d8ed41-71f6-4bb7-a3ee-a0bb140a596e/1/VdXcniIBEqJ8FSvDI4kDiXSuRXI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.100.130.0/24
IPv6:
2a01:6780:8::/48
Signature Algorithm: sha256WithRSAEncryption
55:cc:24:20:23:8c:02:44:aa:0b:5d:ac:c1:c5:44:fc:ea:58:
81:26:00:df:9a:bd:4a:46:e8:7e:69:c2:77:97:7a:3b:db:d6:
83:d9:1c:b6:6d:2d:1b:0b:f6:4c:6a:6b:5c:8b:24:34:97:43:
a8:d6:ce:2a:69:3b:cd:90:19:b5:41:85:f5:b3:6f:71:82:ad:
f9:99:88:8c:72:eb:29:bf:dc:aa:4c:bf:dc:7e:40:1b:eb:ca:
40:3b:44:24:67:bb:96:23:d3:81:8d:56:f1:8e:39:70:8c:b4:
ce:67:9b:e1:33:ea:70:f2:71:70:d1:57:29:a6:3a:ac:eb:57:
bf:c2:f6:67:ff:a5:ff:ce:8e:6d:cd:bc:dc:73:b2:4f:2b:a7:
0c:71:97:19:6b:58:48:04:89:31:b9:98:ca:df:d7:e8:76:3a:
07:db:0d:ce:77:ba:98:01:e4:23:98:a8:56:8f:19:d7:db:6f:
38:cd:cc:35:58:c7:33:30:97:ca:2f:64:26:ae:aa:09:ff:04:
be:bf:2e:e9:55:38:18:e0:c6:f2:74:b0:95:ad:10:e2:e2:dd:
ca:16:e4:5c:e5:5d:fe:b5:03:96:01:91:4c:0d:29:bb:fd:8a:
06:73:e1:45:e9:cb:e9:e2:05:ff:fd:31:63:68:92:dc:41:71:
16:c9:da:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:51 2023 by rpki-client on console-ams.rpki-client.org