Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/94a6b8-39d3-4f79-ae25-a95511ba4d46/1/EW9qgBSRlPt5hB8rzDd1kkqf5OE.roa
File: EW9qgBSRlPt5hB8rzDd1kkqf5OE.roa (raw, json)
Hash identifier: 1UlMuz6g4QgNGMoLVm2JYC/ostvOg/dCUhNeAFdFjmI=
Subject key identifier: 11:6F:6A:80:14:91:94:FB:79:84:1F:2B:CC:37:75:92:4A:9F:E4:E1
Certificate issuer: /CN=38083044fb6c43bffad5fd54b07d2cc7c00d1bd3
Certificate serial: 018BD29D57B235B6F25538A195831BD2E118
Authority key identifier: 38:08:30:44:FB:6C:43:BF:FA:D5:FD:54:B0:7D:2C:C7:C0:0D:1B:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAgwRPtsQ7_61f1UsH0sx8ANG9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/94a6b8-39d3-4f79-ae25-a95511ba4d46/1/EW9qgBSRlPt5hB8rzDd1kkqf5OE.roa
Signing time: Wed 15 Nov 2023 10:53:28 +0000
ROA not before: Wed 15 Nov 2023 10:53:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 94.101.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:9d:57:b2:35:b6:f2:55:38:a1:95:83:1b:d2:e1:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38083044fb6c43bffad5fd54b07d2cc7c00d1bd3
Validity
Not Before: Nov 15 10:53:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=116f6a80149194fb79841f2bcc3775924a9fe4e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:c1:99:51:04:56:dd:36:0f:82:8b:66:41:c4:
05:9c:24:f8:97:8b:ae:00:df:bf:50:a1:3a:42:b3:
9a:e6:a7:26:e8:3a:6d:f1:57:03:73:28:cd:d1:d8:
87:14:47:a8:36:c6:d7:01:a9:8d:a9:97:9d:ce:11:
0e:f3:bb:7a:64:30:bc:80:ac:fa:19:00:42:8e:1b:
d7:32:2f:dd:77:62:67:76:e6:c6:87:1a:37:14:b0:
7c:67:38:fb:64:68:6d:04:a3:a4:86:68:07:61:c0:
96:ce:e0:4d:8f:13:36:4c:00:0f:1d:da:b3:90:95:
ef:91:3a:51:37:ee:30:37:2d:92:0b:15:25:66:9b:
a7:2f:d7:59:16:4e:57:99:94:69:51:27:28:50:2b:
87:3c:e1:f3:ab:98:02:8f:49:02:ca:d7:38:59:f1:
c4:41:5f:6c:7e:09:1f:20:c0:e0:4a:ca:2b:bb:12:
38:d9:e3:96:11:6e:d5:f9:23:95:fa:15:00:83:df:
32:cc:41:b6:8d:d7:9d:f3:47:92:df:6b:49:a5:ce:
6d:c4:aa:8b:e8:8f:80:25:2a:f0:8a:95:bb:35:e8:
c8:ca:3e:16:b5:28:82:fe:29:42:ea:83:45:5b:14:
8f:b2:cc:6a:f6:32:86:a4:0b:55:35:81:48:dc:1e:
a1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:6F:6A:80:14:91:94:FB:79:84:1F:2B:CC:37:75:92:4A:9F:E4:E1
X509v3 Authority Key Identifier:
keyid:38:08:30:44:FB:6C:43:BF:FA:D5:FD:54:B0:7D:2C:C7:C0:0D:1B:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAgwRPtsQ7_61f1UsH0sx8ANG9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/94a6b8-39d3-4f79-ae25-a95511ba4d46/1/EW9qgBSRlPt5hB8rzDd1kkqf5OE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/94a6b8-39d3-4f79-ae25-a95511ba4d46/1/OAgwRPtsQ7_61f1UsH0sx8ANG9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.101.99.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:75:f0:f4:80:2c:4e:bc:13:20:36:e0:4f:9c:7d:3a:39:2b:
8b:78:87:d1:a0:15:65:01:bf:63:85:7b:1f:e9:8b:65:c7:37:
a9:7f:b8:69:50:7a:6e:fb:81:e6:fb:1c:5e:79:b8:a4:ca:45:
6e:51:40:1c:60:4d:c8:75:37:28:eb:07:88:59:8e:ea:88:b3:
14:3a:01:15:93:72:9d:b8:8c:d1:74:70:0f:3f:13:a5:d8:c1:
f9:56:a9:ea:60:9f:ce:6d:60:24:e9:64:8b:b7:8b:64:69:a1:
65:14:1e:87:5d:56:27:b0:dd:f3:1a:52:13:4f:2e:df:48:73:
12:c1:e8:a2:4e:7c:21:cf:17:42:b0:35:b0:50:f8:16:99:1f:
60:3b:fc:45:36:0d:69:36:16:81:f9:58:e2:8f:61:cb:9b:4a:
f0:48:a4:fe:d1:03:6d:70:44:90:e1:59:7d:a6:55:39:6e:82:
ae:ec:55:ee:9c:46:f0:f5:7b:2c:a2:c4:ad:f6:9a:cf:c5:d0:
13:af:ee:83:c3:e7:4b:3d:2b:9b:6e:7e:6e:a1:37:ad:23:a2:
88:b2:26:5e:b8:22:97:eb:b0:58:51:c1:68:e2:c1:9a:01:d7:
d9:38:b2:f0:25:56:93:d0:32:a9:a1:0c:90:2e:cd:ec:e3:f1:
89:a8:67:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 20:16:21 2025 by rpki-client