Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/sn8S2z8in4lkrUoiWs-puxvU3NU.roa
File: sn8S2z8in4lkrUoiWs-puxvU3NU.roa (raw, json)
Hash identifier: zrFvJ8sN+Op3MNYDgKtutbzE7dhqMFPy8o3RR5tBOwM=
Subject key identifier: B2:7F:12:DB:3F:22:9F:89:64:AD:4A:22:5A:CF:A9:BB:1B:D4:DC:D5
Certificate issuer: /CN=89da60f049dfba34be4b4e8418b9ff492125c449
Certificate serial: 37F2734F
Authority key identifier: 89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/sn8S2z8in4lkrUoiWs-puxvU3NU.roa
Signing time: Sat 01 Jan 2022 06:52:51 +0000
ROA not before: Sat 01 Jan 2022 06:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25465
IP address blocks: 94.207.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 938636111 (0x37f2734f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89da60f049dfba34be4b4e8418b9ff492125c449
Validity
Not Before: Jan 1 06:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b27f12db3f229f8964ad4a225acfa9bb1bd4dcd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ec:3a:ac:db:e9:57:f2:ca:b8:01:39:04:cd:
b3:26:de:a2:ae:3c:fb:cb:c6:83:bf:23:2a:ea:bd:
52:8b:3b:71:65:4c:55:f2:60:33:4e:e3:5d:35:c5:
b6:99:ba:b7:4a:65:c9:14:33:ec:d7:19:f7:2b:ea:
4b:2d:43:e0:6c:b4:db:ee:55:4b:43:b6:26:33:ca:
79:7b:64:ef:1a:fc:61:e8:7d:2b:7e:85:b8:e6:7a:
16:fe:a3:1d:f7:d9:56:a6:b2:ec:f7:c9:85:cf:97:
22:f1:60:ed:f0:e0:c5:30:eb:0c:1f:41:b0:cc:5a:
20:6b:15:8e:52:c4:ee:b8:b1:2c:7d:29:76:71:38:
fb:2c:5f:00:b9:d4:34:f8:4a:6b:fc:4c:b4:3a:41:
97:92:d7:47:1a:7f:af:dc:a2:ff:30:bf:05:cb:9a:
e2:03:8e:9b:dd:a9:04:8c:d6:1b:2b:ab:1e:81:6f:
c7:42:3c:a9:e2:27:4a:7d:88:33:6a:b6:7d:ae:51:
07:b9:21:7c:b4:20:ec:fd:b7:22:46:a4:aa:06:87:
be:d4:a8:3d:c8:88:18:30:0b:43:fc:27:53:14:da:
be:3e:9f:e1:4f:12:2a:99:64:37:2c:7e:2c:36:0b:
8c:a0:5b:00:aa:14:ba:80:b7:b1:1d:cf:16:84:26:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7F:12:DB:3F:22:9F:89:64:AD:4A:22:5A:CF:A9:BB:1B:D4:DC:D5
X509v3 Authority Key Identifier:
keyid:89:DA:60:F0:49:DF:BA:34:BE:4B:4E:84:18:B9:FF:49:21:25:C4:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/idpg8EnfujS-S06EGLn_SSElxEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/sn8S2z8in4lkrUoiWs-puxvU3NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de477f-0785-4026-83be-69890c829e33/1/idpg8EnfujS-S06EGLn_SSElxEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.207.41.0/24
Signature Algorithm: sha256WithRSAEncryption
49:36:7b:79:18:db:eb:20:bd:74:ce:fb:16:78:f4:af:44:02:
13:9f:50:53:f9:f3:ea:bd:4f:50:2d:97:2c:e9:61:d8:04:b5:
01:06:2a:81:3a:86:4b:e8:8b:89:c2:5f:b6:8d:f5:1e:d9:5a:
e7:af:e1:07:1d:c7:26:22:2a:99:be:83:10:dc:fe:9a:58:fa:
18:a0:a3:8e:ba:2f:6f:3d:da:1d:1e:f1:ec:19:30:d0:dc:a1:
4f:f9:a7:d9:7e:09:04:61:db:31:fe:38:a2:94:1b:69:d8:db:
7d:2f:6d:57:73:74:66:49:4d:56:40:6c:ee:67:84:72:a2:07:
d4:69:56:47:88:62:7f:d5:ed:79:a1:21:6d:10:d8:fa:fd:25:
06:f8:12:3c:a5:cd:7c:6d:ab:27:5f:92:bb:a7:e1:3d:b6:e8:
13:8b:36:aa:d9:97:76:cb:75:a0:b1:74:22:8b:e9:a1:be:2c:
89:69:5f:0d:1b:40:cf:04:c8:b5:17:f7:e1:cc:8d:30:2a:10:
f0:6c:c8:f6:f5:61:2f:40:84:86:3b:9d:27:b6:f7:84:b1:cf:
b6:b2:b9:34:a3:f2:1f:ed:9b:2a:12:93:86:f1:f9:e1:e1:1d:
42:9a:2a:f0:65:fa:e1:71:53:35:ad:48:83:16:59:c5:d9:9b:
fa:8e:7b:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org