Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/sPPk0BTG0dhJB81LhZdIHbbkRXg.roa
File: sPPk0BTG0dhJB81LhZdIHbbkRXg.roa (raw, json)
Hash identifier: 1PVaa0nHTe9j4l4md8lzflbTQqrPgWlBWIpExhkG08o=
Subject key identifier: B0:F3:E4:D0:14:C6:D1:D8:49:07:CD:4B:85:97:48:1D:B6:E4:45:78
Certificate issuer: /CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Certificate serial: 0326A6
Authority key identifier: 4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/sPPk0BTG0dhJB81LhZdIHbbkRXg.roa
Signing time: Tue 01 Feb 2022 08:33:01 +0000
ROA not before: Tue 01 Feb 2022 08:33:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57391
IP address blocks: 94.139.176.0/20 maxlen: 20
109.162.240.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 206502 (0x326a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd74fbbbae58dd0876d99e80ec82a11a4477f7e
Validity
Not Before: Feb 1 08:33:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0f3e4d014c6d1d84907cd4b8597481db6e44578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ce:05:0a:d5:06:9c:d5:84:2f:05:b2:5a:e8:
0f:81:22:c0:76:16:85:5f:a4:ca:31:61:16:37:36:
1b:17:1d:3a:4f:3b:50:70:4c:58:0c:6e:f3:3a:88:
f9:ae:28:0e:fd:a6:35:1f:ba:48:4a:79:46:5e:be:
20:5c:4c:65:72:22:31:39:77:48:3f:7b:cf:92:52:
c5:52:48:96:c9:3e:31:91:85:0d:d0:1b:c8:74:fa:
17:80:3f:a5:35:f7:41:e2:c1:6c:ba:04:72:f4:bc:
13:99:84:7b:bb:f9:ff:9b:60:dd:36:ab:2e:dc:35:
cf:1d:42:17:76:90:3a:4f:2e:ff:2d:d2:9d:63:ea:
39:c4:bd:43:19:fe:98:04:12:75:bd:2b:49:1d:bc:
8c:5f:a0:98:85:ba:7c:a6:f3:97:e1:f5:26:0f:15:
2a:1d:25:95:ef:dc:35:4d:4d:26:38:a5:90:9e:80:
dc:1f:e2:a4:99:8c:33:fd:94:f6:27:d3:5f:b4:ba:
7a:83:ca:3a:21:12:57:7d:27:31:c3:28:89:86:45:
d7:fe:90:10:b2:af:a1:fc:eb:9f:5a:2e:84:96:a7:
e1:2b:ce:1b:f0:da:43:4f:f6:ba:cb:87:35:bd:83:
f6:04:10:e2:98:c8:d8:04:aa:30:5c:9d:62:d3:68:
3c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F3:E4:D0:14:C6:D1:D8:49:07:CD:4B:85:97:48:1D:B6:E4:45:78
X509v3 Authority Key Identifier:
keyid:4D:D7:4F:BB:BA:E5:8D:D0:87:6D:99:E8:0E:C8:2A:11:A4:47:7F:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TddPu7rljdCHbZnoDsgqEaRHf34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/sPPk0BTG0dhJB81LhZdIHbbkRXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/9f5f57-e828-4bcf-8d2b-8eab7f4fe77e/1/TddPu7rljdCHbZnoDsgqEaRHf34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.139.176.0/20
109.162.240.0/20
Signature Algorithm: sha256WithRSAEncryption
19:d1:fe:2c:d5:a6:d8:79:7d:99:54:92:f4:49:75:4e:3c:7d:
a9:8e:d8:cb:12:a9:a2:97:25:a9:20:a2:be:f5:ff:22:e3:0f:
7c:3f:b4:06:51:e0:f0:33:23:b9:d4:9b:52:7d:b7:d6:58:8a:
c1:7a:ef:52:61:bb:5f:6c:e5:18:b1:c3:a2:7b:27:29:6d:d0:
ac:3e:1f:ed:52:29:91:f7:39:85:ea:74:09:da:28:4c:53:86:
3f:4b:28:7b:c7:a6:00:5c:0e:ae:45:17:0a:9e:2b:2a:dc:d5:
b3:35:ec:a3:54:71:0e:98:49:9f:de:fa:e8:11:68:83:14:f4:
f7:00:34:c0:86:81:1d:98:8c:30:ba:b8:cd:54:ca:c0:72:e6:
f9:74:52:84:2d:c6:27:2a:e1:36:b3:fd:0c:88:0e:33:c3:4b:
e2:86:2b:09:f3:25:c2:9b:9b:88:0c:a9:92:c8:9a:1e:8d:5c:
78:fd:48:e2:17:e0:98:45:a7:b7:b7:8b:ef:d0:55:bf:1e:b8:
63:7e:7f:0b:0a:1d:9a:0b:46:2c:43:ea:74:9b:db:d5:99:62:
52:a1:4a:07:06:0c:97:bf:f3:ad:ad:1f:71:e4:b9:8f:04:3e:
4a:46:09:74:ad:9b:39:10:74:3e:3e:b5:66:ec:75:7c:3f:8c:
db:87:02:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:21 2024 by rpki-client on console-fra.rpki-client.org