Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/eOMHp0mHgDF9VVEZ37Zv4HAD3Y0.roa
File: eOMHp0mHgDF9VVEZ37Zv4HAD3Y0.roa (raw, json)
Hash identifier: 9DbG5GVSRNjvRxs8RmaGUKY7Dcs3i/VC3TGJ08qYnc4=
Subject key identifier: 78:E3:07:A7:49:87:80:31:7D:55:51:19:DF:B6:6F:E0:70:03:DD:8D
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 152217B9
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/eOMHp0mHgDF9VVEZ37Zv4HAD3Y0.roa
Signing time: Sat 01 Jan 2022 09:58:14 +0000
ROA not before: Sat 01 Jan 2022 09:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199363
IP address blocks: 94.240.38.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 354555833 (0x152217b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Jan 1 09:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78e307a7498780317d555119dfb66fe07003dd8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:14:c6:ac:a8:d0:a9:3b:1e:0a:60:03:f8:cb:
5f:58:da:37:ed:3b:73:27:07:a8:de:4c:7d:62:91:
3f:74:64:31:6e:79:80:94:96:6f:04:2b:40:1b:82:
19:eb:e0:a8:c7:c5:96:d6:66:7d:8c:1c:7d:80:e9:
3e:ef:b5:9a:34:09:b4:ba:ed:6b:9a:2e:45:35:64:
a6:b1:5d:32:0b:c3:fa:33:4f:61:52:e7:03:54:16:
15:6e:77:b4:36:5d:a4:c5:36:d0:54:4b:1a:3e:47:
4b:b8:02:df:b6:90:60:68:c6:44:54:f4:1e:1b:ab:
a3:89:2a:bb:85:2c:85:f8:63:7c:2b:b3:35:ba:a3:
07:f9:11:3c:5d:c1:b7:97:66:13:d4:61:8a:9a:22:
8a:c6:11:ca:dc:c8:40:26:74:c0:43:be:75:6e:e8:
62:7e:c4:45:6b:20:56:be:e0:d9:94:09:a4:f1:7e:
9d:53:61:08:ee:43:2f:4b:89:59:00:2f:a6:4c:58:
2e:b5:fe:61:35:1a:95:68:07:3a:12:60:e6:e2:cc:
a4:5d:a8:43:e2:34:e3:04:1c:72:7b:04:0f:63:bc:
66:86:9c:6b:7b:ad:a3:a9:fd:14:b7:1a:51:8c:4b:
6f:31:bc:9e:f9:74:33:fe:c6:ac:98:dc:0a:f6:6d:
ba:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:E3:07:A7:49:87:80:31:7D:55:51:19:DF:B6:6F:E0:70:03:DD:8D
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/eOMHp0mHgDF9VVEZ37Zv4HAD3Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.240.38.0/23
Signature Algorithm: sha256WithRSAEncryption
7a:31:e6:d0:19:e9:02:69:c0:e1:88:39:14:fe:a1:cb:55:8c:
62:87:e7:2a:63:b7:50:7f:61:09:45:b2:60:a9:db:81:6c:3d:
be:42:3a:b6:37:6d:15:b2:41:08:8e:78:c1:80:58:1b:9a:07:
65:18:c4:9f:e3:2f:9a:31:e9:be:d6:fb:17:75:45:37:12:3e:
8e:be:4f:22:64:5a:b1:ba:9f:9d:7e:3d:ef:46:2a:67:b2:9d:
9b:65:15:e1:12:38:e9:2a:45:de:18:c6:20:74:8d:9a:30:07:
3b:be:15:b2:f1:47:26:ab:fe:54:a0:a4:6a:f7:10:f8:fd:4e:
e0:8f:04:7d:40:ef:40:c1:5d:a2:5c:89:4a:63:46:9d:b5:d9:
de:1c:5a:65:d0:29:67:e8:2e:51:7a:da:ce:45:f8:7f:95:97:
1f:73:a7:ef:77:10:ae:68:87:b5:01:d5:96:3f:02:dd:60:1e:
d2:2e:1a:7f:5d:2a:8d:33:7b:83:76:e1:3b:40:36:ba:37:4d:
37:fb:43:53:e0:94:0d:17:78:96:b6:1b:ba:84:ef:13:43:b5:
89:28:ed:07:2d:af:be:81:e0:48:86:ab:88:f6:5d:a6:52:17:
89:37:79:77:c9:92:99:61:e3:3c:45:41:fb:44:00:58:68:75:
25:ba:08:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:12 2024 by rpki-client on console-ams.rpki-client.org