Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/I_vOttY9qjEziyzgHpakd6eSRCI.roa
File: I_vOttY9qjEziyzgHpakd6eSRCI.roa (raw, json)
Hash identifier: 9hZLVX7qR4qxFTX3M8dhFTK+ToSL6w8GCKepj/i0Jpc=
Subject key identifier: 23:FB:CE:B6:D6:3D:AA:31:33:8B:2C:E0:1E:96:A4:77:A7:92:44:22
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 07F65B91
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/I_vOttY9qjEziyzgHpakd6eSRCI.roa
Signing time: Sat 01 Jan 2022 03:02:05 +0000
ROA not before: Sat 01 Jan 2022 03:02:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56630
IP address blocks: 94.241.128.0/22 maxlen: 24
178.253.8.0/22 maxlen: 24
94.241.184.0/22 maxlen: 24
178.253.48.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133585809 (0x7f65b91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Jan 1 03:02:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23fbceb6d63daa31338b2ce01e96a477a7924422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:9a:0c:1f:00:d2:cf:42:f0:49:31:9a:91:b7:
e8:b9:a8:07:df:5a:72:6b:07:8f:2e:32:dc:9c:11:
73:c7:50:18:52:26:a5:38:af:f2:29:09:c8:bb:35:
4a:36:cb:53:64:bf:67:48:34:11:1d:dc:e7:85:25:
fa:3e:91:1b:95:7c:5c:2d:c2:5d:56:4e:59:b7:1f:
b6:28:fc:c6:98:a2:9e:80:f4:f8:05:64:7d:ce:9c:
63:5e:90:57:41:99:94:24:05:ec:09:d2:b1:73:42:
65:69:6b:3b:88:e9:e5:61:42:5c:b7:46:c4:1e:f6:
ab:64:dc:cc:66:f5:2f:3d:95:e5:e7:1f:0d:e0:e5:
8f:07:e9:53:b6:d8:3b:0e:88:12:d8:de:41:33:92:
75:85:1b:c8:7c:c3:7d:6e:fb:62:1b:c4:c1:86:2b:
f4:cf:07:a9:97:0b:b9:86:45:12:1e:6b:d2:a9:71:
8b:37:7f:bf:dd:76:63:34:c8:4b:f8:b5:77:63:3f:
18:11:10:d8:5d:f9:1d:3b:a4:50:49:79:e0:b8:6d:
cf:96:ee:73:d0:27:1b:a1:e3:56:59:74:c7:e3:9b:
77:1d:fe:be:78:3a:33:a2:f8:48:38:8f:a5:78:37:
ac:13:1c:37:43:31:80:4a:d4:7f:90:bc:94:f1:f6:
65:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:FB:CE:B6:D6:3D:AA:31:33:8B:2C:E0:1E:96:A4:77:A7:92:44:22
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/I_vOttY9qjEziyzgHpakd6eSRCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.241.128.0/22
94.241.184.0/22
178.253.8.0/22
178.253.48.0/22
Signature Algorithm: sha256WithRSAEncryption
64:34:0b:b1:40:e5:fe:81:39:b8:b3:dd:14:ca:10:8d:1f:51:
04:0c:58:5e:d4:1a:5e:15:26:42:e7:7b:5d:5f:4b:86:af:2d:
9f:97:97:f6:1d:b3:6b:74:4b:34:fb:b2:09:3e:77:5e:0c:b1:
30:55:3a:25:7a:d8:78:5d:42:bf:1a:4a:c6:d0:b1:90:ca:0a:
e4:bd:fd:0b:75:37:c9:44:80:f1:20:05:ab:5b:fa:8c:d1:a1:
2e:1b:7f:c8:9e:e1:71:92:f5:cf:aa:fb:8b:3e:b4:71:97:06:
26:7e:19:4f:d3:b4:7d:34:b8:25:cf:ec:ea:86:6b:5a:75:80:
6f:7a:1a:a5:52:2f:5c:e1:c8:d1:3b:8d:a6:35:ba:39:d4:1a:
74:fd:b4:d6:d8:bc:00:dc:37:08:f7:5d:37:68:dd:4a:8d:03:
5c:7d:5d:20:74:3a:74:3e:39:a0:39:53:49:66:bf:ff:3a:35:
ee:8a:0d:33:a5:e1:d9:ef:9b:85:a0:78:0b:cf:db:e5:f4:93:
03:6b:81:65:96:01:66:9f:76:ac:a6:3d:5b:99:15:71:7d:ac:
32:b4:59:4d:c7:12:94:fb:70:28:a5:41:33:cb:7b:f7:04:fd:
52:7d:68:a7:a9:95:e5:3b:a5:a0:46:36:6e:f8:93:a9:f2:88:
ae:b5:22:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org