Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/n9XjthasXQ_PaKzdO3KyK35CqD4.roa
File: n9XjthasXQ_PaKzdO3KyK35CqD4.roa (raw, json)
Hash identifier: 6BQDxxNozpVsPu+bEqSIwn2Ri/ZuOpgbRxgsWc0LttU=
Subject key identifier: 9F:D5:E3:B6:16:AC:5D:0F:CF:68:AC:DD:3B:72:B2:2B:7E:42:A8:3E
Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0
Certificate serial: E4FE
Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/n9XjthasXQ_PaKzdO3KyK35CqD4.roa
Signing time: Sun 27 Feb 2022 09:39:42 +0000
ROA not before: Sun 27 Feb 2022 09:39:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48154
IP address blocks: 94.125.152.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58622 (0xe4fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0
Validity
Not Before: Feb 27 09:39:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9fd5e3b616ac5d0fcf68acdd3b72b22b7e42a83e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:72:4e:e4:5d:ee:f1:58:99:fa:43:1c:97:73:
16:a5:6e:48:26:6f:db:29:fb:00:1a:76:da:8e:2a:
c0:1e:6e:7a:da:9b:46:af:f7:3a:6e:b8:2d:7c:56:
89:70:60:7c:84:41:8c:79:0f:b0:9e:5c:f5:df:3c:
ae:80:e6:6c:a8:06:26:29:71:56:90:62:f1:34:2a:
94:c7:89:31:6e:8a:29:02:35:70:91:41:77:c9:0a:
25:0c:b9:91:d3:3b:7f:03:80:a8:97:c5:82:47:a9:
07:dc:84:fe:e4:15:8e:89:c2:0f:4f:ad:87:c7:73:
9a:0c:ca:16:3a:ae:d4:15:70:66:a9:ce:01:f8:cb:
97:a0:99:47:85:9d:ce:a3:cf:b8:14:45:a6:30:93:
da:3c:15:f1:df:4e:34:dc:9d:47:b4:1b:4c:c6:fc:
7b:e0:01:e3:76:98:57:68:5c:f7:48:20:3f:a6:e4:
22:9f:9a:d3:54:f0:f2:2f:a2:46:25:40:4d:e3:4b:
32:1a:74:7b:0f:89:f6:71:c2:c1:a9:fa:f2:89:73:
aa:95:36:11:4a:2b:17:ce:80:ab:2f:d3:02:09:8b:
e2:53:e1:0f:ef:24:af:99:9a:d7:3b:1f:68:fb:a0:
e6:25:ac:50:b4:11:da:af:39:aa:c5:30:e6:f3:10:
32:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:D5:E3:B6:16:AC:5D:0F:CF:68:AC:DD:3B:72:B2:2B:7E:42:A8:3E
X509v3 Authority Key Identifier:
keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/n9XjthasXQ_PaKzdO3KyK35CqD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.125.152.0/21
Signature Algorithm: sha256WithRSAEncryption
74:61:3d:48:a4:65:50:20:a5:2c:54:22:99:a1:66:fd:b1:88:
f0:f5:c8:ee:4e:27:cd:fe:b6:90:54:4a:18:38:6a:96:a4:c3:
92:08:17:e8:75:2d:dc:1a:6b:4e:c6:a5:70:23:2c:ca:29:5f:
39:ac:05:a6:ef:cc:a6:b9:d6:6c:7d:d4:3f:4a:2a:a6:82:29:
06:1f:f8:f8:39:3c:17:5d:6d:a1:e3:86:49:6f:7d:3e:a1:1c:
f5:ba:d3:e2:44:7c:a4:11:55:ea:cf:55:0c:2e:dd:81:40:d4:
c9:e1:9b:f5:74:63:bb:8e:2b:84:f6:cd:29:40:d8:e4:60:b9:
8a:f5:1f:83:d2:82:9c:df:c4:31:08:7a:75:11:90:fd:e1:ec:
29:84:a3:49:65:95:29:ec:5e:3a:15:e6:28:a4:32:33:0e:11:
dd:ba:6d:63:0b:ba:ca:81:de:25:b5:cc:c3:3e:c8:ed:8f:74:
e2:86:62:a8:14:ff:1f:bc:08:19:8d:2b:fb:58:83:2b:73:1e:
48:34:99:ea:94:3b:5f:38:4f:61:75:50:04:74:9d:5c:3b:93:
ca:6c:44:03:a6:b2:79:5e:df:70:cc:1f:2c:13:5c:20:60:f9:
57:6a:7e:24:f6:08:a3:ce:c9:f2:eb:04:e2:75:dc:23:4e:42:
bc:60:cd:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:03 2024 by rpki-client on console-fra.rpki-client.org