Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/3-gvQ9FSW3XfRlpvyekZoovmI1o.roa
File: 3-gvQ9FSW3XfRlpvyekZoovmI1o.roa (raw, json)
Hash identifier: jRAzYl94bQKfCvqKnIfdg2NkLST8AVrTY47oFlge1HU=
Subject key identifier: DF:E8:2F:43:D1:52:5B:75:DF:46:5A:6F:C9:E9:19:A2:8B:E6:23:5A
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 01853414089D5792AD2030C2DE2DDB5E1EA2
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/3-gvQ9FSW3XfRlpvyekZoovmI1o.roa
Signing time: Wed 21 Dec 2022 09:46:46 +0000
ROA not before: Wed 21 Dec 2022 09:46:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24940
IP address blocks: 94.72.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:14:08:9d:57:92:ad:20:30:c2:de:2d:db:5e:1e:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Dec 21 09:46:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dfe82f43d1525b75df465a6fc9e919a28be6235a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:11:4d:89:20:02:3f:30:b8:c8:bb:8f:d3:93:
a6:02:24:0f:c7:bc:b8:31:82:f5:62:b8:97:32:38:
31:d6:ea:da:88:aa:e8:bf:99:44:83:1b:86:9b:fe:
96:16:45:0b:14:3b:2d:18:60:dc:5c:8e:b1:81:55:
0e:63:d8:af:cb:e1:a3:72:68:4c:91:a6:8e:79:0f:
54:c1:f9:5d:07:aa:70:45:99:80:9f:6a:a3:b0:f7:
8a:f6:df:3c:f3:5d:c6:43:01:4e:40:50:49:ef:d5:
f9:d3:23:95:85:fe:07:87:1f:00:ae:27:a2:eb:d6:
89:eb:2c:bb:55:41:15:b9:36:45:bb:4b:27:92:65:
09:8d:72:83:df:45:98:b5:48:6b:90:16:90:0d:a8:
49:fb:e6:c6:40:13:8d:24:ad:72:fd:65:55:0b:34:
64:82:7f:bf:99:4e:22:7f:86:fa:03:c3:f1:dd:46:
b1:a3:a1:5a:84:68:6d:5e:83:a3:3b:a5:a2:d8:22:
26:21:0d:00:29:b7:af:7f:13:3d:51:0e:4b:97:38:
0f:59:5d:68:c8:46:83:76:2b:b7:e5:d4:56:b3:6c:
13:2b:0e:3c:0f:61:0a:c0:52:48:26:eb:3a:69:a7:
0e:14:65:68:9a:f6:c7:ba:8f:f5:d9:e3:f5:18:29:
40:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E8:2F:43:D1:52:5B:75:DF:46:5A:6F:C9:E9:19:A2:8B:E6:23:5A
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/3-gvQ9FSW3XfRlpvyekZoovmI1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.72.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:fc:2d:7d:79:8c:06:6e:0e:da:27:4d:4d:d1:a7:81:a7:49:
a9:c3:7e:3d:2b:9e:57:77:76:5a:c4:0e:3d:64:a5:32:fa:8a:
e9:97:8f:61:a5:5b:e9:5e:85:f7:dc:5b:a1:fd:65:10:8f:a6:
6e:87:16:2d:0e:48:65:21:5e:9e:89:eb:06:f2:1a:6e:2e:81:
1b:e4:be:fe:2c:8e:4b:51:c2:0b:d1:e1:ea:55:0d:75:0a:f9:
71:f2:de:1e:87:0c:44:71:d2:5d:65:ef:dc:e4:22:42:2d:55:
41:aa:b2:4c:5c:a1:8a:75:d4:d9:40:00:83:4c:a8:e1:a6:00:
fd:47:37:7d:04:86:ad:49:b1:bc:c0:9f:07:25:aa:60:0f:19:
2c:ae:63:09:f2:b2:0e:2c:aa:db:35:9d:69:bd:01:e3:89:c4:
ac:c7:08:6f:31:60:f3:fe:c1:a6:2a:d7:7e:c6:86:4a:ed:83:
da:97:dd:97:5c:df:44:bf:b9:0b:64:4f:b2:c5:30:da:dd:42:
b7:33:f5:bd:70:12:11:64:97:ae:00:62:66:18:eb:50:44:7d:
41:7d:c1:cb:2a:08:b8:ed:b0:67:28:60:3d:1c:ad:e2:51:fb:
37:33:4f:ae:bf:6e:7f:b6:28:67:a1:fe:0e:b4:39:1e:84:23:
30:5f:71:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:22 2023 by rpki-client on console-ams.rpki-client.org