Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/SlA5Ek1jJpyY2h_FcOQBgOaU1FU.roa
File: SlA5Ek1jJpyY2h_FcOQBgOaU1FU.roa (raw, json)
Hash identifier: Y3I8SqLTWXKNint9TeEg/vpOYmgOoINOI1/OQMiCcdk=
Subject key identifier: 4A:50:39:12:4D:63:26:9C:98:DA:1F:C5:70:E4:01:80:E6:94:D4:55
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 11C98C78
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/SlA5Ek1jJpyY2h_FcOQBgOaU1FU.roa
Signing time: Sat 01 Jan 2022 15:05:43 +0000
ROA not before: Sat 01 Jan 2022 15:05:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59989
IP address blocks: 94.72.152.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 298421368 (0x11c98c78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Jan 1 15:05:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a5039124d63269c98da1fc570e40180e694d455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9f:aa:5d:19:1e:63:ff:3f:c9:6a:5c:e5:38:
7a:74:32:2b:16:9e:34:26:ab:37:98:a7:66:03:f6:
d1:45:6d:1d:f8:0c:4b:fa:5b:3d:89:c2:20:4d:ea:
3a:44:5d:2d:cf:b2:cf:56:d1:8e:41:f5:58:b2:e0:
2b:f3:8c:b9:9b:b5:f5:91:bc:7f:ff:cc:83:c8:54:
14:27:b7:1e:87:db:c2:47:11:c9:a9:ba:27:bf:02:
a5:79:27:1b:28:46:51:16:f6:2a:2c:a6:d8:8a:72:
f1:ca:66:15:ea:76:cb:fb:b7:6b:10:de:d2:39:9e:
8a:67:6a:13:94:50:4e:e6:2d:6b:49:fb:a0:d8:82:
28:ea:e9:07:3b:37:1a:ee:37:ca:76:0b:dd:59:94:
63:05:ee:15:bd:46:14:18:3d:99:8c:25:36:6d:db:
46:ee:ae:17:ae:6c:77:7e:1b:22:67:22:81:61:36:
e7:c7:42:fb:44:12:a0:11:fd:b8:cc:86:96:38:fc:
34:6a:61:6c:2a:8a:a1:da:59:03:db:55:64:96:8d:
20:c5:51:d2:58:94:11:74:70:bd:fd:ee:7f:59:31:
a9:90:42:eb:ff:c5:04:71:d1:23:26:ad:43:04:92:
88:b0:32:b1:63:39:1b:7b:53:8b:09:74:20:cd:b8:
0c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:50:39:12:4D:63:26:9C:98:DA:1F:C5:70:E4:01:80:E6:94:D4:55
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/SlA5Ek1jJpyY2h_FcOQBgOaU1FU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.72.152.0/22
Signature Algorithm: sha256WithRSAEncryption
88:a2:9a:b3:0d:3a:e5:63:67:6b:ef:91:a2:55:39:b2:fd:13:
2a:b0:ee:29:5d:2a:99:7a:79:83:a7:6d:88:b3:f7:4a:37:cc:
87:81:9b:f6:e9:5d:bf:70:f4:87:7e:c7:1a:99:38:c1:c2:d6:
0a:e6:7e:57:ec:f2:a4:8a:18:4e:5b:57:df:fa:9e:0e:3e:fd:
a8:92:21:d5:b2:b1:e4:f9:66:8f:3f:2d:75:2c:e1:9e:21:39:
5c:79:06:4f:5f:74:85:94:93:65:b9:47:8d:fc:c9:0e:c5:b4:
8a:ba:7e:e1:3c:d7:5d:08:14:7e:f0:0b:d0:90:84:53:96:27:
20:23:d7:ba:c8:e6:79:17:73:43:0d:d2:38:52:16:51:46:7f:
03:35:04:87:46:57:e4:a6:77:8a:46:9c:9c:6b:9b:cf:30:3c:
10:4c:0c:0b:00:c6:16:20:95:7b:14:7b:df:5c:4e:cb:38:67:
c7:90:4e:c0:97:d4:d6:f6:31:38:d8:3b:68:f7:68:ed:85:f3:
fc:45:8d:b8:c3:97:4d:ba:35:11:f6:4e:b3:9b:b8:5e:00:f2:
03:c6:02:7a:c4:1d:da:2c:53:76:97:f4:7a:e9:da:a2:77:60:
61:cc:8b:17:34:a4:28:71:a5:85:dd:0e:94:c8:2f:94:d8:aa:
0b:7b:e0:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:12 2024 by rpki-client on console-ams.rpki-client.org