Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/Y0nObJi1i2OuS5MVkv-K3NrUoaw.roa
File: Y0nObJi1i2OuS5MVkv-K3NrUoaw.roa (raw, json)
Hash identifier: xjgkYZYxeUUXr8/Ariz8ysJFqQ/ZjNoCV5LE6YJlSpA=
Subject key identifier: 63:49:CE:6C:98:B5:8B:63:AE:4B:93:15:92:FF:8A:DC:DA:D4:A1:AC
Certificate issuer: /CN=297ae7592ca52491dc166a30fe1477d712bd465d
Certificate serial: 1A03D622
Authority key identifier: 29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/Y0nObJi1i2OuS5MVkv-K3NrUoaw.roa
Signing time: Sat 01 Jan 2022 07:57:40 +0000
ROA not before: Sat 01 Jan 2022 07:57:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16262
IP address blocks: 94.159.109.0/24 maxlen: 24
94.159.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 436459042 (0x1a03d622)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297ae7592ca52491dc166a30fe1477d712bd465d
Validity
Not Before: Jan 1 07:57:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6349ce6c98b58b63ae4b931592ff8adcdad4a1ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:4a:f9:b5:33:8f:df:db:ef:9e:89:3c:e1:03:
c1:d2:cf:82:dc:0b:0e:7b:ac:fc:8c:85:c4:3f:77:
3d:94:35:43:57:33:4f:be:bf:4b:f0:34:35:51:44:
b2:b4:e1:41:d9:a4:3a:81:01:54:c1:05:42:be:bf:
cb:ae:cb:df:e9:e1:35:5e:a9:96:08:77:45:a2:92:
21:60:92:9a:0e:65:b7:63:89:a0:3b:7c:48:0e:d0:
20:07:b6:f6:9b:14:8b:a8:98:e8:17:62:c5:fc:0c:
93:77:6e:d9:59:d0:0d:28:8c:36:e7:c2:b1:ab:e3:
69:5d:34:80:5d:00:e2:73:31:4f:32:c5:60:f5:1b:
e0:30:81:6a:9c:bd:89:d6:52:46:19:c7:b9:19:a3:
7a:e3:55:6f:c1:3a:4f:63:cc:f9:5e:90:05:4e:bc:
0e:07:6a:38:29:de:de:0b:f1:77:39:98:1a:cb:78:
b7:50:58:e4:70:37:c1:f7:cc:e6:98:4c:73:a8:57:
f6:85:1e:7e:5d:cf:5f:9d:c4:48:44:38:d8:50:e0:
69:c1:7a:c9:7f:4a:c2:aa:b5:2b:06:bf:bb:25:25:
59:c4:04:93:5b:4c:b5:07:10:cc:9f:ed:ac:b8:21:
e3:c0:24:ae:05:14:b2:a5:87:4a:2e:c9:94:63:12:
b6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:49:CE:6C:98:B5:8B:63:AE:4B:93:15:92:FF:8A:DC:DA:D4:A1:AC
X509v3 Authority Key Identifier:
keyid:29:7A:E7:59:2C:A5:24:91:DC:16:6A:30:FE:14:77:D7:12:BD:46:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXrnWSylJJHcFmow_hR31xK9Rl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/Y0nObJi1i2OuS5MVkv-K3NrUoaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/48e1e8-328d-4f82-9398-3910a59a1121/1/KXrnWSylJJHcFmow_hR31xK9Rl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.159.109.0-94.159.110.255
Signature Algorithm: sha256WithRSAEncryption
c5:c2:15:09:fa:98:18:b7:56:88:49:7d:41:4c:fa:aa:b1:77:
23:cc:69:04:28:54:1b:e0:54:35:0a:10:fd:f7:b9:07:5e:6c:
ee:e2:26:b9:9d:e6:d8:23:3c:84:b1:da:49:c1:64:7b:30:cc:
ce:56:db:5c:7e:62:22:1b:ad:05:15:b7:c6:5b:84:2d:62:10:
7b:b2:fe:b2:a6:e4:d8:40:2e:37:fc:9b:eb:e6:96:27:4b:8f:
51:1c:ef:04:4a:32:60:ad:d2:9a:7b:18:9e:a3:95:0f:45:eb:
3c:23:b4:f4:f5:31:f2:37:fa:ed:b2:06:56:e5:2b:b4:08:b0:
31:a6:86:3e:66:48:0f:91:3f:29:16:60:61:39:48:b8:71:71:
6d:57:d0:a3:00:1e:db:b3:12:ef:2c:27:df:5c:ab:e3:85:ce:
df:0f:93:7b:df:72:e5:d4:39:cd:69:bc:47:5a:2a:82:9e:b6:
bc:a5:16:e1:41:bf:56:72:40:59:4c:e4:24:04:0a:b6:2e:76:
07:5f:7c:5c:d0:bc:82:97:0a:18:93:0c:52:0c:4b:1d:91:22:
12:58:76:d0:a3:e9:3c:c9:1b:38:b7:6f:6a:3d:fc:20:80:9b:
8e:93:ba:f6:e7:c8:10:c5:45:9e:29:01:25:0e:48:d2:38:9d:
bf:d6:ce:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:25 2024 by rpki-client on console-fra.rpki-client.org