Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Ra7gwBt0pmrjrt-3CVBUUTXfcl4.roa
File: Ra7gwBt0pmrjrt-3CVBUUTXfcl4.roa (raw, json)
Hash identifier: KairWzlrM/Oy4quRY3j8bhSNw0pnB5MqJZyCIgZLDRw=
Subject key identifier: 45:AE:E0:C0:1B:74:A6:6A:E3:AE:DF:B7:09:50:54:51:35:DF:72:5E
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 05B20A61
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Ra7gwBt0pmrjrt-3CVBUUTXfcl4.roa
Signing time: Sat 29 Jan 2022 06:45:58 +0000
ROA not before: Sat 29 Jan 2022 06:45:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 94.26.90.0/24 maxlen: 24
93.152.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95554145 (0x5b20a61)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jan 29 06:45:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45aee0c01b74a66ae3aedfb70950545135df725e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:7c:b6:60:82:ee:1f:f5:97:e5:86:d7:67:34:
30:dd:c1:4e:16:fb:1e:89:9d:e2:67:25:99:95:e6:
77:ad:ef:e5:21:17:e7:47:27:fb:23:c2:63:77:19:
8a:e7:bd:25:2d:07:fc:e9:4a:6f:44:85:56:6a:6a:
cd:84:dc:34:0f:d1:18:df:c9:3d:a9:08:c6:3a:40:
25:2e:f8:35:cb:b2:13:e9:de:b2:52:ce:6e:f2:e5:
46:e2:b2:4a:9e:8b:8f:69:65:66:63:80:2c:1f:9e:
66:c5:c4:42:32:c3:f7:19:ac:69:5d:3a:72:51:f1:
cc:fa:00:19:c1:49:34:37:9c:49:96:7b:23:cb:d1:
74:e7:d1:80:1f:fc:20:04:ab:40:ab:b7:bf:59:30:
3e:6b:69:a9:3b:f4:02:f7:ae:96:1f:7c:a7:00:0d:
fd:44:0a:91:cf:4c:c9:93:38:46:a9:71:51:cb:65:
a5:84:82:3b:89:80:f5:a7:fd:2a:ee:dd:93:30:8a:
bb:34:35:5f:b0:dd:3f:0d:7a:0c:1e:72:b6:50:9d:
5a:8b:3e:39:bc:02:df:c0:a7:06:cc:35:33:61:89:
0c:b8:1c:8b:e9:64:04:cf:51:3f:e0:2c:dd:eb:fa:
90:5e:ec:22:14:52:a4:62:71:48:ea:ef:75:2e:30:
d6:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:AE:E0:C0:1B:74:A6:6A:E3:AE:DF:B7:09:50:54:51:35:DF:72:5E
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/Ra7gwBt0pmrjrt-3CVBUUTXfcl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.210.0/24
94.26.90.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:52:02:7f:cf:f9:a0:b0:4f:17:79:a1:cc:15:48:11:56:fe:
58:ef:3f:17:09:1e:a6:38:9d:de:36:08:27:a7:f7:23:8f:44:
bd:ef:24:5b:46:74:af:60:57:7b:16:f1:b2:0f:65:01:dd:51:
23:08:20:1b:5a:f5:f8:2d:78:b7:b2:d4:30:d5:61:80:8b:27:
86:99:bd:f5:e6:6c:51:5d:2a:33:f0:da:05:bd:d0:c5:9e:7f:
c4:13:e7:f2:f1:fb:70:2f:d2:42:f7:d7:ac:21:73:e2:27:d1:
15:f8:0c:ec:4c:da:c6:7e:b5:98:7e:87:2d:ee:39:b3:81:29:
f9:2e:6d:90:0a:87:39:cb:a2:f8:d8:0c:69:1d:b5:24:a0:e4:
6c:37:47:8a:c8:d9:a5:69:28:8b:61:a5:dc:19:92:17:51:d1:
18:17:eb:67:4f:b5:f0:89:49:88:51:e8:7d:36:e2:4b:da:f0:
f3:1a:61:59:f6:8f:2e:fc:ef:e3:1b:2b:10:22:c7:d5:5a:a4:
f0:85:38:8c:cc:dd:29:dd:3d:54:5b:30:f0:b5:8e:9b:ee:3a:
ae:e1:22:52:f9:6e:54:01:4f:b2:25:3f:70:20:d4:a6:43:03:
b8:54:64:89:ad:7b:c3:6b:da:bb:e2:3e:5a:80:5f:cd:a4:0c:
05:e5:1d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:58 2023 by rpki-client on console-ams.rpki-client.org