Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/9c5768-e80a-4110-a46d-0ff86ef95e0f/1/p8qZJqo8OBZdeSOsmBEtzZU9eZw.roa
File: p8qZJqo8OBZdeSOsmBEtzZU9eZw.roa (raw, json)
Hash identifier: nGT82MZNsaefoyswzTycJ8mO2aQwQUXA3Q4RmwgaTiE=
Subject key identifier: A7:CA:99:26:AA:3C:38:16:5D:79:23:AC:98:11:2D:CD:95:3D:79:9C
Certificate issuer: /CN=1cd3c30939b906a4515a1c65c08836829b6a3289
Certificate serial: 38967455
Authority key identifier: 1C:D3:C3:09:39:B9:06:A4:51:5A:1C:65:C0:88:36:82:9B:6A:32:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HNPDCTm5BqRRWhxlwIg2gptqMok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/9c5768-e80a-4110-a46d-0ff86ef95e0f/1/p8qZJqo8OBZdeSOsmBEtzZU9eZw.roa
Signing time: Sat 01 Jan 2022 10:01:03 +0000
ROA not before: Sat 01 Jan 2022 10:01:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49122
IP address blocks: 94.229.112.0/22 maxlen: 22
94.229.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 949384277 (0x38967455)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1cd3c30939b906a4515a1c65c08836829b6a3289
Validity
Not Before: Jan 1 10:01:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7ca9926aa3c38165d7923ac98112dcd953d799c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:7a:1f:60:f5:38:cb:fe:39:27:a7:a6:13:05:
e8:4b:1a:7e:96:69:30:ff:df:c3:0b:3e:f4:0b:3e:
a8:63:bf:bd:1c:42:d2:e2:d4:2f:b4:6a:ea:a2:ef:
0b:e6:00:35:73:61:9b:30:7c:2e:e9:fd:6f:80:dc:
2f:1f:f9:a7:0b:52:99:5a:ae:6e:77:8b:31:2a:32:
1c:20:3f:d2:96:b2:4c:be:37:cb:ea:96:71:cd:8e:
ff:f6:05:a6:86:8b:7d:46:12:4b:4e:36:bc:cb:fd:
4c:23:e9:ef:af:2b:b8:21:d7:41:2b:fa:f9:1e:e2:
24:16:cc:1b:c4:07:87:b0:14:bb:2f:62:1b:c3:1f:
d7:12:f9:3e:8c:b6:e7:db:07:30:c8:41:b1:b6:0d:
13:81:91:10:97:59:2c:ad:47:16:e0:a5:fe:36:11:
eb:94:23:b3:84:72:41:28:13:ba:32:5b:64:cc:73:
f7:47:2d:a8:8d:a7:b3:b8:20:89:b6:77:dc:6a:6b:
8c:02:a9:9c:43:d4:a6:49:9b:76:12:96:67:52:5d:
56:47:34:15:87:25:f9:3a:04:d8:e9:e0:55:41:bb:
b1:c6:35:11:0c:d4:fa:a8:7a:9c:37:02:25:84:0f:
4a:e6:e9:10:47:9f:88:43:d7:73:c9:63:bb:09:22:
8e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:CA:99:26:AA:3C:38:16:5D:79:23:AC:98:11:2D:CD:95:3D:79:9C
X509v3 Authority Key Identifier:
keyid:1C:D3:C3:09:39:B9:06:A4:51:5A:1C:65:C0:88:36:82:9B:6A:32:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HNPDCTm5BqRRWhxlwIg2gptqMok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9c5768-e80a-4110-a46d-0ff86ef95e0f/1/p8qZJqo8OBZdeSOsmBEtzZU9eZw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/9c5768-e80a-4110-a46d-0ff86ef95e0f/1/HNPDCTm5BqRRWhxlwIg2gptqMok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.229.112.0/22
94.229.124.0/22
Signature Algorithm: sha256WithRSAEncryption
86:59:64:e4:09:e7:62:a4:44:8d:8d:a5:ae:62:41:34:76:3c:
46:91:f9:20:82:3a:a1:7e:07:37:5d:a7:56:37:70:d0:a9:4b:
f5:19:32:a4:46:5a:e6:1d:39:32:0a:ce:01:f3:c0:d8:d3:82:
33:b0:5b:54:52:20:35:78:d3:93:f5:cb:51:0c:f9:4a:60:af:
b6:b9:1d:7d:1f:ff:99:e9:7f:ec:0d:34:22:77:e4:e8:e3:b5:
64:a7:0f:77:ab:f3:29:a1:0b:6f:aa:81:7a:77:94:b9:8c:19:
a3:ee:be:19:53:2a:b3:dd:4a:05:0b:c9:38:73:db:9a:18:91:
8d:77:42:51:3d:da:72:91:c1:b0:2f:02:6a:7b:e1:ec:74:95:
ca:24:4c:84:19:5e:80:6b:f3:87:0b:c6:f5:07:0d:84:4c:57:
9e:b3:77:97:7a:5b:75:4b:24:e4:6a:0d:95:0d:0e:68:94:14:
d8:30:4f:1b:58:56:56:3e:0f:fd:7d:e1:04:83:a3:98:32:f0:
40:cd:c0:34:26:49:da:2d:65:51:d0:e5:07:50:8a:be:8f:2a:
e9:7b:34:8d:98:5a:5f:b7:23:52:4d:ac:f5:8c:b7:ec:10:aa:
66:95:57:76:a2:e3:fa:a0:55:c5:29:04:1c:58:14:d8:3a:9c:
9d:82:ed:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:15 2023 by rpki-client on console-ams.rpki-client.org