Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/o2EpWoQYLP2uM5PSOWoEKsYa8tc.roa
File: o2EpWoQYLP2uM5PSOWoEKsYa8tc.roa (raw, json)
Hash identifier: TrVflnehH+46QvVU507aDnQSw3nr8mrzvY9mYvusoh4=
Subject key identifier: A3:61:29:5A:84:18:2C:FD:AE:33:93:D2:39:6A:04:2A:C6:1A:F2:D7
Certificate issuer: /CN=adf491488a7cd8448a420945871c0b99672dc66e
Certificate serial: 3793B4FC
Authority key identifier: AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/o2EpWoQYLP2uM5PSOWoEKsYa8tc.roa
Signing time: Sat 01 Jan 2022 06:01:51 +0000
ROA not before: Sat 01 Jan 2022 06:01:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62048
IP address blocks: 94.182.227.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 932427004 (0x3793b4fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adf491488a7cd8448a420945871c0b99672dc66e
Validity
Not Before: Jan 1 06:01:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a361295a84182cfdae3393d2396a042ac61af2d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:5b:d7:91:aa:fc:b2:ce:39:e4:8c:e8:04:36:
16:68:3a:7d:b2:34:c6:a3:86:3b:4d:48:1b:16:c2:
ff:69:2c:a9:b5:34:9d:d7:de:05:c5:f7:c5:0f:bd:
b3:74:b0:e0:ff:37:45:8b:55:cd:47:20:82:f4:25:
8f:b2:30:cd:8d:af:ec:e0:c3:b0:b5:a7:f4:f1:f1:
32:84:23:42:06:c9:80:cf:90:c9:16:ae:25:73:e0:
cd:11:e2:11:95:73:ce:f3:6e:90:42:23:0b:fc:5d:
af:07:6e:8c:e9:83:89:a5:56:aa:ef:ee:c9:e2:02:
00:0c:d6:1a:d2:fa:63:df:f1:b7:a1:29:65:52:7b:
03:ca:ff:c1:38:33:6b:d9:13:4e:62:29:ec:dc:80:
9e:bb:da:5c:9c:ab:9f:d7:dd:d6:3a:1e:8a:6e:ac:
1a:7f:d3:cc:e1:d7:0a:9a:66:d1:12:5b:5c:88:92:
ee:6e:1f:ed:78:70:07:a6:3f:0d:f6:d1:c2:40:dd:
d0:d5:53:9d:dc:a3:db:69:33:03:b3:00:8e:28:65:
d2:45:bb:d5:f3:8a:05:22:de:eb:37:fd:fc:7a:b3:
c4:4e:dd:a4:fd:cb:ef:3a:db:5c:60:3e:6d:f6:1b:
57:e4:6f:3c:11:71:f6:1a:81:ce:a7:c1:8a:c7:5f:
45:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:61:29:5A:84:18:2C:FD:AE:33:93:D2:39:6A:04:2A:C6:1A:F2:D7
X509v3 Authority Key Identifier:
keyid:AD:F4:91:48:8A:7C:D8:44:8A:42:09:45:87:1C:0B:99:67:2D:C6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rfSRSIp82ESKQglFhxwLmWctxm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/o2EpWoQYLP2uM5PSOWoEKsYa8tc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/715d15-2810-4827-8dbd-0bee06126b1a/1/rfSRSIp82ESKQglFhxwLmWctxm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.182.227.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:e4:20:8f:3b:d9:11:c5:30:dc:ea:46:86:32:50:28:7a:a5:
6c:25:b8:33:d0:2c:1a:8f:9f:16:cf:ce:14:50:7e:c3:79:95:
44:95:39:2a:49:20:0d:da:d0:60:7f:fb:a0:92:8a:74:43:16:
63:45:f0:b5:51:23:66:71:35:03:00:ab:df:77:89:dc:b4:89:
48:79:8e:f2:a9:e3:49:3d:77:4d:10:02:55:d5:b4:72:29:b0:
6d:6f:b1:5c:c2:bc:6d:e8:e3:c3:64:b9:da:d7:ba:73:f8:d9:
89:5b:e9:64:8f:f2:6f:74:f4:51:52:11:65:02:fc:b4:4a:70:
0e:96:c9:6d:16:be:88:81:df:41:cd:26:bc:70:81:b1:ba:26:
36:ec:67:63:2d:a5:c5:b1:ec:26:76:b5:da:17:93:25:7c:4b:
66:9b:42:28:11:d5:d4:c6:b3:0e:08:d0:04:76:b9:10:1b:f2:
f5:21:bf:57:d0:2e:1d:42:78:8b:4f:d2:71:aa:52:e1:1f:52:
87:23:25:a3:f7:55:4e:95:e6:21:44:fb:6b:65:20:d4:7d:4f:
f0:a3:21:05:30:1a:27:27:0b:f4:21:a4:49:57:67:a0:00:67:
b4:a6:38:1d:35:70:c7:8d:3f:62:d3:70:39:27:2b:df:26:3f:
33:45:68:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:36 2023 by rpki-client on console.sobornost.net