Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/Krifh7GABde8v-4qyXcLNQtrkC0.roa
File: Krifh7GABde8v-4qyXcLNQtrkC0.roa (raw, json)
Hash identifier: D+pEQK+tydDXrrjIsH8bimZLCKi3QEADsLSPSm1Mzsk=
Subject key identifier: 2A:B8:9F:87:B1:80:05:D7:BC:BF:EE:2A:C9:77:0B:35:0B:6B:90:2D
Certificate issuer: /CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Certificate serial: 1ED92911
Authority key identifier: 99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/Krifh7GABde8v-4qyXcLNQtrkC0.roa
Signing time: Sat 01 Jan 2022 08:56:11 +0000
ROA not before: Sat 01 Jan 2022 08:56:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47686
IP address blocks: 94.100.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 517548305 (0x1ed92911)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99e7209a8c9b176fbf623edf3ee0b82007fc2c40
Validity
Not Before: Jan 1 08:56:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ab89f87b18005d7bcbfee2ac9770b350b6b902d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:17:3a:36:fa:ca:f5:e5:e0:c7:52:49:c9:29:
97:4f:41:07:e9:c9:22:04:89:0f:89:d2:b7:9e:2b:
dd:16:2b:14:03:0c:8a:e6:57:d7:d2:00:14:3b:51:
10:96:29:b0:84:a6:e6:2d:57:09:d4:6d:ed:ef:7e:
21:b2:5b:d1:c9:c4:b0:d9:8a:c3:ce:29:05:59:f7:
f9:7b:e0:5d:cc:ca:a6:fe:2f:16:e5:d2:5d:51:72:
5b:c9:33:16:cd:fa:f4:d5:5e:9a:7d:3e:8f:13:8c:
6c:70:be:5d:d2:83:75:14:79:e6:9b:af:9c:88:0e:
ab:9c:a4:7c:e2:80:31:e9:a9:a5:02:d3:d3:d1:d4:
81:66:50:5a:90:d2:0e:9c:be:e5:17:1e:1c:1c:2c:
23:81:d9:4d:68:2a:65:c0:a5:f2:b4:db:9b:d6:5e:
b1:82:7c:90:c0:bc:04:bf:44:4e:5c:13:14:ca:be:
59:53:f0:e0:b6:f7:aa:20:6f:fb:8a:8f:5d:d1:17:
95:34:fd:d5:c5:fd:92:40:2c:16:f1:3c:a2:d5:72:
ce:0b:ef:2b:fb:1f:66:e6:42:b1:1a:24:a8:9e:40:
58:68:39:1d:6a:b0:33:dd:34:dd:57:29:2a:62:15:
20:a0:f2:7f:11:33:97:ab:da:17:85:6d:54:e2:61:
1b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:B8:9F:87:B1:80:05:D7:BC:BF:EE:2A:C9:77:0B:35:0B:6B:90:2D
X509v3 Authority Key Identifier:
keyid:99:E7:20:9A:8C:9B:17:6F:BF:62:3E:DF:3E:E0:B8:20:07:FC:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mecgmoybF2-_Yj7fPuC4IAf8LEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/Krifh7GABde8v-4qyXcLNQtrkC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/ef5856-bbc0-45a4-891e-b2dcc1863e8b/1/mecgmoybF2-_Yj7fPuC4IAf8LEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.100.104.0/24
Signature Algorithm: sha256WithRSAEncryption
7a:00:9b:c5:27:b3:79:e2:4d:35:2a:28:5e:9f:7c:f6:91:58:
68:cd:34:26:89:36:5a:3e:c8:40:99:f9:ce:0f:bb:b2:aa:82:
be:ea:12:f6:f7:7b:e1:b2:11:f9:c3:c8:1b:f8:3a:74:fa:e5:
7c:73:4c:c8:eb:cf:96:88:69:59:98:51:2b:2d:d4:82:0f:6d:
10:7a:ef:a6:ba:be:e3:25:d0:86:c1:eb:f4:ff:2f:64:d4:df:
b6:75:fd:a1:d2:43:ac:c4:09:22:fe:c2:2c:1a:ef:6e:bd:71:
98:c3:09:be:f8:c4:16:1d:ac:57:26:fa:d9:bf:e3:9d:21:81:
3d:a0:78:18:6b:e4:dd:28:c8:07:d1:12:2c:08:ae:2f:ad:ed:
f4:eb:93:a6:6c:c8:3f:de:b6:b8:c4:85:a3:a6:6e:b4:40:e6:
66:f5:b5:ef:22:a7:6a:b3:a3:87:86:d1:95:a7:f0:9f:b6:c4:
9f:fa:e7:f0:c7:86:19:dd:6c:66:1c:90:62:58:3e:16:ab:4c:
9e:4b:ff:2d:4b:eb:45:2a:a1:4a:65:34:86:a6:10:a8:2f:9d:
e2:03:02:d8:85:70:4c:a5:bf:57:4e:ef:18:b3:72:07:93:ce:
67:4b:c1:19:48:1c:12:e9:e0:df:88:0f:33:4e:56:4d:ad:3a:
db:18:a2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:32 2023 by rpki-client on console.sobornost.net