Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/e59302-16c7-4927-bca8-c04be02037e8/1/B8iinlum3FxFMB0Ln27KH50Cpr8.roa
File: B8iinlum3FxFMB0Ln27KH50Cpr8.roa (raw, json)
Hash identifier: OTv6VCtkfI1otdEc1AZ1EtC5261l9hK26bxOBUYmazM=
Subject key identifier: 07:C8:A2:9E:5B:A6:DC:5C:45:30:1D:0B:9F:6E:CA:1F:9D:02:A6:BF
Certificate issuer: /CN=087f59c36e22d1f90384f41da60705ac74d779ce
Certificate serial: C1C7
Authority key identifier: 08:7F:59:C3:6E:22:D1:F9:03:84:F4:1D:A6:07:05:AC:74:D7:79:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CH9Zw24i0fkDhPQdpgcFrHTXec4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/e59302-16c7-4927-bca8-c04be02037e8/1/B8iinlum3FxFMB0Ln27KH50Cpr8.roa
Signing time: Fri 21 Jan 2022 10:04:22 +0000
ROA not before: Fri 21 Jan 2022 10:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42171
IP address blocks: 194.0.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49607 (0xc1c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=087f59c36e22d1f90384f41da60705ac74d779ce
Validity
Not Before: Jan 21 10:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=07c8a29e5ba6dc5c45301d0b9f6eca1f9d02a6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:da:31:ee:e5:cd:d5:50:03:ec:7a:c7:17:fb:
13:4d:16:8a:5b:84:90:92:ab:d8:1a:88:11:98:29:
5f:e4:12:30:c3:62:fd:e0:cf:c9:2f:38:2e:d8:e7:
b8:43:7c:0c:9b:1a:ba:57:c8:1f:14:88:2f:6f:85:
b8:5f:b9:84:d0:fe:52:ff:ea:4e:b9:16:20:e5:17:
fa:11:4e:39:1e:27:b6:a7:5b:56:88:1d:7a:42:f9:
6a:d1:7e:06:a6:b3:e9:85:0e:62:27:11:b7:c2:76:
1f:c1:2e:09:9b:79:99:f4:61:40:c0:44:da:c7:cc:
86:bb:42:c5:09:50:d4:57:9e:2f:d8:ce:d1:b1:16:
1c:d3:5f:73:ad:49:2a:f3:86:98:db:61:64:a3:a8:
7e:cf:3d:37:5f:f1:23:45:31:89:8a:c0:07:64:07:
0e:ae:44:f5:7c:83:80:ad:d9:da:64:f7:14:93:08:
19:8b:b0:ac:20:45:aa:eb:5a:28:66:0e:d8:a4:69:
7d:68:32:3c:5d:b5:a0:20:92:16:e3:10:8d:c2:74:
af:74:ef:a0:b4:f1:30:0c:84:9c:ba:a0:93:69:a6:
41:3e:84:16:6f:9f:ba:8a:01:02:73:fb:ba:78:6a:
f6:95:26:6f:17:0c:64:eb:6a:20:8f:8f:8d:51:81:
f0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:C8:A2:9E:5B:A6:DC:5C:45:30:1D:0B:9F:6E:CA:1F:9D:02:A6:BF
X509v3 Authority Key Identifier:
keyid:08:7F:59:C3:6E:22:D1:F9:03:84:F4:1D:A6:07:05:AC:74:D7:79:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CH9Zw24i0fkDhPQdpgcFrHTXec4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e59302-16c7-4927-bca8-c04be02037e8/1/B8iinlum3FxFMB0Ln27KH50Cpr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/e59302-16c7-4927-bca8-c04be02037e8/1/CH9Zw24i0fkDhPQdpgcFrHTXec4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.128.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:70:60:76:fc:ae:2a:60:b0:4a:78:c0:20:85:7d:f7:8e:1a:
a9:92:56:3b:2d:eb:86:d0:cf:5a:6c:af:38:1e:cb:9a:f1:04:
aa:6a:68:0f:82:ea:8e:ad:3e:8e:72:9d:97:1e:0f:4a:42:5e:
73:5c:d6:e7:3f:7a:0b:45:d0:fa:89:cc:e9:c8:f6:de:1e:cb:
3c:02:08:78:b8:be:c4:0b:bf:00:0f:b7:f8:50:63:f5:d2:ca:
12:d1:c4:b6:0b:ab:0a:28:41:51:3f:c1:ac:25:c0:12:03:64:
77:e3:95:82:34:b6:36:9e:03:57:e1:8e:b9:53:c6:00:15:f4:
5a:f4:1d:7d:59:86:c5:54:6d:3d:45:4a:d4:97:0b:1e:e5:2c:
ca:ac:19:7c:c2:1a:c1:38:de:5d:13:ef:a0:42:29:dd:c7:a5:
37:b8:81:00:98:52:ec:26:c0:45:85:25:46:c2:cb:a9:59:91:
55:b2:67:b3:d2:8c:8e:c1:49:19:33:fa:cf:2f:22:87:72:46:
3c:51:d2:b3:93:9d:8b:6d:08:b7:6c:08:6e:2b:c4:7e:0a:f5:
d6:a3:00:ff:19:73:75:ff:a1:20:78:ad:fa:31:e9:33:7e:3e:
a6:cf:8b:9c:eb:5f:63:62:64:c1:1f:bb:c1:40:a6:59:12:5e:
43:49:1c:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:58 2024 by rpki-client on console-ams.rpki-client.org