Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/4e39oRqEO0t7k2m6ZcGJzLj81as.roa
File: 4e39oRqEO0t7k2m6ZcGJzLj81as.roa (raw, json)
Hash identifier: 5YkJc/nhnfjaRJdNc9xSMJPdUpxxC9MbHX3ye4jqnLs=
Subject key identifier: E1:ED:FD:A1:1A:84:3B:4B:7B:93:69:BA:65:C1:89:CC:B8:FC:D5:AB
Certificate issuer: /CN=97668547a433343dde9bb36595bc903b4f149604
Certificate serial: 09BAA44B
Authority key identifier: 97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/4e39oRqEO0t7k2m6ZcGJzLj81as.roa
Signing time: Sat 01 Jan 2022 01:58:50 +0000
ROA not before: Sat 01 Jan 2022 01:58:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3292
IP address blocks: 194.54.68.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163226699 (0x9baa44b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97668547a433343dde9bb36595bc903b4f149604
Validity
Not Before: Jan 1 01:58:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1edfda11a843b4b7b9369ba65c189ccb8fcd5ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d8:a9:a0:45:5f:06:ab:a4:9f:6c:39:3c:3b:
fd:a9:35:b2:58:27:2d:f2:51:20:bb:08:4c:88:d6:
96:e3:ac:4f:80:77:76:f7:3e:6e:7a:97:b0:5a:37:
fb:c1:41:78:34:f7:a9:fc:64:60:b5:66:a3:2f:0f:
08:77:e7:51:40:7e:ae:62:f0:7a:28:2a:3c:99:77:
e1:8c:1c:e8:e1:f0:1f:e3:24:79:57:3b:18:ac:61:
82:52:b3:37:c7:ec:ec:bc:10:a8:45:0a:a6:ed:8e:
15:54:17:d2:45:d0:90:95:c4:44:02:75:49:8a:e2:
69:1f:d8:66:10:f6:9f:0a:5d:43:8e:92:13:51:2a:
76:ab:c4:72:73:27:3e:4f:65:d0:28:09:27:e3:41:
97:8f:23:84:28:c7:2d:6c:98:32:85:71:67:56:0b:
ae:92:c8:5a:0b:9a:9d:d9:b8:af:b6:da:e7:22:57:
71:8d:92:f8:f4:25:a0:25:71:24:31:f5:07:39:ba:
f3:39:b7:6b:f3:e4:21:81:df:cf:d6:d9:2d:52:1d:
0f:78:87:b0:8e:f0:f9:3c:ec:cc:c5:94:45:52:08:
cf:8c:68:6b:47:ac:c1:c2:15:9b:d0:8c:10:87:17:
ee:cf:b1:f3:9c:40:fe:1b:8d:62:e8:a1:51:1c:2f:
f5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:ED:FD:A1:1A:84:3B:4B:7B:93:69:BA:65:C1:89:CC:B8:FC:D5:AB
X509v3 Authority Key Identifier:
keyid:97:66:85:47:A4:33:34:3D:DE:9B:B3:65:95:BC:90:3B:4F:14:96:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l2aFR6QzND3em7NllbyQO08UlgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/4e39oRqEO0t7k2m6ZcGJzLj81as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/978c2e-1b76-48b0-a603-64c1c279ccc0/1/l2aFR6QzND3em7NllbyQO08UlgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.68.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:82:c2:89:44:b4:1e:e0:8e:89:86:15:85:34:11:51:75:63:
97:e0:26:09:c3:a2:58:a7:0f:f1:cc:91:2f:70:86:d9:6c:7c:
4b:af:5d:e9:d8:58:13:8d:c8:50:a4:54:88:92:df:d0:6c:96:
1c:51:ca:11:99:91:a2:bb:e2:d4:ad:7e:d7:6e:fd:88:be:ff:
15:72:ab:61:87:72:f9:92:b4:80:e9:e3:c1:61:b2:57:32:7e:
2a:f8:9d:52:c7:d0:4a:6f:6e:33:e9:94:df:8e:e1:bf:97:c7:
55:aa:57:49:b3:8a:c0:8c:9c:fb:f0:dd:a3:49:26:c2:4a:94:
b1:c7:c6:d5:8b:a7:0e:98:73:7b:22:99:28:25:0e:f0:37:a6:
cc:14:db:95:b0:b4:46:8b:c7:ad:74:5d:ad:b5:ca:d8:b0:ec:
1f:d0:26:8f:27:0a:82:ca:2f:d4:64:ed:db:a5:2c:ad:1a:7d:
bc:99:91:ad:2c:43:58:bb:38:b5:d8:a3:20:fd:4d:9a:18:4b:
d1:a8:2a:6d:0e:fd:38:96:9f:6f:f8:51:7f:5a:3c:0a:69:f0:
77:f2:b4:91:82:b7:c1:87:1a:40:7f:bd:ba:50:ef:29:43:64:
c3:6e:a8:86:58:de:61:cd:a7:e6:0f:87:69:f4:94:89:6f:41:
e4:76:7a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:23 2024 by rpki-client on console-fra.rpki-client.org