Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Df2ZiOHdVm5A6PhTC96nsPlNoy8.roa
File: Df2ZiOHdVm5A6PhTC96nsPlNoy8.roa (raw, json)
Hash identifier: blerFLG8NO/3CtQS4s/UFGbnLNFK1YYO09NNMgM32Fs=
Subject key identifier: 0D:FD:99:88:E1:DD:56:6E:40:E8:F8:53:0B:DE:A7:B0:F9:4D:A3:2F
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 098D27CB
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Df2ZiOHdVm5A6PhTC96nsPlNoy8.roa
Signing time: Sun 13 Mar 2022 06:36:07 +0000
ROA not before: Sun 13 Mar 2022 06:36:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9331
IP address blocks: 194.53.201.0/24 maxlen: 24
194.53.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160245707 (0x98d27cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Mar 13 06:36:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0dfd9988e1dd566e40e8f8530bdea7b0f94da32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:b6:1a:87:6d:7b:aa:d6:ec:e4:85:a1:0f:c1:
92:ca:69:c8:90:06:45:63:74:7d:05:d9:f7:fd:d4:
3d:97:71:95:ab:15:5f:6f:22:e1:09:9c:0c:7f:7e:
ce:05:9b:de:f4:c7:85:5f:c8:4d:80:01:47:e6:99:
0b:fc:5b:45:f4:4b:17:27:ec:76:63:81:45:16:c5:
e4:bf:a1:e3:0d:45:36:bf:ac:2c:ab:0c:7e:cb:ea:
83:bf:64:13:5b:66:be:b6:ac:6c:3b:82:91:da:59:
b2:75:17:35:4a:80:38:9c:28:39:d3:45:43:d6:e3:
a6:e8:fa:9b:6e:d0:df:78:10:cf:16:df:2b:de:ed:
4f:51:4d:b2:ed:4c:be:5c:e4:b1:10:91:31:46:f0:
f9:25:44:17:84:9e:f5:4e:71:c0:43:dd:d0:ff:18:
0a:5c:41:05:36:32:81:66:c8:f9:b0:65:c6:32:9f:
a5:f6:05:ab:e7:92:b0:db:f0:57:1c:8b:32:85:f7:
ab:cb:8f:d1:48:14:a7:49:ff:65:a2:2b:04:94:ba:
6b:ae:ff:16:a4:68:33:6b:11:4c:76:60:56:f9:88:
2b:1f:ae:59:e3:0f:27:66:ac:4d:ca:b1:f3:53:05:
29:fc:78:d6:fc:78:7d:1a:d0:30:a2:f6:16:86:4b:
dd:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:FD:99:88:E1:DD:56:6E:40:E8:F8:53:0B:DE:A7:B0:F9:4D:A3:2F
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Df2ZiOHdVm5A6PhTC96nsPlNoy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.201.0-194.53.202.255
Signature Algorithm: sha256WithRSAEncryption
35:0e:45:7d:ad:ab:90:c9:eb:4a:fe:47:92:44:01:7b:b5:24:
74:9f:17:b1:fe:4d:a0:9b:3d:d1:4e:f9:9f:0b:11:5d:a6:8e:
09:cf:e0:be:b1:08:26:5f:04:e3:38:11:d4:4e:59:70:e7:2b:
66:05:97:54:f5:43:3b:65:eb:61:df:b5:26:e6:19:b9:9c:24:
c3:f6:d9:9b:e0:53:75:db:99:20:82:78:00:3e:00:ea:65:74:
18:57:20:7e:8a:11:ab:ab:b5:81:a4:7f:b6:8d:b2:a5:58:50:
ec:75:9b:1e:34:97:83:b3:d1:81:8a:b4:67:f5:61:21:2c:de:
33:f7:b3:44:b0:05:f0:03:75:4c:14:5e:49:df:49:3c:4f:a5:
d8:8b:85:95:76:d2:a4:b5:f6:9e:a7:01:0d:ac:23:bf:fa:ae:
eb:d2:5e:25:a6:c4:94:7b:a3:6c:5a:6f:90:7a:15:38:bf:fc:
6d:30:aa:b1:50:4e:13:bf:97:c5:4a:bb:40:3f:ea:66:01:3b:
a1:14:f9:af:74:dc:ee:7c:bc:cc:e5:b1:05:a9:2d:a7:6d:c9:
a3:fa:c0:21:ba:d2:c5:12:25:3e:1a:4a:33:d2:77:53:a9:71:
71:36:63:7d:7f:72:c7:d2:8b:df:12:3d:fb:37:32:95:18:46:
95:fe:10:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org