Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/Py7lgnMlQ5SehDLveEeZbo0YJdU.roa
File: Py7lgnMlQ5SehDLveEeZbo0YJdU.roa (raw, json)
Hash identifier: aPQk2dQDGHGhTmPsF8/AdaTKLNIDlV9EzQ5CzK37+4s=
Subject key identifier: 3F:2E:E5:82:73:25:43:94:9E:84:32:EF:78:47:99:6E:8D:18:25:D5
Certificate issuer: /CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Certificate serial: 0183EB9AC35EAFA6856308F6F1B7547F284E
Authority key identifier: 41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/Py7lgnMlQ5SehDLveEeZbo0YJdU.roa
Signing time: Tue 18 Oct 2022 14:58:51 +0000
ROA not before: Tue 18 Oct 2022 14:58:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34253
IP address blocks: 194.242.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:9a:c3:5e:af:a6:85:63:08:f6:f1:b7:54:7f:28:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41d0f915c954d83b4a1bf184cfbc138c47eda51e
Validity
Not Before: Oct 18 14:58:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f2ee582732543949e8432ef7847996e8d1825d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:99:93:c7:93:9a:24:26:5b:3b:8d:20:90:c4:
e8:76:4f:20:dd:a2:03:d9:18:39:54:35:45:69:ff:
0c:a1:be:89:24:af:ba:bc:11:f9:8d:36:68:3f:92:
7c:04:b1:d5:3f:6d:5b:a2:0d:86:75:c7:05:e9:15:
19:80:4a:be:b1:97:00:be:4e:9f:a8:c7:c6:07:3a:
33:15:bf:b1:a7:7c:0e:2d:0e:c8:11:e3:83:b4:8a:
e1:3f:36:76:f3:fa:1f:d7:f1:a3:e5:5a:cf:d1:cf:
f1:b4:de:f6:91:58:27:48:62:4a:e7:1c:32:12:0d:
f9:dd:e4:91:ef:94:66:e0:a7:c6:e3:96:4b:72:5d:
77:b9:f2:35:2a:6f:6e:97:6a:70:b9:46:6a:b2:e0:
d1:d1:f7:dc:c7:96:a8:71:ba:9b:bc:cf:9f:a1:87:
a8:f3:1d:83:b0:f7:c2:30:4e:2d:eb:9a:85:17:fa:
18:9f:3f:68:45:2b:5f:07:a0:b6:95:f2:ae:f4:22:
1a:c7:f9:17:2f:85:a8:c4:23:6a:bb:4c:0b:19:68:
e6:90:ec:b9:ad:65:e9:9d:49:1d:33:9c:4a:7b:8e:
a0:52:00:8c:23:e3:30:7a:fb:cf:af:46:8e:3c:ed:
f9:32:1a:b6:cd:58:68:22:20:e7:4d:3b:16:83:bd:
1b:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:2E:E5:82:73:25:43:94:9E:84:32:EF:78:47:99:6E:8D:18:25:D5
X509v3 Authority Key Identifier:
keyid:41:D0:F9:15:C9:54:D8:3B:4A:1B:F1:84:CF:BC:13:8C:47:ED:A5:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QdD5FclU2DtKG_GEz7wTjEftpR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/Py7lgnMlQ5SehDLveEeZbo0YJdU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/66603d-3cb4-4730-b89c-ee500c3eb819/1/QdD5FclU2DtKG_GEz7wTjEftpR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.55.0/24
Signature Algorithm: sha256WithRSAEncryption
25:73:b7:fd:3f:f8:d7:2a:01:c5:ae:51:64:58:37:14:cc:f5:
ad:49:19:07:3c:81:0a:5f:c8:76:ac:34:a1:27:0c:e2:8e:11:
91:ee:67:dc:ee:b0:c1:4f:48:79:56:16:b0:e2:3c:65:26:81:
4c:3d:83:87:df:5b:27:00:64:91:be:fe:df:fc:12:f0:6c:ef:
c9:a7:47:33:b1:41:28:ef:52:62:92:0b:0e:dc:64:86:65:1b:
64:bf:cf:54:22:5c:68:25:aa:11:f5:45:e9:6d:10:7d:3c:59:
7c:af:7e:ab:d7:96:02:57:61:86:ff:dc:34:c4:2e:22:b8:1a:
9c:79:7e:38:11:e1:30:e7:83:3e:20:2c:dd:11:7b:39:1d:ba:
aa:35:25:ce:f2:45:f7:96:a6:47:44:41:7e:ad:65:b6:0d:1d:
b2:ee:68:28:cc:48:d6:7e:a3:9b:a9:5c:c0:76:f8:17:d7:6d:
b3:89:0c:cc:97:40:cc:81:b3:01:30:a9:7f:24:95:53:d0:68:
01:e7:d8:25:21:6b:be:e4:58:1b:18:20:68:fb:4e:98:21:13:
11:18:42:cd:e4:56:66:e1:f1:a2:18:b4:7b:8d:ec:f4:76:4c:
8d:26:0c:2c:51:90:a4:c9:60:78:b5:37:65:77:6f:7f:9a:da:
ee:e1:60:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:49 2024 by rpki-client on console-fra.rpki-client.org