Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/Oac4JULttdl3UTFeqxyoaje68YA.roa
File: Oac4JULttdl3UTFeqxyoaje68YA.roa (raw, json)
Hash identifier: wwdyxrnjcQ/CbkdDKh6xY72Mg4PERYeIc2i55Z88veo=
Subject key identifier: 39:A7:38:25:42:ED:B5:D9:77:51:31:5E:AB:1C:A8:6A:37:BA:F1:80
Certificate issuer: /CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Certificate serial: 071F453A
Authority key identifier: EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/Oac4JULttdl3UTFeqxyoaje68YA.roa
Signing time: Sat 01 Jan 2022 15:01:38 +0000
ROA not before: Sat 01 Jan 2022 15:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43241
IP address blocks: 194.107.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119489850 (0x71f453a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec6b42021886d8eedbae90d9e6ab1de533c50d20
Validity
Not Before: Jan 1 15:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39a7382542edb5d97751315eab1ca86a37baf180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fd:12:c3:86:8e:f7:bb:3b:ab:ee:1a:d5:47:
b5:06:c2:f5:5e:9f:b3:ac:d5:9b:7e:cc:51:d5:77:
67:d2:74:69:0e:7b:9f:08:58:4f:68:72:9f:8e:ad:
aa:7b:24:9a:ae:10:7a:dd:2b:30:ad:2a:0a:16:0a:
98:b0:bc:d5:d2:fa:e6:f4:84:08:48:9a:92:56:65:
47:cd:f8:72:f0:8e:cd:0c:92:2b:36:f0:dd:b7:ea:
db:89:e6:bc:6e:bb:1d:5c:5d:03:1a:3a:97:ac:30:
eb:9a:24:40:f2:c8:5d:10:3e:a7:cb:90:49:8f:a3:
a9:7a:56:35:f1:5d:b1:33:99:02:ef:e0:da:ac:1a:
a2:5d:bc:f5:71:17:91:a1:1c:61:24:b4:a8:af:e6:
55:e0:2b:48:85:46:d1:04:a3:a8:60:93:60:34:b2:
0a:49:8d:53:41:a0:42:3b:a3:9e:48:97:be:d8:a4:
16:22:5a:1d:bd:1d:c7:48:dc:60:b0:7b:89:cc:30:
89:af:e8:02:e1:14:c4:4e:a2:32:d0:41:fb:a5:47:
ea:be:ff:7a:02:8d:7e:99:70:a1:51:9b:c1:f9:da:
70:7c:e2:80:c8:4f:79:80:52:19:06:67:88:b2:30:
9f:da:60:97:d4:4f:51:da:22:30:ac:bd:1e:57:64:
f4:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:A7:38:25:42:ED:B5:D9:77:51:31:5E:AB:1C:A8:6A:37:BA:F1:80
X509v3 Authority Key Identifier:
keyid:EC:6B:42:02:18:86:D8:EE:DB:AE:90:D9:E6:AB:1D:E5:33:C5:0D:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7GtCAhiG2O7brpDZ5qsd5TPFDSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/Oac4JULttdl3UTFeqxyoaje68YA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/26c3e1-6486-4e09-99a4-a6873b374e26/1/7GtCAhiG2O7brpDZ5qsd5TPFDSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.128.0/24
Signature Algorithm: sha256WithRSAEncryption
11:6d:a6:bc:3e:1a:19:ca:9a:08:d6:71:d4:67:77:05:37:dc:
ff:d6:7d:d9:58:cc:42:df:a7:b2:65:92:c0:f6:db:cd:99:eb:
ae:11:96:bc:8d:9b:ca:98:40:d0:0c:c5:6d:ef:2d:b2:d3:98:
1d:71:ab:cf:4d:2d:85:e9:d8:97:99:9b:40:fb:22:7d:24:7d:
4c:65:00:a8:82:a2:0d:3c:e8:ac:7c:3d:d2:6f:cd:c8:11:62:
bc:0f:62:8e:56:cc:ab:c9:14:fa:24:6e:25:a7:d7:ea:ac:8a:
10:8b:42:c7:83:ce:06:b3:86:09:e8:26:80:97:4e:d8:2e:f3:
12:9a:bb:56:07:fb:68:e2:80:57:ca:df:54:25:c1:46:74:d4:
ed:4b:5e:a6:ae:da:45:6e:ec:fd:a9:f3:53:89:2a:6c:0e:65:
d9:43:cd:c3:78:c4:f7:fb:84:2f:ca:b7:3e:f6:0b:55:45:59:
e5:95:8f:9d:4b:9b:45:24:de:ac:76:6a:34:76:ea:3b:69:17:
a8:24:a0:11:69:43:91:15:a4:5c:d2:6e:fd:62:b0:41:45:cf:
3c:d9:f0:d5:66:62:92:ea:97:16:60:37:3e:9c:98:43:04:b7:
bd:f3:0d:64:01:61:06:7d:e9:3b:09:50:b8:a1:8a:36:5d:e0:
3f:53:25:31
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBx9FOjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
YzZiNDIwMjE4ODZkOGVlZGJhZTkwZDllNmFiMWRlNTMzYzUwZDIwMB4XDTIyMDEw
MTE1MDEzOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzlhNzM4MjU0MmVk
YjVkOTc3NTEzMTVlYWIxY2E4NmEzN2JhZjE4MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI39EsOGjve7O6vuGtVHtQbC9V6fs6zVm37MUdV3Z9J0aQ57
nwhYT2hyn46tqnskmq4Qet0rMK0qChYKmLC81dL65vSECEiaklZlR834cvCOzQyS
Kzbw3bfq24nmvG67HVxdAxo6l6ww65okQPLIXRA+p8uQSY+jqXpWNfFdsTOZAu/g
2qwaol289XEXkaEcYSS0qK/mVeArSIVG0QSjqGCTYDSyCkmNU0GgQjujnkiXvtik
FiJaHb0dx0jcYLB7icwwia/oAuEUxE6iMtBB+6VH6r7/egKNfplwoVGbwfnacHzi
gMhPeYBSGQZniLIwn9pgl9RPUdoiMKy9Hldk9J0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ5pzglQu212XdRMV6rHKhqN7rxgDAfBgNVHSMEGDAWgBTsa0ICGIbY7tuu
kNnmqx3lM8UNIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdHdENBaGlHMk83YnJwRFo1cXNkNVRQRkRTQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNGMvMjZjM2UxLTY0ODYtNGUwOS05OWE0LWE2ODczYjM3NGUyNi8x
L09hYzRKVUx0dGRsM1VURmVxeHlvYWplNjhZQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMv
MjZjM2UxLTY0ODYtNGUwOS05OWE0LWE2ODczYjM3NGUyNi8xLzdHdENBaGlHMk83
YnJwRFo1cXNkNVRQRkRTQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMJrgDANBgkqhkiG9w0BAQsFAAOC
AQEAEW2mvD4aGcqaCNZx1Gd3BTfc/9Z92VjMQt+nsmWSwPbbzZnrrhGWvI2byphA
0AzFbe8tstOYHXGrz00thenYl5mbQPsifSR9TGUAqIKiDTzorHw90m/NyBFivA9i
jlbMq8kU+iRuJafX6qyKEItCx4POBrOGCegmgJdO2C7zEpq7Vgf7aOKAV8rfVCXB
RnTU7Utepq7aRW7s/anzU4kqbA5l2UPNw3jE9/uEL8q3PvYLVUVZ5ZWPnUubRSTe
rHZqNHbqO2kXqCSgEWlDkRWkXNJu/WKwQUXPPNnw1WZikuqXFmA3PpyYQwS3vfMN
ZAFhBn3pOwlQuKGKNl3gP1MlMQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:26 2024 by rpki-client on console-fra.rpki-client.org