Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/u9LrYvSOLu0VJBUallraq8kUG2c.roa
File: u9LrYvSOLu0VJBUallraq8kUG2c.roa (raw, json)
Hash identifier: yIY8DcqoOm7QovGPlqAW3uw6iqQ0t5M3d92k8DUWYBU=
Subject key identifier: BB:D2:EB:62:F4:8E:2E:ED:15:24:15:1A:96:5A:DA:AB:C9:14:1B:67
Certificate issuer: /CN=dcca522196fd09bae739b6bd2322e5eb90da4fb9
Certificate serial: 02187C6E
Authority key identifier: DC:CA:52:21:96:FD:09:BA:E7:39:B6:BD:23:22:E5:EB:90:DA:4F:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3MpSIZb9CbrnOba9IyLl65DaT7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/u9LrYvSOLu0VJBUallraq8kUG2c.roa
Signing time: Tue 19 Apr 2022 15:38:44 +0000
ROA not before: Tue 19 Apr 2022 15:38:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41960
IP address blocks: 194.50.3.0/24 maxlen: 24
194.49.111.0/24 maxlen: 24
194.49.116.0/24 maxlen: 24
194.49.115.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35159150 (0x2187c6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcca522196fd09bae739b6bd2322e5eb90da4fb9
Validity
Not Before: Apr 19 15:38:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd2eb62f48e2eed1524151a965adaabc9141b67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:58:13:c0:43:66:78:1d:cd:a3:fa:16:ce:71:
b5:48:78:48:dd:84:23:0b:96:d5:ab:92:fd:77:36:
67:a4:7d:27:7b:05:9e:67:95:cd:68:e2:1c:1a:7c:
a6:02:20:fe:7c:c0:d0:bd:0b:f9:20:b9:3a:4a:d7:
ba:d7:2b:43:cd:98:67:58:c3:f6:ca:80:b4:9c:ed:
06:4e:39:9a:ae:cf:d5:88:90:33:7c:6b:6b:e1:58:
7f:a9:28:bd:22:5b:2e:2e:64:ba:c1:f1:68:a4:66:
65:2c:be:ed:61:ed:3a:58:da:0a:04:f9:11:7f:7d:
86:98:0d:c5:d2:50:c0:00:92:2a:6d:e6:b2:df:60:
e0:0b:50:83:c5:61:40:ca:4f:4e:e5:96:e1:9d:39:
17:72:e6:e7:eb:29:2b:c0:94:31:80:d9:8f:0a:88:
10:0a:fd:13:af:86:27:f3:bf:69:f6:8d:73:74:54:
4d:a0:e6:56:7e:c8:43:09:11:28:18:ba:b5:03:9a:
65:9f:63:62:8e:53:86:41:d2:f5:55:02:e0:9d:2c:
40:14:14:cf:3a:0b:00:57:a3:8a:dd:f8:c8:b7:ba:
ee:96:b8:3a:2e:23:01:42:fe:db:e4:e7:f4:8a:a7:
84:34:a3:66:8b:bb:39:ad:ac:6e:7d:86:4a:d0:49:
7c:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D2:EB:62:F4:8E:2E:ED:15:24:15:1A:96:5A:DA:AB:C9:14:1B:67
X509v3 Authority Key Identifier:
keyid:DC:CA:52:21:96:FD:09:BA:E7:39:B6:BD:23:22:E5:EB:90:DA:4F:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3MpSIZb9CbrnOba9IyLl65DaT7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/u9LrYvSOLu0VJBUallraq8kUG2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/649af0-132c-4533-9fbc-3b250ae18936/1/3MpSIZb9CbrnOba9IyLl65DaT7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.111.0/24
194.49.115.0-194.49.116.255
194.50.3.0/24
Signature Algorithm: sha256WithRSAEncryption
10:9e:b8:c2:c5:23:94:07:19:49:53:77:f1:81:b4:23:2f:32:
59:f4:94:37:5e:26:0d:e3:8d:71:1d:a7:08:14:9b:27:22:4f:
61:75:4f:f7:b5:e1:3b:28:20:16:b2:cc:ca:20:82:12:ae:8d:
e2:75:e5:22:5c:ad:b2:07:78:af:71:ae:90:38:be:db:8b:e0:
19:9d:33:ef:e0:f5:f5:c5:4c:7a:46:a0:b9:7b:db:0a:68:59:
1e:95:11:29:27:73:47:09:7f:9f:f7:1a:6f:ef:f7:ec:3e:04:
81:89:cc:8f:83:88:5a:4b:8f:2a:c6:fa:82:5a:b2:43:e5:d8:
9b:8c:40:c4:c3:50:15:dd:16:4c:0d:8b:a6:9a:62:07:73:84:
d0:00:1b:d5:eb:0b:46:27:7a:20:a7:ff:98:5d:5c:c2:50:f1:
e1:29:3d:5f:93:dd:fb:06:53:80:3f:f3:bb:14:bf:af:5f:4c:
1f:09:27:b4:11:14:8a:dd:d0:1c:3a:48:9c:30:1d:7a:7a:62:
ba:cc:1c:b1:b1:99:41:99:75:18:2c:e0:39:71:dc:30:64:72:
32:b1:50:46:fc:34:a5:26:60:49:bd:57:c4:a8:ae:18:6d:06:
37:1a:80:d6:2a:2b:71:8d:0a:b8:a5:29:eb:e3:4a:e2:ec:15:
73:1b:1b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:24 2024 by rpki-client on console-ams.rpki-client.org