Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/4XJUcZ21cfSg_1Vni95bfb9NU14.roa
File: 4XJUcZ21cfSg_1Vni95bfb9NU14.roa (raw, json)
Hash identifier: MiCZP2T3K7PHfnZLxMgtx65ch6z+uzKWsKRgvoRA15o=
Subject key identifier: E1:72:54:71:9D:B5:71:F4:A0:FF:55:67:8B:DE:5B:7D:BF:4D:53:5E
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 449548DD
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/4XJUcZ21cfSg_1Vni95bfb9NU14.roa
Signing time: Sat 01 Jan 2022 03:58:41 +0000
ROA not before: Sat 01 Jan 2022 03:58:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199233
IP address blocks: 194.2.131.0/24 maxlen: 24
194.2.130.0/23 maxlen: 24
90.85.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150634205 (0x449548dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e17254719db571f4a0ff55678bde5b7dbf4d535e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:83:55:a8:bc:9d:a5:5c:d0:1a:4f:79:77:1b:
36:7c:d4:e5:bb:28:41:ae:d3:83:12:2d:81:e7:cf:
20:72:07:81:25:e7:62:2f:fe:2d:35:80:eb:c4:8e:
2e:fb:62:9f:22:2d:aa:18:52:10:22:9a:3d:2b:45:
b8:2a:76:ca:71:23:f8:d9:9e:fb:e2:07:a2:69:48:
f0:c8:89:02:60:fb:4a:51:02:f1:3b:27:84:4b:df:
65:cf:48:ef:bd:36:a6:69:b4:8e:c3:2e:06:d6:91:
ba:19:9b:d3:0d:ab:bd:74:d0:fe:0c:20:72:0e:d7:
7a:a8:d5:88:1e:29:60:03:01:c7:20:55:4e:6c:4e:
d1:e5:92:16:3c:e5:40:59:74:27:7e:92:4d:8c:17:
fb:54:49:d5:91:e6:00:c6:54:e1:8a:f0:2f:5b:24:
61:fc:e6:b0:a2:37:c5:88:b1:5a:37:c7:3e:48:3a:
f0:f1:22:67:69:29:7f:7c:2f:4d:1c:42:4a:a4:f8:
24:2b:ec:50:c8:57:9e:b7:22:f1:76:64:63:66:ff:
b8:53:24:e2:95:a5:25:7e:fa:c8:1d:33:58:b2:3c:
7e:f3:cd:52:1b:8c:bc:e9:9f:55:79:b6:64:be:14:
e7:1f:92:b8:04:0a:c4:bd:03:92:0b:0b:bf:ee:15:
a5:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:72:54:71:9D:B5:71:F4:A0:FF:55:67:8B:DE:5B:7D:BF:4D:53:5E
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/4XJUcZ21cfSg_1Vni95bfb9NU14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
90.85.39.0/24
194.2.130.0/23
Signature Algorithm: sha256WithRSAEncryption
68:9f:a1:a0:66:e0:64:d8:9f:31:46:ec:fd:d4:1a:8d:46:70:
bd:40:16:60:e1:19:84:91:14:56:c4:12:9d:ca:2b:5b:6c:d1:
06:c2:1a:d3:fc:14:03:2f:f2:37:07:17:93:98:74:3a:68:04:
8d:86:51:97:f7:21:b8:30:9a:01:97:60:80:b0:29:f4:b9:e3:
d8:f6:9a:a0:63:eb:98:d2:a0:c0:81:09:02:88:97:68:fa:a8:
60:32:56:83:b3:29:55:c5:40:8d:55:c5:19:da:f6:e9:fe:aa:
2b:c3:24:57:bc:d0:72:be:bd:ea:c9:a6:02:91:94:39:da:2e:
73:bb:c9:2a:ce:20:74:c6:45:38:5e:7f:26:bb:7d:c0:cf:b0:
e4:0d:fd:23:9b:8b:df:c4:ec:f9:32:ed:7b:24:5b:d9:85:1b:
a7:a3:7d:2c:95:a4:99:7e:61:9b:18:47:7e:a4:99:40:fb:70:
fd:32:cc:2e:7f:62:df:5f:2c:cc:0a:c7:87:dd:76:ae:d4:ea:
fd:57:fd:b1:6f:75:1a:9f:35:63:c7:31:51:72:8b:ba:9d:06:
03:9c:e5:18:77:6d:ac:a8:ad:45:d2:fa:a6:0f:7d:d8:f8:3d:
8e:d2:e0:e9:8e:9e:2c:b0:bc:24:98:7f:d2:e1:08:92:d2:73:
5a:c6:b5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org