Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/42f014-cd92-4205-aa53-1a80a2f7d7ea/1/dr9TH69s1WnI9bjmQOA8u-HVPZU.roa
File: dr9TH69s1WnI9bjmQOA8u-HVPZU.roa (raw, json)
Hash identifier: eMumVWhFh2riUoBNUn5tybKMTM7BAuy58QZaUIP8QGY=
Subject key identifier: 76:BF:53:1F:AF:6C:D5:69:C8:F5:B8:E6:40:E0:3C:BB:E1:D5:3D:95
Certificate issuer: /CN=cd576d876e17e67aa3b1f1c10dab39db2935e22b
Certificate serial: 0161FF6D
Authority key identifier: CD:57:6D:87:6E:17:E6:7A:A3:B1:F1:C1:0D:AB:39:DB:29:35:E2:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zVdth24X5nqjsfHBDas52yk14is.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/42f014-cd92-4205-aa53-1a80a2f7d7ea/1/dr9TH69s1WnI9bjmQOA8u-HVPZU.roa
Signing time: Sat 01 Jan 2022 11:58:30 +0000
ROA not before: Sat 01 Jan 2022 11:58:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209103
IP address blocks: 194.126.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23199597 (0x161ff6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd576d876e17e67aa3b1f1c10dab39db2935e22b
Validity
Not Before: Jan 1 11:58:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76bf531faf6cd569c8f5b8e640e03cbbe1d53d95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:05:bc:23:7c:2c:46:73:07:73:7d:86:ce:f9:
54:6d:1b:40:56:95:09:52:ca:68:04:3c:c9:d8:3a:
05:8c:47:0f:25:2a:25:98:f3:7a:a8:2a:04:5b:7f:
c3:f6:0d:31:c7:24:5f:f6:79:87:6b:47:14:eb:a1:
34:c8:70:41:c4:39:0e:da:b2:81:11:24:0d:59:ef:
87:1e:74:46:2d:03:5c:d4:b3:1d:bd:a3:f9:6e:d8:
ac:33:47:ff:ef:d8:6f:0b:85:10:38:d4:49:3b:bb:
fa:7f:59:fc:6b:7c:7a:fb:25:de:7c:43:65:82:98:
f5:61:af:22:79:74:27:51:10:d6:a3:b1:d6:86:35:
38:51:80:c3:7d:61:1f:50:f5:cf:b8:74:db:f0:bd:
45:53:ed:28:43:23:a6:ac:2c:e9:41:bf:78:95:d7:
d8:2e:81:f1:17:7e:5f:f3:2b:70:85:f3:88:df:90:
66:be:31:23:06:4a:70:92:9d:fe:2d:a0:d1:e3:a6:
71:2a:38:dd:b7:c4:18:bb:40:a0:55:29:8c:69:2e:
81:50:0a:57:40:24:fc:f5:48:b7:9b:a0:91:9a:2e:
38:13:f3:6a:29:de:91:06:45:6e:4c:ec:13:c4:3c:
bb:3f:41:12:68:7e:ae:5f:bd:9b:0c:3a:86:c3:a5:
9f:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BF:53:1F:AF:6C:D5:69:C8:F5:B8:E6:40:E0:3C:BB:E1:D5:3D:95
X509v3 Authority Key Identifier:
keyid:CD:57:6D:87:6E:17:E6:7A:A3:B1:F1:C1:0D:AB:39:DB:29:35:E2:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zVdth24X5nqjsfHBDas52yk14is.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/42f014-cd92-4205-aa53-1a80a2f7d7ea/1/dr9TH69s1WnI9bjmQOA8u-HVPZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/42f014-cd92-4205-aa53-1a80a2f7d7ea/1/zVdth24X5nqjsfHBDas52yk14is.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.177.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:1a:cb:1d:5b:2b:66:64:b9:33:29:96:7a:3d:87:a7:df:8a:
66:69:03:38:0f:fb:b4:99:5e:66:57:f2:3a:96:a9:42:4c:ce:
42:c2:06:07:7e:7e:ef:60:39:81:31:6c:8d:91:6a:35:cb:84:
6a:ea:9a:ef:4b:da:34:1b:50:9f:6f:a8:f2:b3:a8:64:72:2a:
65:c5:b3:fc:65:c2:5b:d4:56:84:87:57:48:fb:64:6e:51:49:
c3:00:ea:c9:d5:33:8b:b3:bf:87:3a:dc:cf:83:ef:a1:cf:d0:
2c:ff:d1:55:01:db:9b:0a:c1:ed:e9:61:6b:4c:94:b0:f7:ae:
f3:41:50:53:7d:ef:3f:b2:73:a1:52:d3:36:06:e1:be:e0:39:
0b:95:1b:38:df:29:c2:c4:78:67:cd:63:56:a4:dc:d2:a4:76:
51:c6:cf:9b:8c:5c:0e:b7:88:d2:a9:85:1b:4d:65:b7:62:83:
1d:15:57:71:97:3a:e5:80:7f:b4:85:61:11:23:60:f1:cb:46:
ab:c8:6e:e7:f5:9b:df:86:a1:32:fd:06:b2:31:d2:f6:7a:65:
4a:47:c4:f3:b3:16:ec:82:ac:29:1c:9f:9c:7f:df:87:1a:a2:
1b:e5:84:2b:48:74:b5:43:39:08:f6:40:b2:4a:c0:05:d4:53:
0b:ca:df:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:20 2024 by rpki-client on console-ams.rpki-client.org