Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/oDOKA2Dw1aPWLw3iWLSUsqQvfAA.roa
File: oDOKA2Dw1aPWLw3iWLSUsqQvfAA.roa (raw, json)
Hash identifier: /rWWI1Lmozz8ZoOVk4Uoe1PgyxCpQNXYwKpspiz8Guk=
Subject key identifier: A0:33:8A:03:60:F0:D5:A3:D6:2F:0D:E2:58:B4:94:B2:A4:2F:7C:00
Certificate issuer: /CN=463528c540a6d577c2d1cc1a6eea17124b392386
Certificate serial: 0AD21CCD
Authority key identifier: 46:35:28:C5:40:A6:D5:77:C2:D1:CC:1A:6E:EA:17:12:4B:39:23:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RjUoxUCm1XfC0cwabuoXEks5I4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/oDOKA2Dw1aPWLw3iWLSUsqQvfAA.roa
Signing time: Sat 01 Jan 2022 13:05:51 +0000
ROA not before: Sat 01 Jan 2022 13:05:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61094
IP address blocks: 194.56.72.0/23 maxlen: 24
194.56.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181542093 (0xad21ccd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=463528c540a6d577c2d1cc1a6eea17124b392386
Validity
Not Before: Jan 1 13:05:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0338a0360f0d5a3d62f0de258b494b2a42f7c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e4:a3:9f:a9:b0:95:52:21:de:d7:c4:c5:df:
07:e4:22:a4:e9:0d:9a:4d:9f:34:9a:01:77:e2:34:
a1:27:77:0e:a2:ef:69:7b:78:7b:b0:f1:3b:ed:e1:
30:3d:20:2a:03:4b:31:78:cb:c8:62:7f:e9:e5:5e:
ce:b0:41:38:a9:9d:a4:e2:35:c3:3a:06:98:61:83:
63:04:09:0d:be:df:6c:78:b5:23:98:c5:89:3a:5b:
b1:0a:23:d6:35:35:df:0d:da:05:08:d4:72:57:16:
fb:a5:44:96:ad:93:24:75:63:79:12:7c:bc:7b:28:
a4:27:e6:7e:c7:7d:c4:92:3e:ea:df:ac:12:b7:6c:
3e:c5:39:a4:9b:10:c8:b9:dc:59:03:30:e9:fc:7d:
81:07:e3:b8:c1:89:96:7b:db:08:66:75:54:3d:61:
34:48:94:78:b0:7c:43:a6:a6:f7:61:24:fd:f7:1e:
12:31:8c:ea:24:c0:47:79:c3:6e:38:c4:66:ee:e4:
2e:3c:96:c5:73:63:b7:76:1e:5d:b2:ee:45:11:e0:
66:8c:04:05:35:2e:f7:11:3e:59:b5:17:f4:6e:25:
13:09:72:3e:bd:33:f1:f5:8e:a3:44:47:b9:0e:b5:
7b:66:7c:1c:22:fc:48:40:d3:a9:23:9d:c6:e3:e5:
f3:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:33:8A:03:60:F0:D5:A3:D6:2F:0D:E2:58:B4:94:B2:A4:2F:7C:00
X509v3 Authority Key Identifier:
keyid:46:35:28:C5:40:A6:D5:77:C2:D1:CC:1A:6E:EA:17:12:4B:39:23:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RjUoxUCm1XfC0cwabuoXEks5I4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/oDOKA2Dw1aPWLw3iWLSUsqQvfAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/c96291-5efb-41b3-bcfb-92b0fd5d7644/1/RjUoxUCm1XfC0cwabuoXEks5I4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.72.0-194.56.74.255
Signature Algorithm: sha256WithRSAEncryption
4f:98:fa:55:c5:08:28:71:79:c0:fd:90:6c:52:75:8f:36:f9:
15:5a:81:8a:db:ae:f3:2e:a6:30:46:cc:d6:5b:fd:76:8d:8a:
90:3c:70:b0:82:f2:02:9b:4b:cd:8c:71:42:5f:2f:ee:06:6e:
08:c0:42:4d:8b:03:77:c4:22:42:95:17:4f:ff:23:09:7f:aa:
50:c8:c3:c1:83:06:6c:84:8c:d7:b2:d1:94:eb:40:e0:6b:9b:
ee:da:8a:fa:32:d7:a2:58:c4:2e:d6:cf:fd:67:32:b1:5a:d1:
0a:2a:a3:11:b7:03:73:c1:b3:32:46:4a:fa:ca:ec:38:24:a8:
64:5d:ef:c8:7b:03:43:88:59:6e:b0:53:ca:c2:a5:20:0d:dc:
d5:c8:ea:77:c8:54:37:48:83:30:d4:15:b4:94:09:38:f7:15:
6c:31:a0:4f:9a:51:c2:dc:ee:e5:f2:6d:48:75:f6:29:07:0e:
fa:e2:fa:15:d0:36:d5:d6:d0:43:81:af:94:93:f9:0a:ee:a5:
d2:2d:04:69:d9:e9:e5:a0:7d:90:53:1e:77:d7:09:81:66:59:
c1:a1:12:b1:10:8b:df:00:f8:54:be:60:6b:d8:0b:71:8e:06:
95:98:e8:72:c4:2d:15:49:ed:79:15:f8:04:75:05:ea:f0:9e:
82:6f:11:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:04 2024 by rpki-client on console-fra.rpki-client.org