Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/XxupHOPo835dD-6k4oEjSAFbFiU.roa
File: XxupHOPo835dD-6k4oEjSAFbFiU.roa (raw, json)
Hash identifier: R+SvZpI5wttmEvUTvXOaXiLHY1YeJVe/w869fLmoi2c=
Subject key identifier: 5F:1B:A9:1C:E3:E8:F3:7E:5D:0F:EE:A4:E2:81:23:48:01:5B:16:25
Certificate issuer: /CN=dff1113bfc892d1df49a166047cb8c2aaeca768e
Certificate serial: 0185625AE4669021A086C5CCE505E2B763FA
Authority key identifier: DF:F1:11:3B:FC:89:2D:1D:F4:9A:16:60:47:CB:8C:2A:AE:CA:76:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3_ERO_yJLR30mhZgR8uMKq7Kdo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/XxupHOPo835dD-6k4oEjSAFbFiU.roa
Signing time: Fri 30 Dec 2022 09:26:41 +0000
ROA not before: Fri 30 Dec 2022 09:26:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49522
IP address blocks: 194.165.55.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:5a:e4:66:90:21:a0:86:c5:cc:e5:05:e2:b7:63:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dff1113bfc892d1df49a166047cb8c2aaeca768e
Validity
Not Before: Dec 30 09:26:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f1ba91ce3e8f37e5d0feea4e2812348015b1625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2a:29:ae:70:dc:0e:be:28:81:ec:d2:69:ff:
fa:0f:30:ae:1c:a8:6f:62:0b:17:e8:a5:0e:9a:81:
5c:41:b5:6f:2d:08:22:a6:f2:84:af:2a:f4:77:52:
12:8c:77:ca:29:6d:a6:cf:1f:f4:08:85:d6:f7:ce:
99:2e:44:d2:f6:45:ff:1c:91:2e:74:fa:36:b6:2c:
c1:08:2e:4b:a1:06:92:95:ff:3e:bf:34:cc:d4:fd:
fd:22:ce:f2:b6:80:ca:d9:2f:37:8e:84:e1:01:8d:
df:0f:2c:ef:e1:3d:fc:eb:63:b6:95:bd:c5:7f:2f:
9b:d8:db:60:03:81:0f:00:d9:d0:b0:f9:b0:1e:ce:
d6:74:81:ea:0c:b0:70:bf:59:5d:57:7f:e6:c7:99:
09:b8:f7:fb:37:a5:bd:d6:c7:70:cf:a2:15:da:fd:
a6:63:89:98:d3:5c:1e:af:3c:9b:11:4d:52:6a:63:
42:c4:a8:56:33:2b:1a:12:1c:de:72:32:ab:87:c1:
a1:5e:29:42:53:27:92:a6:82:c4:38:8c:82:b1:85:
8c:f2:92:9c:ab:9c:3f:fd:2a:45:f2:cc:41:ba:15:
8d:64:33:a8:9b:94:9b:ee:da:14:91:c4:19:40:eb:
16:4f:11:f6:38:0e:30:25:63:6c:38:a0:60:30:53:
2c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:1B:A9:1C:E3:E8:F3:7E:5D:0F:EE:A4:E2:81:23:48:01:5B:16:25
X509v3 Authority Key Identifier:
keyid:DF:F1:11:3B:FC:89:2D:1D:F4:9A:16:60:47:CB:8C:2A:AE:CA:76:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3_ERO_yJLR30mhZgR8uMKq7Kdo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/XxupHOPo835dD-6k4oEjSAFbFiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/94/db7b8f-3743-4470-a9b5-5a54169c1b5e/1/3_ERO_yJLR30mhZgR8uMKq7Kdo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.55.0/24
Signature Algorithm: sha256WithRSAEncryption
69:91:7e:fb:4a:ca:ec:4b:40:37:41:88:da:62:8c:5a:d0:e9:
4d:f6:8a:ed:41:c7:2f:8d:96:d2:c0:17:a2:a6:4b:d9:81:aa:
5a:34:0e:4a:bb:5c:cb:53:8f:ee:aa:19:15:12:b4:40:82:a8:
f6:c0:78:0b:21:fe:d1:7e:3a:51:8f:25:2f:79:51:6e:93:0a:
ff:34:dc:5c:c3:d9:78:39:10:3c:50:b7:17:07:ca:88:f3:df:
f6:25:a5:32:44:70:8d:c6:8d:24:99:fe:86:fe:47:b0:be:c2:
9a:5d:dd:15:9e:1e:6d:f1:0a:74:fb:18:35:d1:e3:16:22:f9:
fc:ea:f8:ba:3e:a6:9b:26:2b:00:af:3e:aa:d3:9f:03:55:0e:
0f:88:9b:ed:c1:15:d7:70:f8:f7:03:1e:6f:3a:d8:93:a3:54:
76:ca:75:0c:cc:9b:65:3f:bc:4c:df:3e:be:38:c7:ff:89:a8:
91:0a:47:b9:03:c0:6f:46:56:b6:61:ce:33:c1:0e:01:3c:14:
87:9b:ca:de:f6:ec:47:59:f5:db:11:69:1d:cb:d0:f1:96:53:
69:10:a9:13:f8:6f:6b:c8:ed:39:a6:69:c7:db:42:3d:0b:25:
90:5a:6d:9f:f4:13:51:79:23:46:37:51:68:10:a6:68:21:ec:
cd:d1:99:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:30 2024 by rpki-client on console-ams.rpki-client.org