Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/1tPWNe363IclYY4QwdpYhchpv0o.roa
File: 1tPWNe363IclYY4QwdpYhchpv0o.roa (raw, json)
Hash identifier: 2GQIxfiRuH/OPAahArS9Kqx7DxsePnqDWBcMmyR+rT0=
Subject key identifier: D6:D3:D6:35:ED:FA:DC:87:25:61:8E:10:C1:DA:58:85:C8:69:BF:4A
Certificate issuer: /CN=0e931a7cf2da94ccd4a2afce23f392d4061d56f9
Certificate serial: 09D227F2
Authority key identifier: 0E:93:1A:7C:F2:DA:94:CC:D4:A2:AF:CE:23:F3:92:D4:06:1D:56:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DpMafPLalMzUoq_OI_OS1AYdVvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/1tPWNe363IclYY4QwdpYhchpv0o.roa
Signing time: Sat 01 Jan 2022 06:53:45 +0000
ROA not before: Sat 01 Jan 2022 06:53:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58273
IP address blocks: 194.31.184.0/22 maxlen: 24
2a09:1880::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164767730 (0x9d227f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e931a7cf2da94ccd4a2afce23f392d4061d56f9
Validity
Not Before: Jan 1 06:53:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6d3d635edfadc8725618e10c1da5885c869bf4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:2c:13:85:87:cf:b8:41:d0:46:8c:93:af:ec:
1d:3f:87:10:67:99:7d:0d:3f:c8:92:26:af:20:21:
dd:7b:d4:a0:58:67:7b:73:ab:64:54:7d:ca:eb:3b:
c8:24:1f:49:9b:bf:2d:37:36:23:83:dd:6b:86:82:
cf:4a:c3:66:81:ee:cc:ae:8a:4d:dc:db:20:e3:67:
02:4e:a4:6a:06:69:f5:e3:19:cd:10:05:72:7f:b8:
20:e3:3e:e2:19:2a:a0:d7:eb:aa:bb:16:87:46:e8:
95:ba:8d:28:14:fb:ec:00:17:67:93:0c:d1:32:11:
93:80:a5:60:dd:c4:1b:85:49:8d:fd:69:e1:ec:29:
29:cd:ec:76:5c:6c:6e:9b:80:b1:b5:7f:ea:e5:db:
6c:86:c8:3c:7b:70:b9:46:fd:e4:04:76:0d:bd:e9:
ad:4d:00:6f:6d:f0:68:35:54:bd:34:cf:24:6a:c2:
ff:47:a4:31:5e:a7:84:b4:60:2a:2c:27:d6:3b:62:
10:24:8f:b8:11:47:35:6d:58:c1:94:b3:f3:06:cb:
a0:d1:f3:3a:20:75:31:e4:db:f2:b6:43:dc:af:fd:
81:fd:9c:31:37:69:8a:88:13:ed:54:b8:f3:b4:5d:
4f:e2:cd:2a:9c:da:bc:e4:b2:2c:23:e7:f0:b2:76:
61:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D3:D6:35:ED:FA:DC:87:25:61:8E:10:C1:DA:58:85:C8:69:BF:4A
X509v3 Authority Key Identifier:
keyid:0E:93:1A:7C:F2:DA:94:CC:D4:A2:AF:CE:23:F3:92:D4:06:1D:56:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DpMafPLalMzUoq_OI_OS1AYdVvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/1tPWNe363IclYY4QwdpYhchpv0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/eb8461-ab07-45c7-b9d6-d41a1a084c35/1/DpMafPLalMzUoq_OI_OS1AYdVvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.184.0/22
IPv6:
2a09:1880::/29
Signature Algorithm: sha256WithRSAEncryption
32:74:4e:4e:2b:20:49:35:66:f1:e4:a8:7b:76:4c:7f:b6:04:
a0:a1:b8:46:1d:80:b7:c5:1c:60:66:49:09:f9:e6:bd:c5:bb:
d3:4e:9e:64:13:21:b5:b9:fa:dd:9f:fe:a9:ef:ec:80:de:01:
3f:2b:be:fa:64:09:09:f2:c3:da:da:79:d9:8c:a6:10:28:43:
cf:bd:43:b9:a7:36:25:d1:ac:dc:61:1d:3a:77:d0:6e:b7:d0:
3e:89:10:b7:ad:94:72:7f:3f:67:4d:a5:e6:81:a7:30:a8:1e:
8f:e5:6a:ba:c9:fb:40:6e:a7:f9:47:24:83:35:b7:e1:90:61:
86:d3:c4:d0:9c:83:f8:73:0a:63:fe:b9:0a:b0:e4:6e:35:1e:
84:29:19:bf:b0:05:da:7f:20:d6:62:f8:e5:c0:c1:04:39:1a:
c6:e4:e1:8f:60:e2:47:12:b1:00:08:de:c6:7b:a3:52:2c:9c:
20:8f:1e:98:ad:53:97:d8:11:eb:97:ed:14:7a:25:15:d4:7e:
76:17:1c:40:66:ca:32:9a:9c:25:36:4a:16:a9:c3:44:7c:74:
14:a8:c5:50:1e:9b:64:f4:33:d4:7a:fd:27:e2:96:f9:2e:52:
2d:ec:5b:ef:b7:2b:39:b5:73:66:19:f1:7d:64:a2:21:4a:f3:
f2:a1:2e:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org