Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/2o_2e7s9iyRZQCoHosTJaRWTeWU.roa
File: 2o_2e7s9iyRZQCoHosTJaRWTeWU.roa (raw, json)
Hash identifier: EyHE0MhYSWJomTfbvG6lA9ljVvH2hTQs9IIYmzAwSDw=
Subject key identifier: DA:8F:F6:7B:BB:3D:8B:24:59:40:2A:07:A2:C4:C9:69:15:93:79:65
Certificate issuer: /CN=2dd596c1ea7ecbb1be1777fc0d38ed06ca40eabe
Certificate serial: 0274EC52
Authority key identifier: 2D:D5:96:C1:EA:7E:CB:B1:BE:17:77:FC:0D:38:ED:06:CA:40:EA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LdWWwep-y7G-F3f8DTjtBspA6r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/2o_2e7s9iyRZQCoHosTJaRWTeWU.roa
Signing time: Sat 14 May 2022 13:31:39 +0000
ROA not before: Sat 14 May 2022 13:31:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 194.104.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41217106 (0x274ec52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2dd596c1ea7ecbb1be1777fc0d38ed06ca40eabe
Validity
Not Before: May 14 13:31:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da8ff67bbb3d8b2459402a07a2c4c96915937965
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d7:cb:f2:9b:b6:f4:99:ca:1f:58:47:dd:62:
a2:77:54:19:f4:37:6b:cb:40:77:7a:61:00:98:5a:
76:f4:ca:ae:94:bf:6e:c2:22:f3:79:fe:a1:2d:68:
b9:f5:34:ad:cb:0a:7a:25:34:d7:38:72:4c:8c:2d:
7f:90:4a:97:22:a0:46:b9:e7:27:61:ef:56:18:fc:
75:77:41:95:88:b7:33:5c:0c:c2:8c:8c:85:cd:b0:
b2:4b:86:94:9a:e4:dd:9a:7a:6a:11:da:66:ef:1e:
9d:fc:fe:09:29:95:10:91:7d:22:97:e5:69:a7:de:
5a:03:67:b0:a2:27:67:77:f9:d8:1c:b0:2f:91:a2:
bc:8b:34:3b:a8:54:0c:1c:94:39:0f:6b:10:73:83:
23:ca:cf:8c:10:c2:b0:6c:78:19:4d:3e:8c:fc:d1:
20:ac:c1:ed:cc:11:80:fa:5d:4d:01:c4:56:5e:7c:
4d:c7:7e:da:5a:a7:48:b6:74:7c:59:67:67:4a:f7:
e2:e9:35:2f:39:d7:3c:c4:0b:17:9b:a5:d5:6a:ec:
11:8d:19:15:b9:00:ce:a4:2e:87:36:1b:e6:9d:67:
e1:d7:60:a0:bb:21:95:50:fb:bb:2c:56:0d:28:c3:
d9:45:25:7d:7b:b4:88:4e:b4:8b:e1:b8:e0:35:4a:
dd:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:8F:F6:7B:BB:3D:8B:24:59:40:2A:07:A2:C4:C9:69:15:93:79:65
X509v3 Authority Key Identifier:
keyid:2D:D5:96:C1:EA:7E:CB:B1:BE:17:77:FC:0D:38:ED:06:CA:40:EA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LdWWwep-y7G-F3f8DTjtBspA6r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/2o_2e7s9iyRZQCoHosTJaRWTeWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/363ecc-2aa1-4281-95b1-8b0fc07858d6/1/LdWWwep-y7G-F3f8DTjtBspA6r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.149.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:0e:9a:b3:41:67:32:b8:4e:0f:a5:8c:79:6e:ce:f3:0a:eb:
b8:65:89:02:18:3a:d7:c9:73:7b:56:15:bd:0d:10:ec:f5:2d:
c1:ab:9f:f7:b7:6e:63:b5:41:22:17:d9:71:8f:73:01:79:c3:
44:21:95:df:92:96:36:ab:41:54:b0:03:13:ee:b0:25:76:b0:
45:09:5e:ca:2d:43:c7:df:b8:99:9a:f4:3b:4e:9c:bd:57:75:
55:6e:09:6e:9f:a1:d5:e7:66:35:eb:a7:e4:cd:f8:0a:de:93:
8c:de:84:25:76:b3:e5:d1:6f:a8:ef:ef:09:3f:98:bb:f0:98:
2c:65:78:44:e2:0a:b4:d6:e1:61:61:15:41:8f:3f:5e:5d:dc:
65:14:aa:e1:a2:76:ee:c6:64:b1:b8:7b:d7:52:94:dd:d8:22:
fe:b6:01:ba:e5:c9:b2:80:eb:aa:f0:ee:39:1e:5b:54:f6:6d:
72:d9:6a:db:80:98:5d:20:ff:86:7a:1b:9b:c4:7d:80:9a:ff:
b4:21:58:4d:ee:06:8b:a7:e8:65:c7:82:27:d2:c4:c3:83:d9:
39:13:c8:ac:6b:e5:46:d4:0f:b0:3c:93:77:d3:3b:91:e8:e1:
1b:eb:92:22:2a:a6:c7:90:d1:7a:cc:6d:d6:59:19:67:2a:28:
88:b0:f3:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:39 2024 by rpki-client on console-fra.rpki-client.org