Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/DY96jRV6Tt0-aweb3D1w9e2tL9I.roa
File: DY96jRV6Tt0-aweb3D1w9e2tL9I.roa (raw, json)
Hash identifier: Htu6ho1H9PHqk2vxoEp6jE1bI2p6BgCl2HUehjZ/Blg=
Subject key identifier: 0D:8F:7A:8D:15:7A:4E:DD:3E:6B:07:9B:DC:3D:70:F5:ED:AD:2F:D2
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0181D89AAA0A87169A03A841DD819F662DBE
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/DY96jRV6Tt0-aweb3D1w9e2tL9I.roa
Signing time: Thu 07 Jul 2022 12:20:23 +0000
ROA not before: Thu 07 Jul 2022 12:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62422
IP address blocks: 194.226.26.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d8:9a:aa:0a:87:16:9a:03:a8:41:dd:81:9f:66:2d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jul 7 12:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d8f7a8d157a4edd3e6b079bdc3d70f5edad2fd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:95:e3:99:e9:7d:cc:ec:c7:72:05:a0:32:
9b:94:e1:27:b4:b5:cf:29:bb:f2:33:57:95:c7:14:
c5:85:ef:2d:35:3d:44:8e:6e:3d:08:67:a8:a1:4c:
69:25:5d:b1:7a:72:e3:75:7b:f8:da:06:41:f0:99:
9d:b3:c2:d9:56:80:a1:07:bf:fe:4d:70:09:fc:90:
52:0a:1a:7e:89:3f:80:f9:e5:11:2f:a0:cd:e3:02:
15:16:c6:6c:0c:7b:5a:f7:eb:15:13:58:c1:be:9e:
e6:b8:49:cd:37:1e:d9:19:81:61:b9:58:28:ab:a9:
ff:c6:82:54:de:b5:b5:73:7a:02:6e:55:d1:50:c2:
87:b3:bd:ed:06:20:91:94:40:b2:01:0b:ee:56:81:
8a:3d:7f:d6:fe:e3:d5:4e:7c:f5:9c:f7:0b:c7:85:
8e:fc:af:4f:f0:ef:a8:7c:ea:f7:36:c5:d9:b3:8b:
5c:2c:e8:25:0e:8d:b6:66:77:99:23:3e:10:73:e1:
4e:c2:f9:e9:87:3b:8c:9e:60:ac:0c:58:31:17:09:
1a:17:ae:16:52:52:30:da:8a:ce:82:ba:d3:dc:f6:
98:c1:c6:a9:ae:a9:a2:8f:68:a4:97:c7:0f:04:b5:
56:e1:74:6e:6c:e3:ed:d6:85:11:aa:18:c0:ce:bd:
be:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:8F:7A:8D:15:7A:4E:DD:3E:6B:07:9B:DC:3D:70:F5:ED:AD:2F:D2
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/DY96jRV6Tt0-aweb3D1w9e2tL9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.26.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:50:e1:82:4d:e2:8c:d4:ab:f5:e3:f9:e9:23:51:3f:51:17:
2e:53:4c:3c:68:66:db:a0:b8:84:1f:3f:bf:a3:f1:1b:ef:6a:
86:22:06:59:f5:ed:7a:1f:8e:df:bf:86:a6:d9:f8:43:51:d0:
ff:3c:53:6e:3e:3d:6e:e3:ba:e0:fd:a8:6f:03:39:75:c1:3f:
fa:78:d1:ef:d0:73:56:5a:e8:cd:8b:39:4d:f7:60:6d:c6:b0:
ef:ff:6f:8a:31:98:82:19:c1:59:e2:24:26:db:00:3e:74:ec:
18:42:6c:89:18:2b:bd:54:84:a2:c6:e5:d6:98:3d:6e:7b:93:
ec:5a:d8:a2:d2:1c:8e:e8:30:1c:e9:0d:e5:52:dd:0f:c3:f2:
d0:62:a2:4d:e3:22:f4:4b:05:c5:df:bc:b9:b7:b4:03:0e:31:
20:47:98:00:d4:a1:74:9e:8a:91:3e:70:09:17:7b:3c:de:92:
22:ba:e0:8b:01:a7:80:e2:c0:7c:8a:a9:41:61:96:7b:fd:e2:
ea:6a:58:9d:98:6a:2c:d1:23:dd:62:8f:38:5f:79:b8:ca:da:
86:07:01:13:e7:9e:3a:af:56:bd:fb:04:16:5a:31:0b:47:00:
94:d2:d3:2c:33:63:72:37:36:4c:ec:59:85:e9:5c:d5:42:eb:
49:0c:25:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:58 2024 by rpki-client on console-ams.rpki-client.org