Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/226018-0e06-435e-abfd-f5ffee1720c1/1/l_H3vB8lRxXrJxvY9paTmHqgve0.roa
File: l_H3vB8lRxXrJxvY9paTmHqgve0.roa (raw, json)
Hash identifier: aMeiyTuE05eMCjOBrOSgU3w1zfDoT5kqcqi7AKTVx1E=
Subject key identifier: 97:F1:F7:BC:1F:25:47:15:EB:27:1B:D8:F6:96:93:98:7A:A0:BD:ED
Certificate issuer: /CN=e50c44ae981e7492d3ba21e28472080180398d64
Certificate serial: 33A0A827
Authority key identifier: E5:0C:44:AE:98:1E:74:92:D3:BA:21:E2:84:72:08:01:80:39:8D:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5QxErpgedJLTuiHihHIIAYA5jWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/226018-0e06-435e-abfd-f5ffee1720c1/1/l_H3vB8lRxXrJxvY9paTmHqgve0.roa
Signing time: Sat 01 Jan 2022 15:01:10 +0000
ROA not before: Sat 01 Jan 2022 15:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39381
IP address blocks: 194.147.245.0/24 maxlen: 24
2001:67c:2fe0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 866166823 (0x33a0a827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e50c44ae981e7492d3ba21e28472080180398d64
Validity
Not Before: Jan 1 15:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97f1f7bc1f254715eb271bd8f69693987aa0bded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b6:04:c3:27:ac:03:5a:37:a8:8d:7f:33:43:
4f:90:c4:1d:7f:70:02:e5:69:f9:4e:91:5b:ba:e6:
f5:3f:65:a0:2b:cf:4b:a5:84:50:5c:09:4e:c8:4c:
b1:18:fd:c5:10:32:b7:ed:7e:c2:c8:e6:d6:5e:71:
a2:d8:0e:92:8b:e7:29:3f:1f:ad:b0:5d:28:dd:46:
ef:71:93:ad:30:4f:7a:cb:86:6b:1e:5a:cb:e9:25:
fd:25:eb:05:0f:86:fe:0f:ca:39:a5:9b:dd:d7:a9:
31:13:8c:5d:f5:7d:d6:fa:61:ef:2f:ac:48:fa:ab:
de:e9:60:15:e5:2f:af:72:83:bb:d5:61:3e:3d:53:
05:50:24:85:ce:bb:e1:c7:96:50:98:53:dd:ec:cf:
0a:40:ce:69:b9:e5:d1:a4:82:15:cc:df:f0:e8:cb:
29:53:2f:5e:1f:e0:3f:65:79:30:42:80:c9:1d:df:
ab:46:bb:c6:2b:5d:a4:4e:ab:41:bc:6d:54:e1:44:
5d:43:19:a2:83:97:ca:87:25:e2:f5:18:da:05:b1:
e8:29:3d:70:c0:f8:5f:5f:bc:21:fc:7d:9b:86:f5:
78:36:66:09:cf:f4:54:ff:4f:80:93:5e:7c:23:1c:
7a:79:18:07:67:7b:98:2a:a9:6f:e0:89:49:e1:be:
41:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:F1:F7:BC:1F:25:47:15:EB:27:1B:D8:F6:96:93:98:7A:A0:BD:ED
X509v3 Authority Key Identifier:
keyid:E5:0C:44:AE:98:1E:74:92:D3:BA:21:E2:84:72:08:01:80:39:8D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5QxErpgedJLTuiHihHIIAYA5jWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/226018-0e06-435e-abfd-f5ffee1720c1/1/l_H3vB8lRxXrJxvY9paTmHqgve0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/226018-0e06-435e-abfd-f5ffee1720c1/1/5QxErpgedJLTuiHihHIIAYA5jWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.245.0/24
IPv6:
2001:67c:2fe0::/48
Signature Algorithm: sha256WithRSAEncryption
3e:01:ad:98:1a:83:2b:2d:4f:db:4b:2c:ec:c8:ee:e8:36:b7:
f8:4a:9c:ba:5d:0a:e3:00:ee:05:e1:ae:1f:a1:b4:73:07:04:
22:8f:2b:28:54:a6:88:17:c4:70:70:17:42:54:d9:20:ac:a8:
46:cd:82:75:b7:90:22:12:f6:5c:76:22:6c:2b:4d:e3:6d:a8:
bf:87:1b:a0:5c:3e:c0:2b:08:63:0d:e1:02:32:a6:be:78:0c:
c3:43:a3:5e:f7:c1:62:4b:34:23:86:87:1c:76:1a:12:5d:8a:
a9:6b:f4:c3:b5:e9:f4:7d:24:15:82:64:02:79:15:40:13:de:
b1:4d:47:01:4f:a0:33:a5:43:79:68:e3:b9:9e:47:fb:41:57:
15:f1:2e:db:f8:ae:94:24:24:df:4a:e5:ca:21:9a:0b:07:d2:
17:13:91:05:ad:dd:5e:68:ea:9f:08:0d:34:75:24:2c:a0:69:
1a:46:cd:df:02:5b:73:c0:79:d9:25:a9:e1:66:4d:d6:69:9b:
60:e1:8e:18:56:12:ee:47:85:67:e9:28:51:b9:1d:a6:33:a1:
bd:09:37:fe:f6:24:c8:b4:67:b2:2f:37:61:81:e7:82:e9:46:
75:05:aa:f1:75:57:d2:fb:43:2b:5b:07:42:9d:a1:ee:a7:ca:
01:7a:b1:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:06 2024 by rpki-client on console-ams.rpki-client.org