Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/_rkrlM62VGjrbjP4hLi82K-6f1Q.roa
File: _rkrlM62VGjrbjP4hLi82K-6f1Q.roa (raw, json)
Hash identifier: nKhCChOfBWT7KWNO502k02TDwSHf+XosjraTWPuEoE0=
Subject key identifier: FE:B9:2B:94:CE:B6:54:68:EB:6E:33:F8:84:B8:BC:D8:AF:BA:7F:54
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 01848C5DEB65FABD37DC8AB7A25EF23CF769
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/_rkrlM62VGjrbjP4hLi82K-6f1Q.roa
Signing time: Fri 18 Nov 2022 20:11:16 +0000
ROA not before: Fri 18 Nov 2022 20:11:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211264
IP address blocks: 194.37.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8c:5d:eb:65:fa:bd:37:dc:8a:b7:a2:5e:f2:3c:f7:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: Nov 18 20:11:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=feb92b94ceb65468eb6e33f884b8bcd8afba7f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6e:a7:b1:d1:ce:d7:b5:df:d3:a8:ab:9a:d5:
1a:01:59:27:92:45:69:fa:69:91:77:e7:64:db:32:
59:da:0e:80:77:aa:86:58:34:c2:6e:b3:d4:c3:6b:
f3:0f:29:2f:a3:ce:aa:e3:3f:c4:99:d1:2d:12:24:
d2:88:5e:b6:84:68:72:24:8b:ec:ce:38:a8:49:2b:
19:10:be:f5:1d:25:65:e1:01:08:0e:63:f1:9a:45:
a2:27:ec:9c:3b:62:6f:59:2c:34:6b:4a:11:35:1b:
28:85:cd:8d:54:98:00:36:e0:ec:b5:a6:a3:b9:9e:
cb:29:f5:28:d3:04:e0:21:d0:cc:64:ad:03:f2:64:
c2:d3:aa:2e:ed:cb:c6:3d:e7:1d:8f:d3:d0:bf:f5:
ab:aa:10:6d:f4:99:7b:9c:95:a3:6c:b8:2b:60:3c:
2a:ac:10:63:52:9e:34:94:dc:f5:fa:78:54:f3:42:
8c:56:22:63:38:ec:cd:b1:e9:1f:bb:6e:bd:11:f8:
b5:02:58:e1:36:fa:52:64:ba:05:db:9a:cd:3c:fc:
26:04:98:2e:cd:b2:d8:45:43:29:53:97:1c:7f:5f:
00:22:a4:d1:ca:1f:a8:15:58:a9:3e:d3:c3:b7:0c:
3c:a2:cc:cb:fc:c4:e0:41:6d:68:be:6e:eb:6c:93:
1c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:B9:2B:94:CE:B6:54:68:EB:6E:33:F8:84:B8:BC:D8:AF:BA:7F:54
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/_rkrlM62VGjrbjP4hLi82K-6f1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.94.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:19:b7:95:d1:b9:b3:8e:6b:33:30:cf:d9:df:6f:51:a1:f0:
6a:8a:1e:4e:31:e0:c9:39:51:b6:66:5a:3e:aa:2a:98:69:3f:
5a:8f:7f:2a:01:32:b8:1e:06:1b:80:66:fd:28:39:3d:63:3c:
59:9d:be:45:bb:1b:b5:8b:6b:03:f0:43:88:73:9c:72:e3:fb:
48:30:2d:56:f1:d0:e3:8a:23:88:ae:a1:0d:ff:6d:9c:89:d0:
05:91:43:be:33:7d:68:d4:aa:95:b4:9a:fe:09:e7:61:ed:c7:
b3:51:d5:34:31:ed:0c:19:19:df:81:3b:82:0e:8d:cd:43:b4:
1c:8d:36:55:9f:c5:d8:39:0b:3e:07:27:7e:72:6d:6c:e8:dc:
92:3b:e4:25:40:a3:a9:0b:66:f8:66:0d:f3:ee:65:98:27:a8:
f5:68:43:17:78:d2:34:72:8c:bb:2b:79:46:2b:8d:e2:63:d9:
2c:6e:bb:09:91:a0:ed:98:19:2c:3e:67:9b:1f:60:8f:b1:26:
05:f3:e7:5a:9c:03:1f:4c:df:59:92:24:a4:53:3c:76:03:61:
cd:69:a5:e6:74:a2:c3:cf:7e:06:c3:b4:21:81:78:f1:20:11:
ad:2f:19:cf:38:7e:dd:b9:9a:59:26:04:e4:75:c4:92:34:b8:
30:e9:12:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:13 2024 by rpki-client on console-fra.rpki-client.org