Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/dJw-UfPpGAmqQ3rnPryVI1-S7_Y.roa
File: dJw-UfPpGAmqQ3rnPryVI1-S7_Y.roa (raw, json)
Hash identifier: 3ssZuEdVY6NhdlxCutyeT9WtL0kb20EaM1jwdu9kMyo=
Subject key identifier: 74:9C:3E:51:F3:E9:18:09:AA:43:7A:E7:3E:BC:95:23:5F:92:EF:F6
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 033BCDD8
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/dJw-UfPpGAmqQ3rnPryVI1-S7_Y.roa
Signing time: Sat 22 Jan 2022 12:31:44 +0000
ROA not before: Sat 22 Jan 2022 12:31:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15924
IP address blocks: 194.37.92.0/24 maxlen: 24
194.37.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54250968 (0x33bcdd8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: Jan 22 12:31:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=749c3e51f3e91809aa437ae73ebc95235f92eff6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:08:db:d6:08:ea:35:4a:6e:e7:52:fe:e6:f8:
89:8a:85:66:12:f2:ab:b3:07:d4:cc:34:62:a8:91:
39:47:98:11:24:98:12:14:e7:2b:7e:ea:28:1a:89:
44:73:c8:c3:11:b5:40:fa:39:9e:dd:19:4c:88:b8:
95:e4:58:a4:29:5a:13:81:24:69:0c:9d:ff:9a:d2:
c6:f4:f4:a7:b7:35:f8:e2:3c:94:b0:4e:da:c7:56:
97:aa:5f:77:6d:df:20:a6:69:da:43:3e:5c:40:8d:
b6:3f:52:de:70:4b:cf:9c:cb:7a:fa:dd:cf:3c:78:
cd:ce:3d:61:60:75:d5:20:19:dd:a6:24:46:11:fc:
d9:06:62:51:29:5d:3d:4a:8d:e6:81:72:f0:22:65:
3e:13:08:99:82:2e:32:3e:b9:fa:2f:02:9f:c2:5d:
2b:f1:23:23:cc:66:eb:4f:a8:f2:89:46:75:a0:5d:
d8:28:12:65:6c:0b:22:ac:f3:47:ad:c7:8f:24:39:
34:64:ac:d7:5e:e0:d8:81:00:41:c2:25:83:c3:86:
a6:62:8c:af:9f:d0:e2:58:e1:9b:5b:9f:26:01:7f:
1b:92:80:fe:50:95:20:cf:95:97:41:07:4f:29:8a:
6e:50:7f:1f:4a:ff:6e:a2:e0:8c:89:e7:b9:be:b1:
58:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:9C:3E:51:F3:E9:18:09:AA:43:7A:E7:3E:BC:95:23:5F:92:EF:F6
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/dJw-UfPpGAmqQ3rnPryVI1-S7_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.92.0/24
194.37.95.0/24
Signature Algorithm: sha256WithRSAEncryption
46:f8:1b:52:18:75:84:98:f1:8e:23:57:a0:36:90:eb:e1:fa:
b3:01:34:54:e7:d2:c0:5e:48:ca:c0:12:65:ac:21:93:4b:13:
19:00:62:82:76:c9:37:cb:09:f6:d3:34:11:22:d5:33:0b:18:
06:02:85:aa:6c:c7:51:f9:bb:79:c7:99:11:1c:9d:80:6f:3e:
9a:dc:84:b9:aa:0e:2c:76:eb:1e:75:67:30:34:f2:36:8f:a9:
f6:58:4b:0e:51:da:a5:a3:09:4d:55:bc:f5:0d:67:a2:88:86:
ad:e3:37:88:89:05:42:a4:ba:0d:6c:14:b0:6e:09:37:29:cd:
33:46:dc:0e:49:48:c5:3c:ea:b1:da:fe:80:70:82:f2:88:04:
09:80:66:e3:a3:c8:0d:89:be:3c:cc:47:2c:f5:64:5b:d4:38:
89:02:9c:c6:5a:3e:38:26:ba:ac:81:c4:d3:1f:de:fd:1d:7d:
43:ed:0f:2f:20:8d:f7:62:27:14:67:f6:b4:05:27:6a:34:59:
a5:a6:2b:ad:fc:2a:57:4d:c2:d9:f7:02:64:55:97:55:1a:8f:
fb:5f:ee:be:5a:2d:eb:03:8c:cf:25:a6:ac:62:70:06:6b:9f:
d3:3b:e9:39:b1:87:ab:d8:ce:af:4c:8b:1b:5b:23:64:17:59:
51:e9:cd:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:25 2024 by rpki-client on console-ams.rpki-client.org