Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/j97ojQddONEWYUsi3m-vby8EZrI.roa
File: j97ojQddONEWYUsi3m-vby8EZrI.roa (raw, json)
Hash identifier: r14PycPVBO1mXtzfxKvhqKsEhnGGFV+asX4fdvPFGWw=
Subject key identifier: 8F:DE:E8:8D:07:5D:38:D1:16:61:4B:22:DE:6F:AF:6F:2F:04:66:B2
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33DDEE71
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/j97ojQddONEWYUsi3m-vby8EZrI.roa
Signing time: Sat 01 Jan 2022 04:55:32 +0000
ROA not before: Sat 01 Jan 2022 04:55:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13102
IP address blocks: 194.27.150.0/24 maxlen: 24
194.27.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870182513 (0x33ddee71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fdee88d075d38d116614b22de6faf6f2f0466b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d9:70:ce:c5:e0:21:63:b6:ef:3a:d1:89:d7:
25:1e:ae:b6:e5:2a:5e:29:41:80:08:68:eb:b3:1c:
0f:2e:40:ec:72:06:33:f7:27:94:2d:84:59:82:74:
c4:01:12:c0:a4:6d:16:30:45:cd:33:e6:72:de:23:
98:63:11:ad:5e:c1:9c:0d:84:cd:7b:e1:51:cb:9b:
9b:02:89:2e:20:04:68:d8:c2:56:0b:1a:29:74:87:
8b:bf:cd:10:33:56:e9:f0:6a:75:7c:cc:04:b2:c9:
20:c3:dc:e9:f4:81:3c:ca:71:09:32:ae:8e:56:ba:
fe:f9:96:2d:03:51:ef:d3:8e:8f:0d:e0:ef:c2:de:
29:c9:b1:39:48:bd:e9:f1:e0:4b:83:18:62:00:11:
8d:a7:3b:cf:a8:42:fa:e9:f5:74:b1:9e:94:85:44:
4f:15:94:58:03:ca:09:e0:48:94:3a:e6:9b:70:53:
6d:85:90:ba:60:72:bb:e6:34:02:67:68:71:7b:b1:
ba:4d:bd:89:b1:47:41:53:b1:46:a6:3c:48:62:4b:
27:1c:7c:ce:0d:4f:55:f7:b0:d2:6c:01:7c:9a:3b:
0e:6b:96:f4:54:7a:3d:01:0a:42:a8:b1:04:53:7e:
2f:66:d1:b9:3c:8d:65:2b:e5:8e:7b:cd:d7:1e:08:
56:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:DE:E8:8D:07:5D:38:D1:16:61:4B:22:DE:6F:AF:6F:2F:04:66:B2
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/j97ojQddONEWYUsi3m-vby8EZrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.27.149.0-194.27.150.255
Signature Algorithm: sha256WithRSAEncryption
8c:1a:bf:ca:b9:56:9c:6c:73:bb:8f:e0:90:92:39:9f:e6:95:
2b:64:60:f8:8f:c1:bc:43:2a:bf:4e:57:46:b1:6c:de:db:36:
8b:4c:37:7d:74:62:3d:f1:63:8e:0e:4e:3f:00:8e:dc:ac:03:
e7:64:cc:31:1e:38:35:34:d6:3d:1a:69:f6:71:90:e1:a7:49:
ba:2b:ad:2a:1c:47:01:8a:3f:09:05:dc:36:c4:73:00:10:8d:
13:76:c4:98:40:9d:f2:bc:81:12:6d:e0:5e:9a:6a:36:dc:5a:
13:f5:c3:89:f6:cd:87:90:29:c3:00:dd:55:40:8b:bb:55:ab:
36:d1:13:b2:42:6e:53:3a:af:2d:70:98:32:4d:15:a0:10:78:
91:44:8a:32:45:97:55:75:88:ec:61:44:4c:45:26:e0:2a:30:
3c:ad:96:40:af:28:69:89:8a:36:c4:10:90:51:83:bf:3d:e7:
76:72:25:f3:6b:9c:72:78:b7:ae:26:7e:a7:64:a9:f2:93:e3:
42:86:f2:4e:b9:5e:ae:5b:41:00:ea:80:dc:b2:6e:01:91:ab:
2c:18:0e:71:e6:f4:65:93:15:95:3b:ab:73:2b:f8:58:54:e3:
10:5e:c6:38:4d:ce:39:56:d3:ed:0b:05:df:12:73:f9:79:c0:
ea:1c:b1:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org