Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/ODvFw6QPTy4KaooTqa9m1m3IDsY.roa
File: ODvFw6QPTy4KaooTqa9m1m3IDsY.roa (raw, json)
Hash identifier: RU0X+CcNLu3m9o2EevXBvLXq3q9waH48a1gK+dpMuEk=
Subject key identifier: 38:3B:C5:C3:A4:0F:4F:2E:0A:6A:8A:13:A9:AF:66:D6:6D:C8:0E:C6
Certificate issuer: /CN=65d7f0fd622afd6bd4a2d6ce0f1cbcc07a9c41f1
Certificate serial: 03D1D518
Authority key identifier: 65:D7:F0:FD:62:2A:FD:6B:D4:A2:D6:CE:0F:1C:BC:C0:7A:9C:41:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zdfw_WIq_WvUotbODxy8wHqcQfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/ODvFw6QPTy4KaooTqa9m1m3IDsY.roa
Signing time: Sat 01 Jan 2022 09:55:13 +0000
ROA not before: Sat 01 Jan 2022 09:55:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 194.59.96.0/19 maxlen: 19
194.59.121.0/24 maxlen: 24
194.59.119.0/24 maxlen: 24
194.59.120.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64083224 (0x3d1d518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65d7f0fd622afd6bd4a2d6ce0f1cbcc07a9c41f1
Validity
Not Before: Jan 1 09:55:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=383bc5c3a40f4f2e0a6a8a13a9af66d66dc80ec6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9f:a2:4a:79:4c:92:de:5c:75:73:1a:01:1c:
32:3f:59:d8:2f:66:61:f6:c1:d8:3b:3f:ee:9a:65:
6e:13:07:24:bb:0a:55:e8:b4:ac:26:8b:4a:d3:ed:
bc:cc:d1:17:e7:f5:b3:af:84:e4:0c:89:b8:4c:fe:
97:0f:6b:58:01:f1:c9:a3:c1:17:56:80:ae:1c:7b:
ba:bd:f3:f5:d2:e9:ea:16:21:e7:41:a6:64:bf:54:
fd:30:e1:50:5a:ac:b7:97:b5:8b:1a:a8:0b:18:81:
b5:ad:66:73:2e:0f:09:5f:76:fb:40:f1:7e:42:0d:
ee:4c:bf:0e:04:b9:26:89:12:f7:63:29:b1:b8:e3:
81:e4:ac:84:03:3c:4f:94:9c:69:9d:f4:53:24:14:
fc:ac:8a:26:63:70:76:66:54:81:e5:e1:8f:f3:e8:
cb:02:0e:03:c5:32:a6:5c:2a:1e:bc:47:f7:d5:3c:
e7:a5:a7:e4:7f:dc:5e:09:df:92:b0:56:1d:a4:11:
3d:4e:bc:22:6f:b0:b7:5d:80:1b:92:46:2d:5b:41:
1c:c3:66:98:13:a0:49:9b:1a:5d:4b:77:5d:ca:15:
aa:3b:75:a2:eb:60:30:58:d9:7f:3c:24:3f:d0:c9:
c4:98:32:29:f9:1a:a9:3b:a4:9d:65:4e:71:11:ae:
ef:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3B:C5:C3:A4:0F:4F:2E:0A:6A:8A:13:A9:AF:66:D6:6D:C8:0E:C6
X509v3 Authority Key Identifier:
keyid:65:D7:F0:FD:62:2A:FD:6B:D4:A2:D6:CE:0F:1C:BC:C0:7A:9C:41:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zdfw_WIq_WvUotbODxy8wHqcQfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/ODvFw6QPTy4KaooTqa9m1m3IDsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/73f36c-f4f7-4065-9d46-8be4ad57773b/1/Zdfw_WIq_WvUotbODxy8wHqcQfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.96.0/19
Signature Algorithm: sha256WithRSAEncryption
57:9f:da:f1:38:be:55:94:76:b2:52:a6:5d:09:8c:85:f0:2f:
d3:9b:28:dc:b5:0b:9e:76:d0:bb:ae:c3:d8:1a:a1:38:70:f7:
dc:54:37:19:a1:10:9a:7d:16:33:84:76:14:36:66:71:ba:35:
65:69:9e:a3:3c:cd:c0:5f:9b:d3:1b:0f:9f:e1:b6:be:db:29:
2b:5a:f4:18:c1:d9:a6:29:d6:78:e6:31:87:b4:4b:fb:ce:9f:
ea:f9:ef:cb:79:2d:5b:aa:72:8b:d1:5a:09:2e:6d:02:0d:f0:
d5:17:3d:d0:97:5f:53:4e:40:8e:cd:1e:31:83:58:3c:06:a6:
84:d8:a5:ef:3c:40:c8:cd:83:2e:17:13:6f:24:de:1d:66:ab:
ac:ac:f2:91:8e:74:0f:56:51:61:26:77:3c:b1:4f:97:9f:07:
ae:6b:ce:e1:56:22:75:34:65:8a:8b:aa:a9:64:74:12:2d:1f:
d3:77:a0:eb:8c:31:8f:16:19:d9:e8:3d:33:aa:c9:b8:a2:1e:
1f:a5:5b:48:a6:88:31:ab:22:7f:7e:96:8d:84:23:8f:b4:d5:
7b:44:81:15:a9:e5:45:52:68:4f:6d:a0:cd:9e:5d:4d:a1:3a:
52:db:2b:7f:12:f4:fd:86:0f:45:c1:ed:67:05:4e:1a:89:d1:
bc:bc:c8:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:19 2024 by rpki-client on console-ams.rpki-client.org