Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/2hNRhiYiuT1__Q09wWkF-0NSico.roa
File: 2hNRhiYiuT1__Q09wWkF-0NSico.roa (raw, json)
Hash identifier: WVVpWVcRPo9PzbECt3J419eyxJE9qGPDAw2cUBDcsK8=
Subject key identifier: DA:13:51:86:26:22:B9:3D:7F:FD:0D:3D:C1:69:05:FB:43:52:89:CA
Certificate issuer: /CN=79730b9ea010d832f940efb589c51889132f4c94
Certificate serial: 0ED379A2
Authority key identifier: 79:73:0B:9E:A0:10:D8:32:F9:40:EF:B5:89:C5:18:89:13:2F:4C:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXMLnqAQ2DL5QO-1icUYiRMvTJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/2hNRhiYiuT1__Q09wWkF-0NSico.roa
Signing time: Sat 01 Jan 2022 01:52:18 +0000
ROA not before: Sat 01 Jan 2022 01:52:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 194.26.191.0/24 maxlen: 24
2a0a:a3c0:b0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 248740258 (0xed379a2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79730b9ea010d832f940efb589c51889132f4c94
Validity
Not Before: Jan 1 01:52:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da1351862622b93d7ffd0d3dc16905fb435289ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:90:6e:e1:18:72:cc:d3:57:c8:82:e8:81:04:
c9:13:d8:4e:64:95:c1:86:94:d0:82:b5:36:a6:bc:
83:28:c3:b0:71:f4:7a:98:e6:08:95:7c:ce:fc:03:
84:b7:3a:af:97:77:be:77:8a:e5:61:d5:ad:0b:65:
ce:e2:22:3c:56:e0:bd:18:65:94:9e:ce:b5:87:c1:
3a:54:58:ac:f2:4f:91:47:4a:55:ea:22:79:34:a0:
3f:81:db:81:b7:98:ba:85:f7:e8:3e:7b:01:c5:80:
b1:6c:b8:83:6a:3b:b6:53:73:b5:33:a9:76:39:85:
8d:85:0e:7a:d4:1e:62:c4:08:67:4e:e3:d7:b3:96:
a9:a3:bc:d2:fe:b0:ee:3b:8f:7c:82:2b:0c:81:7c:
fa:9b:04:82:ae:aa:c9:5d:42:e2:f4:c4:0c:81:f6:
2d:d2:5e:26:c3:ee:c3:dc:d0:a0:b6:34:4d:68:17:
a7:57:a8:f8:56:2b:e9:56:8e:9b:76:d6:8e:26:65:
70:a3:22:4c:0f:91:5d:02:bc:4d:cb:f9:7a:26:bc:
a8:ab:b0:6f:b2:10:09:4b:4a:b7:af:3b:5a:e0:bd:
c7:49:4d:e9:2a:2a:96:b8:11:b0:13:b0:d8:3a:dc:
a5:36:39:cc:cd:6c:ae:06:a5:d4:48:d3:63:e9:32:
41:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:13:51:86:26:22:B9:3D:7F:FD:0D:3D:C1:69:05:FB:43:52:89:CA
X509v3 Authority Key Identifier:
keyid:79:73:0B:9E:A0:10:D8:32:F9:40:EF:B5:89:C5:18:89:13:2F:4C:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXMLnqAQ2DL5QO-1icUYiRMvTJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/2hNRhiYiuT1__Q09wWkF-0NSico.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/a02cc6-1308-47e4-a087-39605f9081b7/1/eXMLnqAQ2DL5QO-1icUYiRMvTJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.191.0/24
IPv6:
2a0a:a3c0:b0::/44
Signature Algorithm: sha256WithRSAEncryption
39:bb:59:cf:77:11:e7:2f:c3:d7:b5:f6:89:5c:99:30:09:39:
78:d6:f5:2e:b9:cd:d8:be:be:34:fd:69:aa:cc:17:e3:f3:1c:
01:80:01:e7:f8:b6:3d:b7:dd:23:30:22:c0:31:c2:52:ab:db:
12:91:f8:4f:73:44:58:55:07:38:49:d2:11:57:b6:f5:4d:6f:
8c:d6:72:2f:ee:ea:a0:04:1f:d7:ae:40:0e:f1:fa:06:77:42:
5b:1f:f6:59:fc:43:1a:1c:f6:51:23:ae:25:70:1b:ed:e6:28:
02:96:e2:d4:bd:42:9b:b4:7f:86:68:7d:b7:94:46:c3:0c:47:
a6:b3:05:f9:92:df:17:8c:e7:ad:43:2e:6e:d4:97:4f:14:c6:
36:65:b4:67:35:b6:45:4d:4a:af:a9:c8:31:0a:1e:59:e3:48:
c9:04:5c:3e:b3:d9:80:f2:16:88:fd:71:16:ff:00:5e:f5:5a:
47:84:df:45:73:b7:85:45:26:3f:18:ad:41:25:f1:e5:45:95:
6c:1e:fc:49:89:c2:85:5d:25:82:43:79:13:e9:18:bc:8a:dc:
3a:4c:ab:d1:78:ca:bb:fa:4a:a7:71:ad:2d:a7:1a:a1:f6:28:
35:8c:c1:6a:f0:8c:6a:90:9a:74:07:e0:b2:78:33:e2:01:5a:
11:33:41:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:00 2024 by rpki-client on console-fra.rpki-client.org