Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/76ddd7-0af2-43ce-9859-6bc8394656b7/1/Co0hsTFEfTyrbbjuZKHUTNvRbXc.roa
File: Co0hsTFEfTyrbbjuZKHUTNvRbXc.roa (raw, json)
Hash identifier: DyGTQcyMT/nRHj+M3L166/BkAN7mAiA6Mt0V28N2bJU=
Subject key identifier: 0A:8D:21:B1:31:44:7D:3C:AB:6D:B8:EE:64:A1:D4:4C:DB:D1:6D:77
Certificate issuer: /CN=cf26c91af0ab2668a3601b2d957dc4ce002d5986
Certificate serial: 077BAE3B
Authority key identifier: CF:26:C9:1A:F0:AB:26:68:A3:60:1B:2D:95:7D:C4:CE:00:2D:59:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zybJGvCrJmijYBstlX3EzgAtWYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/76ddd7-0af2-43ce-9859-6bc8394656b7/1/Co0hsTFEfTyrbbjuZKHUTNvRbXc.roa
Signing time: Wed 09 Mar 2022 06:20:47 +0000
ROA not before: Wed 09 Mar 2022 06:20:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 194.156.198.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125546043 (0x77bae3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf26c91af0ab2668a3601b2d957dc4ce002d5986
Validity
Not Before: Mar 9 06:20:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a8d21b131447d3cab6db8ee64a1d44cdbd16d77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:50:19:ea:f9:5f:ee:24:15:a4:d9:d9:f2:30:
22:33:27:a1:aa:66:0e:2f:f8:94:99:f8:da:25:cf:
53:d2:ef:2e:75:e1:cf:55:53:fd:64:2f:a1:37:7a:
87:df:8c:1c:94:d8:b0:ed:bb:6e:6d:41:94:94:20:
30:04:76:e5:c5:64:5e:0e:ea:62:14:70:41:37:18:
46:9b:67:7c:3e:b3:f5:47:69:5c:6e:ad:9e:3e:0b:
00:95:36:b5:7a:51:24:b9:f6:a3:0d:6e:7e:53:dd:
c1:d3:38:4c:e7:ec:f5:3d:91:df:d4:2e:38:bc:2b:
a6:79:61:7a:5e:ac:1b:68:f1:78:58:50:93:1a:a1:
ac:95:d7:b8:45:ba:4d:2c:6a:fe:35:d9:c2:e9:4e:
ce:74:65:e4:4e:03:14:e0:64:41:23:2f:30:f2:d2:
61:e3:5a:51:f8:cf:ff:b5:c9:7a:8c:7e:8c:5e:f3:
3a:85:a2:3e:76:81:86:88:0e:bb:0e:9d:5f:e2:e1:
9e:f4:07:c5:0c:b6:9e:bd:08:55:fa:af:fd:1d:65:
fb:d3:13:2f:71:54:c8:ca:a7:2f:57:61:82:5d:fb:
8c:6e:a4:31:09:f0:40:f0:02:03:5a:a2:52:2c:ca:
77:d4:af:f4:b6:6e:1d:40:b8:d0:0f:e2:2d:70:86:
65:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:8D:21:B1:31:44:7D:3C:AB:6D:B8:EE:64:A1:D4:4C:DB:D1:6D:77
X509v3 Authority Key Identifier:
keyid:CF:26:C9:1A:F0:AB:26:68:A3:60:1B:2D:95:7D:C4:CE:00:2D:59:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zybJGvCrJmijYBstlX3EzgAtWYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/76ddd7-0af2-43ce-9859-6bc8394656b7/1/Co0hsTFEfTyrbbjuZKHUTNvRbXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/76ddd7-0af2-43ce-9859-6bc8394656b7/1/zybJGvCrJmijYBstlX3EzgAtWYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.198.0/24
Signature Algorithm: sha256WithRSAEncryption
98:09:d7:b8:91:b3:e7:55:e8:0e:0a:fc:05:50:03:4b:12:6d:
0d:fc:75:54:18:3b:8f:ed:9b:8e:ab:26:9b:f3:dc:aa:92:28:
54:cc:a5:29:b3:07:4d:03:2a:1b:71:58:32:b7:d5:48:41:4f:
da:59:5f:58:fe:9a:c7:0b:e6:96:64:65:ff:3d:3f:ce:da:bf:
59:4b:24:ac:05:d7:15:2f:4b:c2:32:b4:a4:29:5a:4e:9d:18:
da:6b:6e:a6:b7:65:24:d7:54:cc:32:e8:ca:5b:69:dc:17:89:
c6:4e:c9:f7:28:1a:49:47:33:7b:6e:fc:c4:45:2a:e2:6c:ca:
3e:90:a4:a6:d3:9a:37:6b:2c:03:9a:cd:be:27:55:b6:2f:56:
ac:6f:4f:26:a8:cd:e4:2d:03:4d:a7:10:72:57:d0:fd:8b:8e:
a5:2c:1e:18:6a:b6:04:98:1c:7e:42:cc:b5:4d:b8:32:16:d7:
0a:8e:e9:ec:b6:b6:ea:48:dc:6e:e0:38:cb:64:de:22:c6:de:
fd:76:0b:c7:3a:6c:91:45:5d:e0:95:a3:5a:1f:e8:67:70:80:
d3:24:ec:52:19:0a:f5:10:f7:23:63:44:f6:0f:bf:fc:5f:8e:
ec:3d:46:4e:4e:eb:93:c7:1d:b8:88:0b:c6:99:e2:1e:c8:22:
a2:7b:23:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:06 2024 by rpki-client on console-ams.rpki-client.org