Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/j6gHn04qPTgtDtd8giE903Y7SDs.roa
File: j6gHn04qPTgtDtd8giE903Y7SDs.roa (raw, json)
Hash identifier: l0zyf7WxTaBTpsqkrP72Fbo9KPwXyA8BsYFqROnqSho=
Subject key identifier: 8F:A8:07:9F:4E:2A:3D:38:2D:0E:D7:7C:82:21:3D:D3:76:3B:48:3B
Certificate issuer: /CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Certificate serial: 02228D2B
Authority key identifier: 8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/j6gHn04qPTgtDtd8giE903Y7SDs.roa
Signing time: Sat 01 Jan 2022 12:54:07 +0000
ROA not before: Sat 01 Jan 2022 12:54:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48172
IP address blocks: 194.33.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35818795 (0x2228d2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e895f1e270c635ec61df9a97fc0f668c0a8f548
Validity
Not Before: Jan 1 12:54:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fa8079f4e2a3d382d0ed77c82213dd3763b483b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:78:68:b7:9a:86:ad:f6:3f:e3:7b:7c:9f:92:
55:73:71:07:9b:90:4f:e6:07:27:88:38:3f:a3:ce:
b3:e1:65:97:95:5f:bf:00:38:be:2d:9b:ef:14:66:
5d:da:97:c1:e8:a9:8c:d3:7e:bc:6a:fe:28:4b:21:
27:a7:bd:14:bc:db:e7:21:2a:48:95:3f:46:c6:76:
6d:be:ad:d1:d7:f8:55:7a:84:9d:d0:cc:b2:9a:7c:
fc:c7:82:d3:44:2a:1b:97:d4:2a:79:c0:6e:67:7e:
46:52:a6:5f:83:d5:f3:40:7a:c4:ce:0c:a6:d7:d9:
fb:3b:1d:3a:ee:48:9e:b2:c0:7d:cf:67:5c:88:31:
ca:25:7e:1c:22:c3:82:f4:ea:b8:71:21:49:2a:2b:
5e:01:82:fd:ce:7b:36:bb:59:53:1b:8c:12:45:e0:
12:23:e4:3b:47:53:a3:45:ad:58:9b:aa:ec:5f:1a:
55:10:a2:83:b8:7f:53:16:d9:15:1e:49:70:7b:c4:
f3:dc:ff:64:4b:c5:f7:7a:7f:d1:d3:8f:a0:e1:96:
94:b0:a3:a5:80:01:fb:1c:55:00:ed:75:98:10:d0:
ba:9b:55:cd:5e:38:bd:f6:6f:2d:8d:e8:de:7b:2f:
b3:c0:a2:d4:a3:00:78:af:80:c3:2c:82:19:b5:bb:
73:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:A8:07:9F:4E:2A:3D:38:2D:0E:D7:7C:82:21:3D:D3:76:3B:48:3B
X509v3 Authority Key Identifier:
keyid:8E:89:5F:1E:27:0C:63:5E:C6:1D:F9:A9:7F:C0:F6:68:C0:A8:F5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jolfHicMY17GHfmpf8D2aMCo9Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/j6gHn04qPTgtDtd8giE903Y7SDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/bc53d2-9137-4799-9e41-e69a017485fb/1/jolfHicMY17GHfmpf8D2aMCo9Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.114.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:e7:00:08:21:01:25:af:fa:e1:0d:9b:cd:40:bd:fe:93:55:
5d:e8:5e:06:8a:b4:94:51:14:8a:25:5e:80:e5:6b:19:b2:32:
14:62:26:60:2a:bb:ad:66:52:6e:5d:4b:6a:81:12:81:57:bf:
52:37:cc:b1:dc:c7:67:f4:ff:d0:88:4d:01:ba:55:95:d4:e2:
cb:cb:60:82:bd:69:97:ae:81:76:ad:2f:e3:51:3a:00:ff:ff:
ff:08:42:f5:f8:e4:49:7f:43:b2:9a:cc:a6:66:86:ab:dd:9d:
49:57:7f:c4:e2:19:52:6d:81:6f:7c:d0:07:61:16:f1:20:e4:
04:5e:e9:f0:10:f3:eb:54:c8:f8:29:de:d9:f1:57:84:bf:7d:
6e:a0:2f:49:c4:78:90:e3:44:90:fa:d1:6c:2d:62:cd:de:7c:
c0:c7:71:f3:80:c2:6f:93:bb:09:db:47:a4:c6:81:48:db:1a:
72:6b:6b:1c:88:1d:99:23:71:77:db:7f:d5:24:06:ed:3a:66:
f1:a4:d1:84:a1:c4:28:02:d4:9d:67:85:5a:be:60:ab:50:66:
c7:eb:b6:5e:68:7f:e9:8b:32:cb:34:70:b3:cb:5c:64:b9:2e:
e3:69:49:4d:f8:45:4b:51:f8:8e:fe:e9:25:eb:b2:68:74:17:
d8:6c:bb:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:24 2024 by rpki-client on console-fra.rpki-client.org