Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/oFpWgcFdD-9ngqgjgw9MYN1fhSk.roa
File: oFpWgcFdD-9ngqgjgw9MYN1fhSk.roa (raw, json)
Hash identifier: +a2fNTx2xFn7nlXw1+wv5Z4OvjgYbL3Ht5WJm/B26uU=
Subject key identifier: A0:5A:56:81:C1:5D:0F:EF:67:82:A8:23:83:0F:4C:60:DD:5F:85:29
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 09C9F39C
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/oFpWgcFdD-9ngqgjgw9MYN1fhSk.roa
Signing time: Mon 13 Jun 2022 11:47:14 +0000
ROA not before: Mon 13 Jun 2022 11:47:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209243
IP address blocks: 194.146.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164230044 (0x9c9f39c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jun 13 11:47:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a05a5681c15d0fef6782a823830f4c60dd5f8529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3e:b5:8f:13:d0:20:b9:45:d1:21:0c:7f:44:
ec:0e:e8:ad:80:36:58:ee:8f:7d:01:14:49:32:fd:
41:37:46:e9:29:e8:0c:9a:eb:95:2c:58:9f:04:fa:
c9:65:28:38:c0:18:af:7c:e4:bf:b5:a2:cd:ef:81:
df:f8:37:e0:bb:66:e3:83:1b:e9:21:61:51:e4:f7:
46:47:47:03:15:66:b1:2f:8a:22:fd:9a:d4:50:85:
f0:32:76:80:84:cd:16:74:0e:8a:33:a3:e9:b7:ce:
5b:03:e4:6d:c7:5e:67:fa:8d:aa:f3:8c:17:87:9d:
7d:56:23:d4:a3:8e:58:f3:76:03:a5:c4:58:c1:0d:
83:bf:f4:7e:a4:e1:ad:f9:6f:95:e1:17:5a:f8:33:
35:52:a0:a8:46:d7:2c:4d:7b:16:f5:ce:07:e0:7c:
e5:4e:b1:55:e5:c6:6a:23:b7:d8:a0:02:9b:72:9e:
5d:bd:e2:a2:a3:6e:a4:47:2c:be:58:e2:51:0a:fa:
b3:cc:cd:a9:e5:63:25:62:f5:79:2b:4d:1c:a7:b1:
d1:9e:33:86:81:73:af:06:83:71:2a:cd:06:64:43:
90:cd:87:1f:cd:57:92:dd:20:53:0e:22:c7:4d:47:
df:81:67:d2:2d:85:29:5b:64:62:72:4e:d3:a1:46:
65:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:5A:56:81:C1:5D:0F:EF:67:82:A8:23:83:0F:4C:60:DD:5F:85:29
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/oFpWgcFdD-9ngqgjgw9MYN1fhSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.49.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:81:b5:c1:f2:f4:1e:57:22:ca:3f:14:29:93:1a:7c:bc:05:
3a:4b:83:0b:f1:7c:0b:34:63:61:f3:cd:77:30:ba:a4:a9:3d:
59:23:20:16:4b:ad:21:d3:b1:cf:e2:28:ab:44:69:77:4c:13:
39:03:0a:22:cb:99:f0:64:62:e4:52:78:e4:4a:ab:50:b9:17:
5f:9a:cc:b2:1b:67:2b:03:d9:91:6b:09:93:3d:e4:87:d1:1e:
39:6b:2b:6d:a3:4a:05:65:16:23:5d:9e:4c:13:dd:66:de:b8:
57:97:7e:08:50:01:22:9c:d7:c6:a3:e1:d6:83:8f:cf:58:05:
cf:7a:8a:de:1d:28:c2:98:9c:3b:1d:c6:3d:97:96:f9:0c:4e:
48:16:8f:2e:a9:7b:79:cb:8d:8d:12:aa:12:a4:13:57:72:c7:
94:34:96:b7:be:8c:34:d4:2b:fa:6c:2c:73:e5:88:b4:ab:94:
8a:1a:c3:99:63:44:e2:9b:d1:03:c2:93:7a:f8:bf:7d:e6:ce:
67:69:9b:15:39:2b:86:8e:35:ac:5c:76:52:a6:be:61:e1:b7:
27:88:ee:8e:18:ed:6e:70:c5:56:3e:16:ee:b0:27:50:2f:8b:
df:e2:98:40:70:e5:c8:a5:02:56:9d:09:e6:25:aa:39:d2:36:
d0:7b:a7:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org