Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/SCqk_bOu8OtsHAW-DOmDXIsIz-s.roa
File: SCqk_bOu8OtsHAW-DOmDXIsIz-s.roa (raw, json)
Hash identifier: HUSyutEtkoc6gjEnvv9edvdQ6GIi68EMS5sDD36ib10=
Subject key identifier: 48:2A:A4:FD:B3:AE:F0:EB:6C:1C:05:BE:0C:E9:83:5C:8B:08:CF:EB
Certificate issuer: /CN=09c50efe13aadf5423b04f0ddca8b3288395823e
Certificate serial: 069469BB
Authority key identifier: 09:C5:0E:FE:13:AA:DF:54:23:B0:4F:0D:DC:A8:B3:28:83:95:82:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/SCqk_bOu8OtsHAW-DOmDXIsIz-s.roa
Signing time: Sat 01 Jan 2022 08:58:16 +0000
ROA not before: Sat 01 Jan 2022 08:58:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2854
IP address blocks: 194.24.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110389691 (0x69469bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09c50efe13aadf5423b04f0ddca8b3288395823e
Validity
Not Before: Jan 1 08:58:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=482aa4fdb3aef0eb6c1c05be0ce9835c8b08cfeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:53:3a:86:4a:cd:4a:10:58:c0:15:89:1f:0c:
1c:5b:f6:a4:0f:80:11:9b:ac:33:17:96:d4:8f:8f:
7e:63:99:00:31:86:25:41:15:b6:33:41:17:01:92:
89:db:6f:3b:90:a1:7a:ce:78:6f:cb:ab:e9:72:a1:
ab:ad:fa:c9:f6:e0:09:25:a7:b7:a8:47:ec:c9:30:
32:dc:8c:de:4e:76:27:9c:ba:6f:57:ee:b8:43:2a:
d0:b2:3e:80:af:2b:1f:03:45:ed:a3:6b:16:ed:fd:
0b:6f:b5:c7:13:04:3f:23:22:1b:79:99:2d:28:21:
ee:d3:54:f5:c5:d7:6c:3a:c1:13:09:ba:f8:cd:6f:
fe:06:6d:99:1d:c3:50:f3:3b:cf:c8:ad:b1:c7:65:
5f:ec:e9:5c:d9:58:44:04:ed:98:5a:a7:a5:f5:7c:
47:a5:2d:11:53:68:63:8f:f0:ad:3a:59:cf:58:d5:
af:dd:fb:79:1d:4a:ca:18:20:23:7f:ab:7c:28:26:
12:0a:c0:5d:71:67:3c:34:ff:5a:8f:19:25:ec:85:
15:96:19:d7:57:32:66:0b:cd:01:f8:bc:53:df:ec:
32:51:65:40:bc:2e:4a:da:cf:4c:86:03:47:5d:21:
09:34:22:2c:f7:be:83:32:59:2e:63:05:4d:b5:fb:
97:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:2A:A4:FD:B3:AE:F0:EB:6C:1C:05:BE:0C:E9:83:5C:8B:08:CF:EB
X509v3 Authority Key Identifier:
keyid:09:C5:0E:FE:13:AA:DF:54:23:B0:4F:0D:DC:A8:B3:28:83:95:82:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CcUO_hOq31QjsE8N3KizKIOVgj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/SCqk_bOu8OtsHAW-DOmDXIsIz-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/85a208-1ab6-46f7-b1a5-a26d25bc7654/1/CcUO_hOq31QjsE8N3KizKIOVgj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.24.9.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:65:8f:e4:7e:07:45:b4:a6:46:5e:be:bf:4f:88:76:9f:d7:
bf:6b:66:a5:7f:4a:05:00:7f:22:68:10:fe:1c:7f:a1:99:81:
ca:33:e8:4a:4f:14:69:c3:f1:5e:e8:87:00:dc:c6:83:77:6c:
5e:73:c5:f5:e8:b4:1f:a7:48:0a:1c:9b:56:f8:0c:86:c5:cd:
c3:60:25:b0:3b:ad:ab:3a:35:84:61:4f:fa:4e:f0:7f:77:67:
7d:ee:6c:f8:a4:e4:eb:a9:2f:2e:e9:68:4a:d5:cf:e0:38:0a:
2d:25:c6:7e:7b:16:31:09:da:09:23:7d:10:75:f3:94:e0:c1:
84:6b:3a:ba:18:ec:1d:26:26:d3:e7:01:16:88:3f:22:25:60:
9d:4f:c4:41:5d:a3:2a:5b:07:5f:0d:66:43:c1:16:fd:f5:d0:
d8:75:db:3b:00:50:ec:0d:4b:2b:70:3d:cd:16:be:5f:68:8f:
e2:f2:51:6f:c9:81:83:91:a9:72:eb:5c:e9:fe:60:56:c0:be:
33:b8:08:d2:c4:9e:e5:e4:46:da:2d:90:63:eb:12:b9:4a:06:
1d:f2:60:26:74:5e:7c:78:57:a8:12:22:6b:b5:f6:29:ca:8d:
67:cd:6e:b4:f8:fb:f7:06:94:ee:70:77:1f:42:3e:ca:9d:d4:
67:4f:95:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:06 2024 by rpki-client on console-ams.rpki-client.org