Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/tQnDFzhJTxWp-slTl5D1Y_RGPOk.roa
File: tQnDFzhJTxWp-slTl5D1Y_RGPOk.roa (raw, json)
Hash identifier: r/XYBdavgvdqIl/Egl70wi93/7WfZe3Bwc9m+hRAzm4=
Subject key identifier: B5:09:C3:17:38:49:4F:15:A9:FA:C9:53:97:90:F5:63:F4:46:3C:E9
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 095561F0
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/tQnDFzhJTxWp-slTl5D1Y_RGPOk.roa
Signing time: Mon 21 Mar 2022 15:30:50 +0000
ROA not before: Mon 21 Mar 2022 15:30:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208747
IP address blocks: 194.150.73.0/24 maxlen: 24
194.150.74.0/24 maxlen: 24
194.150.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156590576 (0x95561f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Mar 21 15:30:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b509c31738494f15a9fac9539790f563f4463ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:71:4d:22:d8:10:56:cf:e7:56:d8:c2:97:74:
ac:d2:55:3c:5b:e6:1a:84:83:77:ae:5b:94:60:b8:
20:61:20:33:a0:ad:b2:bf:a3:43:bb:4f:ae:68:a4:
70:77:74:09:18:c7:eb:4c:dd:47:39:2f:4d:61:9b:
14:b4:2a:9e:3a:c3:e1:93:ce:75:d8:d7:74:a8:f0:
e4:16:d9:90:75:ce:9e:1a:c0:12:42:73:e8:76:b6:
f8:b7:b4:48:03:db:e1:e6:59:69:aa:f5:dd:b3:9c:
f5:49:73:9f:53:c4:50:24:e5:c1:08:47:db:c0:d8:
9e:da:e3:5e:fe:6c:0c:60:e8:a6:0a:e8:3b:61:b1:
87:2d:6b:83:c8:51:97:ed:87:ed:ae:db:50:ba:c7:
d2:5e:39:10:12:50:06:75:ea:c4:16:ed:9a:3e:f3:
d9:e0:57:10:b3:fa:bb:6f:a3:ef:b1:c8:61:e8:76:
bc:23:38:dc:c1:b4:64:81:81:ab:00:6d:d3:8e:3c:
6b:ab:40:1b:1e:c0:83:4f:97:14:5d:26:b0:0d:b5:
9c:16:bf:09:ef:91:c0:cd:a4:d3:f0:e0:7c:4a:13:
36:c5:25:3f:05:2b:58:56:64:bc:bb:e3:33:66:33:
8e:78:7e:c6:82:5c:b6:cc:d9:27:22:d8:ef:27:88:
c4:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:09:C3:17:38:49:4F:15:A9:FA:C9:53:97:90:F5:63:F4:46:3C:E9
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/tQnDFzhJTxWp-slTl5D1Y_RGPOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.73.0-194.150.75.255
Signature Algorithm: sha256WithRSAEncryption
be:e3:89:91:f5:75:f1:1c:80:f0:c8:3f:73:a8:e9:03:42:bd:
ab:ac:b4:1f:04:0f:c0:54:1d:52:de:0a:5a:c8:eb:9d:c6:f6:
1b:d6:b2:fa:08:1b:4b:7c:04:ad:e1:ac:52:4f:23:c3:01:ad:
1a:79:44:7c:3e:c0:2f:f2:0e:ee:1a:ef:17:97:b5:b6:ac:3c:
5c:f1:b0:07:5c:aa:d6:d0:dc:0e:d8:ad:62:d8:4e:cf:ce:25:
00:d1:29:ed:61:f4:47:71:d5:e5:fc:55:0d:33:62:cb:06:3d:
f7:4e:4b:f3:98:da:81:f9:6b:d5:63:8f:9e:5c:ef:1a:37:30:
8b:11:aa:59:e9:ab:2b:84:ce:52:fc:a2:79:c6:6e:8e:20:51:
7f:f4:49:13:b0:e7:3b:cd:72:a0:1f:81:fb:98:90:43:6a:31:
78:47:e1:40:5c:6b:9b:09:ad:c1:26:8d:a3:bb:66:01:ff:53:
75:27:4e:34:a9:b9:a8:39:fe:26:9b:aa:f0:62:ea:d9:1a:f5:
13:fe:94:17:6d:31:46:ba:99:cd:47:af:ea:2d:d0:c7:a1:69:
a8:53:18:45:be:47:2e:52:1a:6a:3c:92:73:88:1d:e4:47:6a:
24:4e:74:0d:0d:32:d6:f9:88:a5:5a:6b:ae:3d:a0:97:ff:d9:
15:4b:f8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:28 2024 by rpki-client on console-fra.rpki-client.org