Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/A3RoGsbqPk4l23VBVeR1hUlmCJQ.roa
File: A3RoGsbqPk4l23VBVeR1hUlmCJQ.roa (raw, json)
Hash identifier: LbsFoiOlgK2kdoKAejefoPL3uqrAGaTYEzi3ctNOwB8=
Subject key identifier: 03:74:68:1A:C6:EA:3E:4E:25:DB:75:41:55:E4:75:85:49:66:08:94
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 04709097
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/A3RoGsbqPk4l23VBVeR1hUlmCJQ.roa
Signing time: Wed 02 Mar 2022 10:06:07 +0000
ROA not before: Wed 02 Mar 2022 10:06:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60877
IP address blocks: 194.181.125.0/24 maxlen: 24
194.181.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74485911 (0x4709097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 10:06:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0374681ac6ea3e4e25db754155e4758549660894
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8b:68:2f:b3:3e:d9:8f:05:55:97:b0:68:37:
a9:86:d8:0f:49:22:fb:17:3d:1a:16:59:63:15:85:
fc:26:fb:e3:1b:89:6e:ef:0f:0c:38:12:c9:72:1d:
32:eb:fc:0d:69:cb:03:fc:7d:e0:32:70:1e:27:3d:
1f:f4:6d:0a:db:e9:80:7a:00:f0:a6:43:b2:96:76:
7e:35:54:8f:84:a1:a4:0a:87:1d:0e:93:c7:77:b6:
e2:a9:54:89:0a:8e:a3:20:88:7e:22:a6:6c:fe:d7:
42:79:a5:9a:9b:68:cc:d6:6a:2c:b5:e0:e9:4a:c1:
16:4d:64:c1:1c:f3:39:aa:55:43:85:ad:ce:98:b9:
85:4e:b1:45:fc:eb:ad:75:ac:ab:22:c1:ac:7b:5b:
42:61:6b:33:bd:4d:b5:80:28:22:8f:ff:d7:db:33:
75:90:41:14:38:87:78:dc:5a:ed:ca:7c:72:32:77:
7c:81:f1:3a:40:68:32:e4:72:32:f7:90:a0:18:b1:
07:94:53:2e:e7:7a:9a:9d:d5:e3:f2:69:8f:5a:85:
14:cf:9b:3e:c7:2c:cc:cf:90:43:82:a4:ce:cc:dc:
db:54:de:5b:37:84:2f:3e:d3:77:c4:3f:f6:9e:c0:
e8:5e:61:db:4c:b5:33:00:c4:44:9c:53:f7:fd:00:
97:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:74:68:1A:C6:EA:3E:4E:25:DB:75:41:55:E4:75:85:49:66:08:94
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/A3RoGsbqPk4l23VBVeR1hUlmCJQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.31.0/24
194.181.125.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:62:e2:18:39:36:5f:71:70:df:1b:33:05:7c:31:59:33:05:
1e:6f:1c:1d:9f:99:c6:51:89:d2:69:6d:1b:e7:20:09:39:f4:
39:fa:4f:8a:f8:93:7f:aa:9f:9d:8a:14:3a:36:e3:9e:8a:8c:
fd:68:05:c5:16:a0:99:53:b0:75:ec:ea:f3:66:77:87:27:0d:
00:90:3c:76:31:bc:00:a1:a9:58:bb:35:f6:73:b7:a2:13:e6:
f8:9a:86:e4:e0:81:5b:b0:e6:1c:be:74:50:4e:21:89:41:61:
20:da:74:be:8d:79:9d:48:69:0d:06:f9:e1:c5:af:c2:ca:cd:
55:db:55:9b:65:8f:01:40:fb:f2:a8:8f:38:8f:90:ce:f5:bf:
da:5d:d3:e2:4f:81:73:da:05:17:0d:7b:a3:a2:ae:72:f5:70:
0d:d6:90:70:56:38:bf:ed:24:ac:ed:2a:17:b8:a4:54:d9:56:
29:d7:3e:f8:52:37:b4:e7:cd:26:4e:d5:40:01:b4:df:da:ba:
5b:56:93:cf:98:32:2e:b3:c0:69:ac:9e:90:5f:05:60:c3:a1:
51:d2:e5:2a:fe:c9:20:e2:ea:ed:71:25:c2:8b:2c:ff:f2:a5:
ef:d1:98:61:ad:da:77:ba:a0:fe:e6:c4:1f:c8:40:c6:4d:d4:
cc:c0:78:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org