Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/dA1r2NOWvd7A3tUQmlbHLNJb2Qk.roa
File: dA1r2NOWvd7A3tUQmlbHLNJb2Qk.roa (raw, json)
Hash identifier: COfRI16GvxjxAF9ioCRddkmAo5xMi3047tDKkYbnOsU=
Subject key identifier: 74:0D:6B:D8:D3:96:BD:DE:C0:DE:D5:10:9A:56:C7:2C:D2:5B:D9:09
Certificate issuer: /CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Certificate serial: 049232AE
Authority key identifier: 30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/dA1r2NOWvd7A3tUQmlbHLNJb2Qk.roa
Signing time: Wed 02 Mar 2022 11:50:09 +0000
ROA not before: Wed 02 Mar 2022 11:50:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60877
IP address blocks: 195.187.41.0/24 maxlen: 24
194.181.125.0/24 maxlen: 24
194.181.31.0/24 maxlen: 26
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76690094 (0x49232ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30c409613fea0a2b442ce112e9cbdb485e01188f
Validity
Not Before: Mar 2 11:50:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=740d6bd8d396bddec0ded5109a56c72cd25bd909
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:17:bc:8f:63:cb:ea:c2:8c:d0:83:5f:6d:8c:
11:fa:93:8b:53:75:80:67:bc:4a:7c:2f:27:ca:9f:
ee:42:66:d1:40:ce:62:1c:fa:04:0a:8d:2e:cf:54:
50:84:36:1a:3b:cd:a5:04:ed:65:a9:85:b6:95:df:
fd:97:0a:61:5e:91:fa:cd:20:21:a5:5e:a8:00:bc:
e9:92:e8:75:7a:08:e4:60:46:5d:dc:bc:67:a2:7c:
9b:b3:20:b8:02:f5:6c:78:d6:da:03:22:3f:f9:72:
4a:58:a7:fa:a9:07:b7:cb:37:0d:61:bf:9d:d1:84:
db:c8:bd:a4:a9:d2:77:02:09:91:f1:1a:b8:be:b2:
d7:c0:27:ee:4d:d5:1e:24:41:9a:95:7c:91:43:8c:
bf:3b:e7:51:9c:b6:29:5f:73:34:84:b4:6e:db:d6:
06:13:ee:0c:d3:49:cf:51:fd:66:4c:7c:2a:42:4a:
4b:67:55:13:19:a0:07:03:d2:e7:0b:be:8f:7a:37:
c0:90:2e:43:ed:00:8d:e0:36:99:6b:ac:45:39:06:
43:25:75:a0:d5:68:83:9d:7c:a6:94:bd:d2:a5:ca:
28:b9:82:13:f5:a3:0c:fb:c3:d7:e9:e1:ba:9a:a2:
32:1b:93:6c:bb:54:85:2d:50:7b:34:8c:50:88:2f:
fc:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:0D:6B:D8:D3:96:BD:DE:C0:DE:D5:10:9A:56:C7:2C:D2:5B:D9:09
X509v3 Authority Key Identifier:
keyid:30:C4:09:61:3F:EA:0A:2B:44:2C:E1:12:E9:CB:DB:48:5E:01:18:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MMQJYT_qCitELOES6cvbSF4BGI8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/dA1r2NOWvd7A3tUQmlbHLNJb2Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/b78fb5-afca-4db7-8886-c0671bf4cf3e/1/MMQJYT_qCitELOES6cvbSF4BGI8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.181.31.0/24
194.181.125.0/24
195.187.41.0/24
Signature Algorithm: sha256WithRSAEncryption
67:fc:69:d9:be:d5:2e:13:0f:2f:75:9b:b6:8b:20:72:10:b8:
7f:20:cb:fb:90:d6:41:9a:ca:ba:69:c9:0c:89:e5:da:86:9b:
63:27:62:36:a5:1e:c2:63:25:c6:58:42:f4:62:5a:c4:86:63:
b6:1c:8a:c0:8d:8f:20:b7:31:19:a4:f8:51:7b:6b:2a:c0:af:
63:88:e4:c1:4c:1e:bc:3a:b2:d9:d2:8f:bb:63:b9:94:cc:1e:
32:bf:0b:9f:5c:cc:61:eb:29:6b:bb:4b:20:60:eb:7e:18:3a:
b2:d9:e2:43:4e:f6:70:c7:6f:96:58:4d:1a:c9:a0:28:0d:59:
68:15:f4:ed:91:f0:fc:46:9f:fa:9a:4d:a3:2e:50:c5:13:c4:
d3:85:9b:3f:44:95:93:96:42:8f:1b:03:58:82:03:03:60:d3:
82:fd:a0:53:de:51:77:30:37:86:e8:c5:15:e8:19:37:51:3c:
93:28:9b:fa:01:c8:87:98:d9:31:9e:dc:73:f1:c2:ea:87:9b:
6a:40:0f:f7:c3:f2:46:5c:01:6a:03:d5:27:56:87:4b:52:a5:
ba:04:5e:ea:10:1d:6b:e4:9f:b5:46:35:59:09:e2:0c:8a:b8:
b5:64:65:f9:a4:89:5c:f8:02:2d:02:42:5c:1e:d6:43:a9:6d:
27:bd:68:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:05 2024 by rpki-client on console-ams.rpki-client.org