Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0BltG5gm58zIvZj-MWKenntv-IA.roa
File: 0BltG5gm58zIvZj-MWKenntv-IA.roa (raw, json)
Hash identifier: 03CH5S67L1l9Nbn1tLYC0LnHW6yX1b7bULGvPBsikI0=
Subject key identifier: D0:19:6D:1B:98:26:E7:CC:C8:BD:98:FE:31:62:9E:9E:7B:6F:F8:80
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1B6BD391
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0BltG5gm58zIvZj-MWKenntv-IA.roa
Signing time: Wed 01 Jun 2022 14:23:20 +0000
ROA not before: Wed 01 Jun 2022 14:23:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212816
IP address blocks: 194.102.186.0/24 maxlen: 24
194.102.185.0/24 maxlen: 24
194.102.184.0/24 maxlen: 24
194.102.184.0/22 maxlen: 22
194.102.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460051345 (0x1b6bd391)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Jun 1 14:23:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0196d1b9826e7ccc8bd98fe31629e9e7b6ff880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:dc:27:e3:11:49:ef:5e:dd:04:74:4d:1a:fe:
0f:ae:3a:64:f7:ae:9a:0e:66:b2:ec:4f:fe:fc:a0:
32:4e:d5:67:b2:aa:bc:29:cd:3a:3e:f5:cd:23:4c:
60:1b:3d:1f:ef:cf:81:5b:95:58:9e:71:fb:c6:2f:
19:38:92:6a:d4:f0:25:e5:c2:8e:b2:33:76:8c:ed:
de:eb:e5:6e:09:7a:43:b7:8d:2a:43:3b:af:86:7e:
24:09:5f:60:76:cb:1f:cf:35:ae:de:c2:5a:20:10:
4e:92:a1:2e:23:52:f1:f3:cd:57:16:71:94:ed:c0:
84:a6:53:1e:66:45:88:ed:5c:9a:9e:d1:3e:e0:7f:
30:f2:43:bc:87:4d:a1:b4:e0:06:ab:ef:11:9e:12:
ff:d7:2b:16:25:5b:91:f2:f8:98:28:54:b0:d7:e9:
98:5e:18:62:51:cf:02:5d:0f:7a:4b:d5:6c:ee:1d:
a9:30:dd:53:80:5f:5d:78:d1:56:86:5e:3a:98:8b:
09:61:8b:72:c6:cb:7a:2a:d1:9b:57:f2:01:5a:7c:
ef:dc:8e:55:c9:43:4d:2e:1d:65:11:93:9a:c8:83:
23:b2:bb:53:50:da:a2:c0:c9:8a:a4:65:11:2f:b2:
bb:66:1d:66:83:55:c5:e3:f5:7e:3b:22:27:83:20:
72:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:19:6D:1B:98:26:E7:CC:C8:BD:98:FE:31:62:9E:9E:7B:6F:F8:80
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/0BltG5gm58zIvZj-MWKenntv-IA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.184.0/22
Signature Algorithm: sha256WithRSAEncryption
93:8a:5e:f8:5e:93:f2:80:d1:38:73:e9:ec:20:f4:b8:5f:9f:
fd:c4:ed:dd:0e:6a:0d:78:09:c6:f8:26:47:ea:59:e5:8d:14:
24:81:42:42:16:5c:b9:90:82:49:88:9a:62:70:fd:a0:f6:fd:
be:0f:e0:93:82:3e:93:2e:66:97:ef:d8:d4:dd:29:23:a8:57:
7f:dc:5d:f5:a7:76:9d:24:38:7e:48:48:34:59:23:44:59:41:
c7:a1:79:ed:f2:18:92:67:60:c6:46:94:4d:ef:c7:57:0b:52:
a0:24:7b:99:9c:e6:bf:65:02:fb:09:c6:7b:f5:b9:38:dc:78:
4a:e1:2c:9b:5c:2a:ae:77:bd:df:87:e8:2d:44:da:6b:76:1d:
a5:5d:92:1f:a0:25:53:d3:1d:db:ce:f0:23:29:72:e6:33:e3:
3c:f5:d8:ef:7e:80:b6:e3:77:d5:d6:6e:72:c6:a8:43:01:64:
8e:3f:34:4d:a0:80:94:34:96:7b:8b:06:93:a1:7b:96:25:bb:
38:52:67:2a:07:b8:4a:89:e6:2f:bd:76:0f:c5:ed:32:98:d6:
6b:77:04:b8:d0:04:9e:ca:7b:b5:b6:aa:f6:a1:9e:b3:bb:ad:
9a:15:24:52:99:93:38:6b:14:9d:2b:7a:df:cf:42:71:b3:c5:
ec:59:49:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:04 2024 by rpki-client on console-ams.rpki-client.org