Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/61fe00-73b3-45a5-8eff-6696dadb45eb/1/uTf1i53ro2WjeVo3qW3c4584EhU.roa
File: uTf1i53ro2WjeVo3qW3c4584EhU.roa (raw, json)
Hash identifier: 0hLOVH83bX+TNSWO01d1a15KiAfH3UUhFwrKauHQSo8=
Subject key identifier: B9:37:F5:8B:9D:EB:A3:65:A3:79:5A:37:A9:6D:DC:E3:9F:38:12:15
Certificate issuer: /CN=c7736edeb92f937ea45893ea9bcf4ef83f15ffc8
Certificate serial: 9AFE4B
Authority key identifier: C7:73:6E:DE:B9:2F:93:7E:A4:58:93:EA:9B:CF:4E:F8:3F:15:FF:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x3Nu3rkvk36kWJPqm89O-D8V_8g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/61fe00-73b3-45a5-8eff-6696dadb45eb/1/uTf1i53ro2WjeVo3qW3c4584EhU.roa
Signing time: Sat 01 Jan 2022 00:58:56 +0000
ROA not before: Sat 01 Jan 2022 00:58:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33796
IP address blocks: 194.28.24.0/22 maxlen: 22
194.8.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10157643 (0x9afe4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7736edeb92f937ea45893ea9bcf4ef83f15ffc8
Validity
Not Before: Jan 1 00:58:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b937f58b9deba365a3795a37a96ddce39f381215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:50:b6:bc:a5:c9:ae:f7:9a:9a:f5:02:09:4e:
66:a6:63:05:43:d8:70:3e:4d:23:a5:8f:a6:e7:ad:
b6:04:b0:bb:0c:c9:de:64:f6:11:6a:57:65:2a:23:
97:39:8c:8c:46:4a:6b:9d:87:88:95:11:51:c0:87:
89:60:f8:c2:e3:b5:6c:a4:97:c7:3d:15:eb:c0:fa:
53:12:3b:c7:51:85:11:c2:8b:d1:e4:1d:fd:4d:ef:
5f:4f:77:c7:b4:40:cd:75:12:d0:ac:f0:82:7e:20:
0d:fb:71:7e:91:7e:20:c6:51:ae:fb:b1:5a:cd:b6:
4b:d7:9d:39:dd:4b:47:65:d0:87:79:42:d6:45:9d:
cd:4c:62:8d:2c:52:c7:a4:50:73:28:fb:db:0a:2b:
42:1d:07:a6:bc:01:5c:20:93:b4:62:03:d0:0b:ab:
1a:81:fb:1b:bd:98:8a:d3:7b:5e:54:f2:90:e1:50:
e0:21:e5:53:77:45:c9:1c:c1:42:19:85:87:81:cb:
cc:75:4f:20:61:5f:6b:43:a0:2e:31:e6:07:b4:9d:
35:2d:bd:bb:84:ad:67:96:76:7f:e2:f5:ba:20:b3:
bf:54:86:f3:b2:ab:6b:45:52:8f:09:45:93:08:31:
ee:c3:c4:05:14:a9:8e:d4:74:69:b5:42:27:8f:ed:
ce:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:37:F5:8B:9D:EB:A3:65:A3:79:5A:37:A9:6D:DC:E3:9F:38:12:15
X509v3 Authority Key Identifier:
keyid:C7:73:6E:DE:B9:2F:93:7E:A4:58:93:EA:9B:CF:4E:F8:3F:15:FF:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x3Nu3rkvk36kWJPqm89O-D8V_8g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/61fe00-73b3-45a5-8eff-6696dadb45eb/1/uTf1i53ro2WjeVo3qW3c4584EhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/61fe00-73b3-45a5-8eff-6696dadb45eb/1/x3Nu3rkvk36kWJPqm89O-D8V_8g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.242.0/23
194.28.24.0/22
Signature Algorithm: sha256WithRSAEncryption
5b:5b:bf:ac:c2:6b:77:f0:0f:96:18:fc:fc:ea:be:ea:a3:7c:
0e:ea:ca:d3:44:2a:9a:1e:a2:7b:e8:2f:bc:7e:65:3a:99:bb:
8f:30:fc:7b:cd:04:30:4e:18:2f:68:be:29:be:24:81:36:7c:
26:b2:7c:ff:75:3b:c6:c1:14:a8:ed:95:a5:2e:65:fd:ed:2a:
22:1c:7f:6e:c2:9d:32:8a:a8:e7:f6:a3:56:c8:b5:51:f0:ba:
87:aa:b8:d7:90:ba:de:f9:dc:7f:e4:12:0c:43:c3:7a:b0:c5:
32:ad:9f:6b:2e:88:eb:6c:d7:24:61:ee:7a:57:61:81:4d:24:
aa:a8:3d:11:16:dd:30:da:fa:3b:19:e0:a7:80:0a:31:1c:73:
54:5c:9e:a5:84:35:35:fd:70:f1:ba:7a:98:a8:35:91:8b:2f:
39:ea:db:80:a1:5d:94:76:ee:fd:33:89:80:8d:4b:9d:61:6d:
f8:80:98:46:69:9e:81:50:35:5f:99:93:27:50:93:9b:bc:9c:
3e:bb:7d:85:e7:87:0d:38:66:b4:68:c2:bc:de:a7:2a:ff:e5:
e8:73:eb:d2:db:20:8d:f3:32:88:7f:09:e7:19:72:af:83:34:
fb:58:b7:a6:69:2c:c3:46:1a:3c:44:c2:d0:8e:d4:62:5a:c7:
99:fa:3a:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:02 2024 by rpki-client on console-fra.rpki-client.org