Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/_mw0HGFFSag8FdoMrYoFGGMGO20.roa
File: _mw0HGFFSag8FdoMrYoFGGMGO20.roa (raw, json)
Hash identifier: 5uSt8rJebkbXuoeQQ5fkG1da8ZWaPVm1Gt7qda4izsY=
Subject key identifier: FE:6C:34:1C:61:45:49:A8:3C:15:DA:0C:AD:8A:05:18:63:06:3B:6D
Certificate issuer: /CN=3d3f87bb7f7874aa7e15cfec9bbf6aae3c9ce33a
Certificate serial: EBC3DA
Authority key identifier: 3D:3F:87:BB:7F:78:74:AA:7E:15:CF:EC:9B:BF:6A:AE:3C:9C:E3:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PT-Hu394dKp-Fc_sm79qrjyc4zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/_mw0HGFFSag8FdoMrYoFGGMGO20.roa
Signing time: Sat 01 Jan 2022 10:58:55 +0000
ROA not before: Sat 01 Jan 2022 10:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210194
IP address blocks: 194.39.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15451098 (0xebc3da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d3f87bb7f7874aa7e15cfec9bbf6aae3c9ce33a
Validity
Not Before: Jan 1 10:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe6c341c614549a83c15da0cad8a051863063b6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:3b:13:f9:47:d9:ee:f6:78:93:a4:16:82:7b:
0f:ae:e1:ac:9b:dd:2d:79:01:f6:86:1f:6a:b3:0a:
6e:63:a6:e6:e1:39:f4:18:44:3e:11:9d:f1:c2:b7:
dc:72:85:49:61:d2:21:21:01:12:4b:39:df:40:3e:
50:49:e9:fa:ce:ee:4f:c2:9d:34:d4:ec:46:41:e1:
b8:7b:d8:de:7b:90:61:d1:63:9f:4f:a7:b5:ad:ed:
99:d8:51:7c:29:ab:a9:af:ed:9f:88:dd:70:22:09:
6b:d9:a5:d3:5a:55:28:11:d4:a5:5a:9d:df:41:8a:
de:5c:41:dd:ad:c1:31:b5:ac:f7:c8:b1:4b:4f:80:
7c:a8:ee:47:4e:a1:b1:fe:eb:68:6d:94:70:8b:f0:
65:e9:03:42:37:33:49:e1:28:fb:b8:b2:04:87:72:
5f:58:60:ca:89:0c:46:96:c0:9f:2e:e6:3f:1f:98:
fb:7a:c9:f6:f3:14:5d:45:43:5b:7a:3b:57:b6:d8:
5f:52:a3:a0:22:e4:c7:03:fc:6d:82:84:b5:8b:18:
1e:d7:82:28:ba:13:90:3e:82:a7:d1:0b:88:58:f2:
e0:37:f5:13:56:5f:6f:53:b7:a2:95:34:b0:f8:a8:
17:24:b5:25:62:c5:0c:d5:7f:b1:12:0e:b4:ed:d2:
3b:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6C:34:1C:61:45:49:A8:3C:15:DA:0C:AD:8A:05:18:63:06:3B:6D
X509v3 Authority Key Identifier:
keyid:3D:3F:87:BB:7F:78:74:AA:7E:15:CF:EC:9B:BF:6A:AE:3C:9C:E3:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PT-Hu394dKp-Fc_sm79qrjyc4zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/_mw0HGFFSag8FdoMrYoFGGMGO20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/71015a-11be-471e-9592-62be53425676/1/PT-Hu394dKp-Fc_sm79qrjyc4zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.231.0/24
Signature Algorithm: sha256WithRSAEncryption
08:ae:33:cc:96:e9:f2:7e:0c:8f:cf:d2:56:38:fd:02:a6:6d:
d1:cd:d5:6f:a1:ea:f5:3f:51:0f:26:c1:e0:fd:c8:9a:67:34:
9f:c8:d9:c2:2d:93:a0:0e:92:da:b2:bd:ae:af:99:4b:0a:91:
9c:03:d2:ea:16:b1:b0:3c:08:54:0e:f1:9a:0d:ca:86:ed:38:
6c:d7:ed:44:5b:bc:c0:67:64:5e:94:e1:20:25:cd:59:93:fc:
ab:7d:ea:b2:1e:d1:65:99:04:04:ee:15:a5:f4:9a:88:dd:56:
11:00:ef:d9:60:3e:ca:89:a2:3c:8b:69:89:2f:a7:b9:e5:00:
04:0b:03:cd:c8:61:2f:6b:e7:cb:46:38:9b:7a:e3:80:02:f4:
2d:99:e8:58:ac:59:ba:28:9a:ab:92:ec:7a:a4:76:2e:f9:52:
65:2b:4e:4c:1b:83:f5:42:d7:48:2b:22:48:9c:32:3c:cb:a8:
6b:80:17:30:98:b3:fb:75:8e:33:d9:81:2b:cc:24:bc:ea:b5:
f5:75:ad:71:69:cc:8b:66:1a:f5:c9:26:43:1f:3a:b5:04:b0:
29:fe:6f:5f:9b:91:e2:e0:38:16:74:d1:1b:3d:67:3c:a2:bc:
a3:17:cc:a4:77:33:e6:aa:03:49:ef:7e:dc:5d:34:a5:24:b9:
93:93:37:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-ams.rpki-client.org