Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/ka93of8IlLDDw-YqL-vJJ7tgcTk.roa
File: ka93of8IlLDDw-YqL-vJJ7tgcTk.roa (raw, json)
Hash identifier: krPrGL6iX9+/MPBjVgfXoWQKhn2kRu4e5OgaDVNynA0=
Subject key identifier: 91:AF:77:A1:FF:08:94:B0:C3:C3:E6:2A:2F:EB:C9:27:BB:60:71:39
Certificate issuer: /CN=7cd6c0236ff4d6050906957ffd380b3879e6ed6e
Certificate serial: 01827C3D86B327A66EE3B9A7731B856028FB
Authority key identifier: 7C:D6:C0:23:6F:F4:D6:05:09:06:95:7F:FD:38:0B:38:79:E6:ED:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fNbAI2_01gUJBpV__TgLOHnm7W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/ka93of8IlLDDw-YqL-vJJ7tgcTk.roa
Signing time: Mon 08 Aug 2022 06:56:23 +0000
ROA not before: Mon 08 Aug 2022 06:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.54.157.0/24 maxlen: 24
194.54.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:7c:3d:86:b3:27:a6:6e:e3:b9:a7:73:1b:85:60:28:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7cd6c0236ff4d6050906957ffd380b3879e6ed6e
Validity
Not Before: Aug 8 06:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91af77a1ff0894b0c3c3e62a2febc927bb607139
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:fc:ac:9b:bc:b2:43:18:cb:93:70:33:00:db:
7e:ac:25:57:2e:e3:d9:16:59:b8:23:0e:14:92:b2:
a7:28:17:d8:0a:04:05:c9:68:ce:e3:f1:56:a5:74:
d3:e1:91:7f:e1:2d:04:67:25:16:21:07:f1:ab:10:
61:fb:85:da:23:7a:ee:e9:48:bf:16:53:e5:e4:8f:
48:2b:69:5e:d0:2d:b3:30:c9:a3:ba:01:1d:31:3c:
3f:48:97:04:28:31:ba:4d:ff:bf:07:8c:d3:1f:cf:
69:a3:0a:2c:d4:6f:35:77:36:c9:70:77:72:f2:36:
60:5c:c7:d5:35:f5:6d:5c:06:bc:d4:0f:de:cf:e8:
19:12:e9:60:23:3a:59:de:5d:d0:e8:21:e6:b0:4d:
42:47:22:8c:0c:51:50:b9:58:58:40:b6:dc:60:b2:
98:38:95:de:95:9d:3a:6b:b2:22:0b:15:36:9f:68:
13:1e:3a:44:5a:7e:6d:79:3d:49:86:9a:04:4d:42:
72:1b:4c:b0:a0:56:ac:1d:81:6b:99:9c:e9:86:47:
88:4b:e6:90:d5:77:cb:87:ea:c8:67:41:b4:96:dc:
32:37:81:d1:ef:6c:43:04:81:10:0b:d3:b4:b5:2f:
ec:5f:15:68:6a:5e:61:39:59:ea:bb:5a:54:dd:4d:
98:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:AF:77:A1:FF:08:94:B0:C3:C3:E6:2A:2F:EB:C9:27:BB:60:71:39
X509v3 Authority Key Identifier:
keyid:7C:D6:C0:23:6F:F4:D6:05:09:06:95:7F:FD:38:0B:38:79:E6:ED:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fNbAI2_01gUJBpV__TgLOHnm7W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/ka93of8IlLDDw-YqL-vJJ7tgcTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0ee78b-815c-4995-82e1-c80c288ebeea/1/fNbAI2_01gUJBpV__TgLOHnm7W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.156.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:9f:e4:ec:c7:97:7a:6a:10:70:4a:eb:ea:5a:16:41:20:9d:
7b:eb:8c:7d:70:9f:d3:f3:60:fb:91:0a:ce:97:c2:c7:cb:0e:
44:c8:22:13:1c:c2:24:6d:c7:57:42:ed:59:0d:e0:c1:ba:a3:
64:63:38:a1:76:4c:22:95:95:9c:76:07:da:2e:2d:f1:5e:d5:
a9:98:6b:a2:83:e2:d2:9c:8f:a0:45:12:04:e0:32:37:9a:43:
92:0a:57:51:a0:6b:4e:3a:e9:59:14:f1:a0:a9:16:e0:e7:ae:
28:12:e8:ab:61:e1:24:9b:aa:e2:6a:b1:8a:71:63:59:06:3c:
80:36:77:b1:17:02:81:9a:81:f7:16:16:c4:76:f5:bb:ce:79:
06:7c:2d:0d:5a:ed:bd:09:63:04:06:78:05:5e:1c:24:d6:a5:
4e:c2:75:73:97:78:8d:9e:7b:e0:6c:ca:a0:3e:97:e6:1b:91:
db:09:51:d5:a8:f9:aa:7e:99:df:3b:60:a2:11:30:4b:eb:09:
cc:ff:36:7c:a4:8f:ed:a2:8f:85:a1:2e:9d:0a:44:4e:f7:75:
64:23:90:b8:5c:a5:08:f3:33:fc:c5:de:65:d7:82:3e:c0:2d:
61:44:10:55:70:6c:0c:57:6a:b0:8e:14:09:16:74:b1:25:25:
84:a3:8f:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:48 2024 by rpki-client on console-ams.rpki-client.org