Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/99488d-3bd6-462a-9cc8-9bc3816a0e15/1/OJfft3gZcmIUsB3m2kVwhmn9_Qc.roa
File: OJfft3gZcmIUsB3m2kVwhmn9_Qc.roa (raw, json)
Hash identifier: 8p6gZtSVuFFTW+pugxvCMkULIPC7ToiJmf0JeDk/MSE=
Subject key identifier: 38:97:DF:B7:78:19:72:62:14:B0:1D:E6:DA:45:70:86:69:FD:FD:07
Certificate issuer: /CN=3f501b4b8afc239ce256cd1d391d7174f93b2515
Certificate serial: 01849FF357DAD665D0CCBE57148F4724CCC5
Authority key identifier: 3F:50:1B:4B:8A:FC:23:9C:E2:56:CD:1D:39:1D:71:74:F9:3B:25:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P1AbS4r8I5ziVs0dOR1xdPk7JRU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/99488d-3bd6-462a-9cc8-9bc3816a0e15/1/OJfft3gZcmIUsB3m2kVwhmn9_Qc.roa
Signing time: Tue 22 Nov 2022 15:27:15 +0000
ROA not before: Tue 22 Nov 2022 15:27:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212147
IP address blocks: 194.26.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:f3:57:da:d6:65:d0:cc:be:57:14:8f:47:24:cc:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3f501b4b8afc239ce256cd1d391d7174f93b2515
Validity
Not Before: Nov 22 15:27:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3897dfb77819726214b01de6da45708669fdfd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f9:5a:45:54:17:04:dd:f0:7e:51:3a:16:09:
2f:19:da:b3:ad:d5:89:0f:ab:53:bf:c4:b8:8a:7f:
38:7d:84:7b:4f:07:38:5e:10:9a:7b:e8:fd:aa:a1:
b7:b9:46:5d:4c:28:f9:fa:a9:25:7b:be:5e:84:e6:
0c:a4:28:7b:a3:57:40:57:a6:5b:c3:21:41:ca:ee:
d2:de:db:74:57:0f:8d:d7:4a:2b:a5:ba:24:74:42:
bc:27:5d:aa:e2:10:f4:e8:cb:e1:4f:52:a1:92:76:
64:06:72:a5:65:8a:44:92:fa:64:4c:a6:fa:a0:9e:
61:98:b4:6c:31:37:0b:0b:02:1f:90:3f:6e:09:e3:
f1:72:4d:9e:bc:b3:a9:c5:d1:40:40:f0:61:ad:f8:
02:c7:1c:b8:66:c4:32:dd:d2:b0:6f:ea:02:4c:6d:
6c:db:ce:11:25:04:ed:b0:bd:18:86:0f:76:4f:f5:
33:42:73:29:e0:b2:e0:e7:4b:55:ba:17:ba:e7:db:
21:04:09:9f:7d:6e:02:5c:71:05:cc:6f:8f:8c:2e:
b8:42:3d:13:0e:3f:ed:0f:cf:28:38:b3:0a:06:01:
a6:e6:ae:f2:7e:0c:60:1d:1c:26:14:6d:d0:d7:40:
92:64:88:d3:28:c6:6a:ae:5e:7b:b7:7b:df:ed:0f:
61:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:97:DF:B7:78:19:72:62:14:B0:1D:E6:DA:45:70:86:69:FD:FD:07
X509v3 Authority Key Identifier:
keyid:3F:50:1B:4B:8A:FC:23:9C:E2:56:CD:1D:39:1D:71:74:F9:3B:25:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P1AbS4r8I5ziVs0dOR1xdPk7JRU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/99488d-3bd6-462a-9cc8-9bc3816a0e15/1/OJfft3gZcmIUsB3m2kVwhmn9_Qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/99488d-3bd6-462a-9cc8-9bc3816a0e15/1/P1AbS4r8I5ziVs0dOR1xdPk7JRU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.137.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:32:0c:e5:3d:6c:73:69:3f:44:3c:04:22:c2:5f:4f:32:6b:
84:97:09:ef:cc:17:81:ae:41:4b:37:dd:f7:c9:35:13:19:87:
bb:a2:89:32:bb:7d:24:bb:6d:37:f4:55:6e:7c:15:b8:4a:14:
38:06:d3:27:bf:ee:f8:86:a0:df:6b:44:65:fa:0b:32:9d:1f:
74:45:67:fb:c4:ee:96:bf:d4:4d:81:0d:3b:a9:08:f1:97:09:
c4:43:35:40:0a:e8:75:55:cc:66:d0:df:3f:d2:73:21:e7:e1:
e9:70:20:fa:de:0b:b4:0e:51:c0:e8:d6:3e:25:e2:b5:cf:a5:
f5:51:76:b9:9e:03:3e:7f:4a:08:c7:9f:e8:4f:cf:a6:01:60:
93:c5:f8:88:95:79:e1:db:2d:05:4a:79:a6:8f:45:e2:72:f6:
74:09:19:4a:a1:b7:5a:1d:cb:6e:69:40:36:8b:70:04:29:86:
6a:85:83:dd:bb:c4:39:b3:ad:5c:b8:ed:59:6e:e1:23:0f:74:
7d:9c:d0:f8:51:c6:bd:40:23:3d:c4:f1:56:54:bc:7e:d4:89:
ad:93:03:09:ab:ee:35:8b:ba:6d:28:65:1b:f7:1e:99:af:19:
b0:f0:45:de:88:55:12:9b:33:c8:a2:07:6c:a2:85:e4:ba:af:
23:24:25:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:14 2023 by rpki-client on console-fra.rpki-client.org