Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/h1DXw0A5jlrvWDJ5djJpohf-Cxc.roa
File: h1DXw0A5jlrvWDJ5djJpohf-Cxc.roa (raw, json)
Hash identifier: CuWMDfNld9JgJQP9Ut4KKuqZfoA0iZcovFo5TRrq6R0=
Subject key identifier: 87:50:D7:C3:40:39:8E:5A:EF:58:32:79:76:32:69:A2:17:FE:0B:17
Certificate issuer: /CN=99deb2e1f85a17da240cfc816d972c85e411e624
Certificate serial: 18969ED4
Authority key identifier: 99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/h1DXw0A5jlrvWDJ5djJpohf-Cxc.roa
Signing time: Sat 01 Jan 2022 10:57:11 +0000
ROA not before: Sat 01 Jan 2022 10:57:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61328
IP address blocks: 194.31.56.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 412524244 (0x18969ed4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99deb2e1f85a17da240cfc816d972c85e411e624
Validity
Not Before: Jan 1 10:57:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8750d7c340398e5aef583279763269a217fe0b17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f9:fc:a5:14:a7:6e:6c:6a:c5:cb:b7:e9:5d:
c8:f2:8f:88:74:73:d5:35:c1:a4:8d:ed:ad:92:39:
40:cb:dc:97:ee:0b:d7:a7:b5:a2:b8:74:f2:57:49:
67:70:88:6b:b4:2f:d1:df:0c:3f:9e:03:92:5d:c4:
2e:5b:17:94:13:5d:00:a2:65:46:6c:eb:a7:c0:71:
b9:3e:70:d6:df:99:cd:c1:90:2b:bd:93:ae:13:88:
a2:dc:2d:ae:25:71:ca:5d:80:72:55:38:d8:c7:49:
c6:44:ae:84:97:15:12:a4:d3:47:b8:86:53:ea:0d:
40:2d:d4:5d:d7:c2:1a:a7:46:41:55:5f:d0:cd:06:
77:fb:4d:b5:e1:fe:e4:bf:99:87:62:1b:ec:f6:1c:
f2:fa:9f:01:b5:ff:49:3a:57:6d:79:b3:69:c0:1d:
45:ce:6c:d0:52:93:a5:50:e9:74:e9:f3:32:83:ca:
81:61:5d:b7:cd:01:d3:ba:bc:64:ce:bb:3c:77:67:
b6:6a:77:d5:65:1b:10:1e:a7:31:5a:57:00:25:46:
68:12:41:c3:8c:d9:56:a8:c5:2b:88:bc:dc:76:04:
1b:86:2b:85:0b:58:1d:8f:1a:dd:91:fb:55:1d:c3:
f9:1b:82:8d:9b:64:5a:aa:77:e9:46:ec:49:a2:9b:
ad:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:50:D7:C3:40:39:8E:5A:EF:58:32:79:76:32:69:A2:17:FE:0B:17
X509v3 Authority Key Identifier:
keyid:99:DE:B2:E1:F8:5A:17:DA:24:0C:FC:81:6D:97:2C:85:E4:11:E6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/md6y4fhaF9okDPyBbZcsheQR5iQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/h1DXw0A5jlrvWDJ5djJpohf-Cxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7c91ca-55f7-43a4-b950-8dc94e89bf03/1/md6y4fhaF9okDPyBbZcsheQR5iQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.56.0/24
Signature Algorithm: sha256WithRSAEncryption
af:c0:7f:d5:7c:6e:c7:99:32:6c:db:bf:74:81:01:8f:63:61:
4a:ad:3e:8e:4d:bb:03:d2:37:80:04:e9:f2:37:46:87:ff:99:
76:4b:d7:a4:cb:10:d8:27:b6:c9:88:92:2d:2f:3a:8b:05:3b:
9b:c9:50:6f:db:cc:eb:52:ab:eb:56:32:02:76:de:d6:33:e2:
1b:15:a1:b2:26:2e:d4:47:9a:c3:3d:d0:de:9a:0a:33:52:f0:
a2:8f:7a:24:d9:b7:d8:9b:f2:5f:44:30:85:75:92:40:87:10:
92:56:4a:52:ee:fb:55:f4:77:c0:e1:fd:91:2b:07:c4:46:4f:
21:02:73:d9:47:80:95:bd:04:71:3f:82:18:12:58:12:17:5b:
7a:c6:2e:20:82:a6:a8:1c:c0:8e:18:39:e3:00:b2:36:f5:d2:
25:16:90:52:bf:cd:1b:2d:70:73:e7:03:34:7f:c5:0c:1e:05:
d6:82:2f:80:64:d8:3d:db:6f:aa:a8:94:8d:28:c6:a6:a6:17:
08:db:9a:cf:7c:5c:42:08:c8:71:24:5d:b5:b3:cc:5c:e7:09:
c1:c3:d1:77:5a:d0:34:9a:2f:d9:36:f5:29:52:9c:85:35:ca:
2b:e8:0d:99:b7:7d:b8:69:21:15:66:df:76:fb:3f:fc:86:4a:
ac:5b:6f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:26 2024 by rpki-client on console-fra.rpki-client.org