Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/tOLnj9ozEs3VZSTXptZhXZx9GvM.roa
File: tOLnj9ozEs3VZSTXptZhXZx9GvM.roa (raw, json)
Hash identifier: QeEKJsfRw0X9Fx6yJPLl+41lZ+D7MjVNzG+/WfAdP90=
Subject key identifier: B4:E2:E7:8F:DA:33:12:CD:D5:65:24:D7:A6:D6:61:5D:9C:7D:1A:F3
Certificate issuer: /CN=43a438813750133e55001bf89670a0db3ae5be1f
Certificate serial: 10BAAC0D
Authority key identifier: 43:A4:38:81:37:50:13:3E:55:00:1B:F8:96:70:A0:DB:3A:E5:BE:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/tOLnj9ozEs3VZSTXptZhXZx9GvM.roa
Signing time: Sat 01 Jan 2022 15:06:13 +0000
ROA not before: Sat 01 Jan 2022 15:06:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39923
IP address blocks: 194.50.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 280669197 (0x10baac0d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43a438813750133e55001bf89670a0db3ae5be1f
Validity
Not Before: Jan 1 15:06:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4e2e78fda3312cdd56524d7a6d6615d9c7d1af3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:b1:1b:0b:34:64:6e:99:5d:db:f1:a9:61:d6:
76:5a:1c:2e:48:81:a9:a4:6e:21:97:81:9c:e7:59:
3c:71:f7:97:4e:bb:16:f9:be:03:99:8f:02:ca:c9:
31:43:03:12:2e:fa:fd:29:be:a4:7b:6c:b2:2b:b4:
7d:08:40:a0:da:cc:f9:c4:5c:b6:f6:b5:49:cb:29:
52:99:3d:22:87:08:51:ec:83:ce:f7:b4:89:85:2e:
74:c5:78:cf:dc:0b:17:18:75:26:aa:37:d9:ba:b2:
f8:fc:9f:6d:ab:63:22:4d:e3:bd:e9:b3:3d:64:20:
86:9c:f8:cd:fa:54:39:99:8a:96:4e:fc:60:9e:c3:
c8:ce:c7:15:0b:28:02:35:72:7b:bd:91:dc:d6:de:
3d:f9:60:2c:81:0c:12:d6:a5:e6:59:ce:2d:b1:1e:
21:73:1e:9f:61:43:88:3e:96:40:e1:aa:0c:31:a6:
97:e5:ff:75:18:ea:d3:20:52:aa:6d:d6:bb:2a:8b:
36:ff:73:ba:4b:29:5e:3c:e2:7f:3f:08:e2:c3:64:
d6:6d:ec:11:93:86:c3:ef:a2:ed:0b:e7:98:25:4d:
c5:9e:11:c2:74:4a:e2:18:c4:4d:ae:aa:72:33:97:
ef:71:d1:b2:87:ba:ec:b5:9f:d7:b9:5e:2a:95:76:
10:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:E2:E7:8F:DA:33:12:CD:D5:65:24:D7:A6:D6:61:5D:9C:7D:1A:F3
X509v3 Authority Key Identifier:
keyid:43:A4:38:81:37:50:13:3E:55:00:1B:F8:96:70:A0:DB:3A:E5:BE:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/tOLnj9ozEs3VZSTXptZhXZx9GvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.177.0/24
Signature Algorithm: sha256WithRSAEncryption
09:34:97:49:f2:b8:2a:87:73:e5:35:bc:ed:a4:f6:94:19:f7:
25:5b:7d:f0:89:b5:8c:8c:01:5e:ea:d8:a8:43:2b:32:d4:4e:
dd:ac:48:bf:6d:92:fc:dd:f6:82:75:c8:96:98:70:da:56:44:
84:c8:81:2b:4e:b9:e0:48:c2:20:c9:dc:af:aa:91:54:5c:1f:
80:56:2c:27:30:69:23:6c:c6:51:34:71:d3:86:cb:a8:5f:38:
70:9b:4c:36:dc:05:45:72:6c:ad:58:da:42:67:80:2f:74:b6:
c9:b9:b6:98:fd:7b:8f:91:57:4e:10:7d:79:86:2e:e4:d7:c3:
85:4b:1b:5a:2e:1a:fc:94:84:3f:61:8f:59:5f:4f:38:f8:0e:
7d:a7:cd:b7:ec:58:fe:5f:1a:7e:92:8e:69:45:78:8f:79:1c:
2a:cb:33:9a:1a:fb:0f:6b:09:87:81:58:80:fd:4b:87:07:b8:
0a:e4:aa:41:80:2a:ec:50:a8:b9:00:22:ec:dc:ff:5b:af:f5:
34:98:c0:07:f6:b5:5a:e0:2c:54:d2:2f:54:70:76:6c:fd:07:
a2:44:e9:21:fb:1b:84:39:0d:9e:09:bc:15:70:ef:96:f8:cb:
bb:af:f1:9c:c1:fc:01:ee:01:a4:da:d3:da:d3:df:3f:78:cd:
4f:06:6e:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:09 2024 by rpki-client on console-fra.rpki-client.org