Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/M5so8eIvkIypdKdnxKsdT4w27E8.roa
File: M5so8eIvkIypdKdnxKsdT4w27E8.roa (raw, json)
Hash identifier: 0lIMDsXofPNuqBFPTL2+8JvOWvdkgkCcq0mmFC3FWO8=
Subject key identifier: 33:9B:28:F1:E2:2F:90:8C:A9:74:A7:67:C4:AB:1D:4F:8C:36:EC:4F
Certificate issuer: /CN=1efa596a3126ace029c6d70d529257e07b38ba06
Certificate serial: 3F6F24DB
Authority key identifier: 1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/M5so8eIvkIypdKdnxKsdT4w27E8.roa
Signing time: Sat 01 Jan 2022 15:05:12 +0000
ROA not before: Sat 01 Jan 2022 15:05:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8551
IP address blocks: 128.139.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1064248539 (0x3f6f24db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1efa596a3126ace029c6d70d529257e07b38ba06
Validity
Not Before: Jan 1 15:05:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=339b28f1e22f908ca974a767c4ab1d4f8c36ec4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:12:87:fd:16:b2:5b:33:a3:b4:da:20:2d:d6:
f9:b6:87:dc:e9:c0:aa:0f:15:85:48:c9:0d:44:30:
ac:88:c4:d6:6f:94:70:fa:99:8a:5e:60:62:57:3c:
aa:5b:fd:c1:e9:47:c4:10:79:0d:e1:9a:5c:27:59:
9e:8c:06:51:51:00:48:65:0d:c0:2b:9c:f1:23:06:
5d:8d:2a:dc:26:d3:4c:b3:dc:e9:00:57:48:f8:4f:
19:5a:38:21:64:f1:51:6c:03:66:d7:52:b2:1c:3e:
ab:33:93:48:64:48:7c:48:99:cd:af:a3:06:db:22:
db:16:a4:29:d6:7e:dd:ae:ea:ea:6e:33:ee:c7:ee:
7a:0d:4b:6e:db:ff:77:69:f2:e8:8c:25:be:15:e1:
73:45:50:b4:18:1e:ad:94:14:82:b8:cc:52:df:aa:
c6:2b:5b:a6:f2:5b:e8:f1:42:e2:fe:90:12:d3:75:
e3:de:82:62:d5:c2:59:be:3f:fa:7d:98:9b:66:ed:
6d:9d:a9:ef:bb:1d:64:e5:de:4b:d2:19:30:a0:54:
bb:e3:ce:83:56:8e:d1:86:7a:20:9c:1d:0a:71:0a:
e5:83:56:4a:54:d7:03:06:77:ef:ce:a5:e2:ac:4f:
75:94:17:34:22:14:51:12:5f:c7:e3:fc:9c:18:96:
98:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9B:28:F1:E2:2F:90:8C:A9:74:A7:67:C4:AB:1D:4F:8C:36:EC:4F
X509v3 Authority Key Identifier:
keyid:1E:FA:59:6A:31:26:AC:E0:29:C6:D7:0D:52:92:57:E0:7B:38:BA:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HvpZajEmrOApxtcNUpJX4Hs4ugY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/M5so8eIvkIypdKdnxKsdT4w27E8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3cc78a-8fb5-475a-8882-9d0c620735f1/1/HvpZajEmrOApxtcNUpJX4Hs4ugY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
128.139.194.0/24
Signature Algorithm: sha256WithRSAEncryption
33:1a:eb:29:5d:88:e5:01:3f:ee:7e:f6:1e:e3:61:75:ae:2a:
3a:18:3e:48:fa:5e:d4:4f:d7:22:dd:88:44:be:8e:11:dc:d9:
44:23:60:92:0d:86:26:5e:a2:4e:e7:5e:bf:8e:d7:7d:a8:5b:
67:81:04:ff:57:17:f6:4f:12:dc:7a:94:12:79:f7:e9:0a:a7:
91:a9:72:1b:d0:df:2e:0f:f1:af:b8:7d:c6:b9:70:e5:d9:ea:
08:6b:31:51:7f:c8:41:f2:05:cb:60:1e:3c:a7:59:9c:08:dd:
6d:3f:c6:c2:ba:fc:0a:eb:98:9f:83:c7:52:c1:6e:b0:a4:e1:
83:bd:55:02:57:16:53:5e:65:5e:4a:71:c1:e0:0f:2a:54:f7:
0f:72:8e:7c:c5:2e:3a:c0:8d:5f:65:50:b8:59:38:fd:a3:d3:
f6:b8:be:a0:b2:d3:16:b4:0e:84:cc:73:3e:2d:5f:1e:23:88:
76:3d:04:16:b7:5f:e6:2d:85:85:d4:73:14:31:66:ed:00:9d:
60:2c:62:98:8a:96:57:df:8f:ce:85:3c:c7:f6:aa:6d:a0:f5:
6a:9c:af:fd:33:b8:fc:ad:28:f7:1a:99:bb:f7:78:f7:52:91:
b7:4e:44:5a:1b:fb:6e:04:88:96:99:8f:64:62:99:f0:14:19:
99:a9:10:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:31 2024 by rpki-client on console-fra.rpki-client.org