Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/u1p3gXBkCyz_3AfdlfFYoeTAXNw.roa
File: u1p3gXBkCyz_3AfdlfFYoeTAXNw.roa (raw, json)
Hash identifier: XeKguyfanoWYp1nstftyYIZ+2Rv8MWkHoWEGKkE5wf0=
Subject key identifier: BB:5A:77:81:70:64:0B:2C:FF:DC:07:DD:95:F1:58:A1:E4:C0:5C:DC
Certificate issuer: /CN=888166463a1a301ca5b6eb98bddd07e397091986
Certificate serial: 02068868
Authority key identifier: 88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/u1p3gXBkCyz_3AfdlfFYoeTAXNw.roa
Signing time: Sat 01 Jan 2022 15:58:11 +0000
ROA not before: Sat 01 Jan 2022 15:58:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9211
IP address blocks: 194.156.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33982568 (0x2068868)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=888166463a1a301ca5b6eb98bddd07e397091986
Validity
Not Before: Jan 1 15:58:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb5a778170640b2cffdc07dd95f158a1e4c05cdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a6:bf:6d:da:92:13:f7:d4:b0:20:08:c5:d4:
a8:98:bd:3f:e9:80:97:9d:3a:86:5e:b1:46:ce:d6:
4f:58:d7:8e:a4:63:1f:6c:90:75:0e:ee:84:b8:4b:
8d:2b:08:7e:f9:45:ba:8f:89:05:53:71:59:98:6c:
96:83:9d:e2:a6:b2:af:13:a5:b7:64:83:fd:6d:2b:
54:8e:17:ee:5d:4e:fb:57:85:9b:63:8a:a4:a1:58:
14:2e:b8:f1:13:fd:3a:7b:4f:7b:27:54:c6:d7:f5:
a6:da:c7:5a:87:e5:36:f0:49:d1:20:4a:d5:06:9a:
0d:9c:36:bc:15:9b:41:04:a3:54:ba:13:0f:08:79:
6c:46:64:cb:a5:20:22:cb:c6:0e:75:b0:19:b8:22:
0c:2d:03:ea:27:57:1d:9b:63:84:0f:ec:6d:1f:7b:
e0:33:72:fa:b5:0b:23:8b:f9:be:62:cb:7f:3d:ae:
7b:b4:ee:df:c0:2d:60:0a:aa:ab:95:28:a4:db:ca:
b1:65:9f:b9:af:f7:db:74:fe:89:c8:e8:84:1c:d0:
40:13:ad:6e:b3:80:66:48:77:6a:19:33:16:b8:20:
e7:b0:ff:23:28:a6:2d:de:0d:c1:e4:08:1e:7f:75:
18:cf:39:7d:71:c0:8c:df:72:f0:61:90:c8:d6:a4:
75:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:5A:77:81:70:64:0B:2C:FF:DC:07:DD:95:F1:58:A1:E4:C0:5C:DC
X509v3 Authority Key Identifier:
keyid:88:81:66:46:3A:1A:30:1C:A5:B6:EB:98:BD:DD:07:E3:97:09:19:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iIFmRjoaMByltuuYvd0H45cJGYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/u1p3gXBkCyz_3AfdlfFYoeTAXNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/476fd0-b8a6-461f-b4c5-38c2c2a79c35/1/iIFmRjoaMByltuuYvd0H45cJGYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.189.0/24
Signature Algorithm: sha256WithRSAEncryption
74:c1:7a:6e:fd:31:e1:bb:71:b8:8f:8f:1a:88:a7:cb:32:f0:
f3:f9:93:49:74:fb:9b:08:47:f5:46:6a:bc:54:29:10:2b:14:
da:8d:57:6f:36:d0:f0:fb:d5:f2:5d:55:44:71:a8:fd:9a:db:
7c:ed:96:d3:92:59:24:2d:9e:2d:ce:99:8a:7b:62:c5:c3:b7:
bc:78:2e:3a:26:0e:97:c1:d1:14:7c:c6:5d:be:d0:49:ae:ed:
d3:10:90:f3:10:74:08:88:4f:13:cf:73:1f:cd:2d:61:dc:9b:
6d:80:26:6d:f4:ec:9c:fb:5a:c4:d9:84:34:e1:06:68:81:4d:
2e:2b:d6:a9:c9:15:7f:6a:8e:13:62:fe:d4:30:40:9f:23:58:
72:e3:12:4a:bf:c5:ff:cd:e7:39:bd:0c:f6:a1:34:cf:42:c7:
f8:a7:a5:fb:3e:70:76:30:ba:ba:32:d3:74:e4:cd:bd:76:83:
a5:0a:04:33:85:b8:90:43:ba:27:d2:1d:a9:58:de:f7:e1:34:
3e:3d:ed:a3:3d:f6:0d:33:9c:64:b4:8d:ff:04:e5:92:34:82:
0c:31:31:b0:d9:34:4a:4c:fe:02:c6:5d:f8:b6:20:8a:3d:07:
0c:4c:d9:8f:a1:31:50:57:4f:87:f6:97:c6:3e:09:c6:85:aa:
04:ac:0e:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:04 2024 by rpki-client on console-ams.rpki-client.org