Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/rO1tBYZkhtnGRJsvGKzZxouiT6I.roa
File: rO1tBYZkhtnGRJsvGKzZxouiT6I.roa (raw, json)
Hash identifier: SrsMDKkkbGv2Q+9UvPTg+NQmcJsrBrehXiultO46tzw=
Subject key identifier: AC:ED:6D:05:86:64:86:D9:C6:44:9B:2F:18:AC:D9:C6:8B:A2:4F:A2
Certificate issuer: /CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18
Certificate serial: 0D74825A
Authority key identifier: 2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/rO1tBYZkhtnGRJsvGKzZxouiT6I.roa
Signing time: Sat 01 Jan 2022 13:59:06 +0000
ROA not before: Sat 01 Jan 2022 13:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207856
IP address blocks: 194.28.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 225739354 (0xd74825a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cefde30b8a58b322a431f0829ed4ff33b5aac18
Validity
Not Before: Jan 1 13:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aced6d05866486d9c6449b2f18acd9c68ba24fa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0e:84:c5:d5:74:66:fc:c7:4f:fb:66:bd:41:
57:a6:2b:5a:e7:81:71:d5:57:c1:84:48:d5:47:c9:
a7:b7:d0:68:a7:60:6a:a3:fc:f3:69:02:cb:72:bf:
8f:79:f4:7f:12:ab:47:53:ed:8f:f4:01:86:57:cb:
d6:33:28:00:08:99:fe:f1:3e:3f:0b:fa:d7:e1:3a:
8b:f3:d5:39:1b:67:30:39:78:e2:b2:30:db:48:20:
37:5d:3b:8e:1d:69:e1:5f:c4:29:d1:22:52:4c:1b:
50:3f:32:6f:a1:06:2d:c0:0b:3c:66:b6:70:25:f9:
de:d3:6f:e3:ab:a0:43:94:ca:b6:c2:43:07:92:6f:
3c:d8:de:30:77:85:fd:b5:dc:1d:f2:94:70:30:69:
f7:2b:65:1a:45:e5:f9:fb:5c:5a:88:b4:50:0a:8e:
38:c8:b8:1a:f5:13:90:cd:b3:6f:6c:83:b2:c9:80:
83:42:7b:f8:cf:9d:a6:23:94:d7:66:69:9d:36:17:
81:d4:b7:ab:df:b7:34:7e:65:22:dd:c1:f2:7e:ef:
11:fe:56:2a:87:20:6f:ab:59:5e:9b:67:55:a0:e9:
92:d7:7a:4a:5c:c5:42:71:cf:a5:5c:84:44:d5:7e:
60:aa:df:a1:5d:c9:fa:26:e4:3b:1c:a4:c8:66:4d:
07:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:ED:6D:05:86:64:86:D9:C6:44:9B:2F:18:AC:D9:C6:8B:A2:4F:A2
X509v3 Authority Key Identifier:
keyid:2C:EF:DE:30:B8:A5:8B:32:2A:43:1F:08:29:ED:4F:F3:3B:5A:AC:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LO_eMLilizIqQx8IKe1P8ztarBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/rO1tBYZkhtnGRJsvGKzZxouiT6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/33a0f9-1178-4a6d-b964-ff765f8531d5/1/LO_eMLilizIqQx8IKe1P8ztarBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.45.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d6:1b:10:43:1a:d5:d4:f8:6f:e3:97:e3:77:79:97:00:82:
24:ec:24:76:c4:ac:4c:f2:5e:d5:1f:2c:bf:45:d5:c9:c4:7e:
eb:ce:7d:d1:2c:7e:dc:d0:f5:df:2e:9a:a0:e7:93:77:85:ad:
1e:2d:5a:df:f6:a0:98:09:7e:df:2d:04:be:46:ea:bd:50:07:
3f:19:d8:0d:a0:a8:e6:9c:2f:7d:cc:4f:54:2f:6c:99:23:e9:
13:9a:87:f7:70:24:93:d4:d5:48:97:5a:6a:26:69:99:49:ff:
8e:06:a6:64:01:09:6b:16:c2:5a:4f:74:74:9a:dc:21:5f:43:
fd:2c:c6:77:7b:e0:72:c8:48:7b:0b:4d:51:e6:44:7e:1c:4e:
6b:9e:b3:d2:5a:52:95:8d:eb:6a:f7:75:d0:b0:bd:e3:f5:16:
0c:39:25:e7:75:8b:a5:a1:15:cc:f8:b2:76:63:57:fb:52:e8:
62:07:79:52:eb:72:92:88:89:01:a0:3a:92:1f:34:e8:12:27:
7b:87:97:a3:2b:84:78:04:e1:c1:8b:2d:d1:ce:02:76:7f:1a:
d9:92:47:28:5a:16:b5:5a:c4:81:0d:d5:e6:ef:7e:02:2f:cd:
24:3b:89:23:17:a6:c0:6a:14:09:e1:86:6b:cb:38:01:c4:85:
79:90:42:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:33 2024 by rpki-client on console-fra.rpki-client.org