Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/f89c9e-3e9a-41ba-9b45-35614e9178fc/1/CvcTRwfnjiJPTqd39nIVyn6b7Hg.roa
File: CvcTRwfnjiJPTqd39nIVyn6b7Hg.roa (raw, json)
Hash identifier: yfcvPAcO1sY1hrAthLASgz4gI3oQwNZWIPD2zhMcr2M=
Subject key identifier: 0A:F7:13:47:07:E7:8E:22:4F:4E:A7:77:F6:72:15:CA:7E:9B:EC:78
Certificate issuer: /CN=34f59ea2fa47a9d6311b1c8cc5a86a5b9a0e47a7
Certificate serial: 0BE218EB
Authority key identifier: 34:F5:9E:A2:FA:47:A9:D6:31:1B:1C:8C:C5:A8:6A:5B:9A:0E:47:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NPWeovpHqdYxGxyMxahqW5oOR6c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/f89c9e-3e9a-41ba-9b45-35614e9178fc/1/CvcTRwfnjiJPTqd39nIVyn6b7Hg.roa
Signing time: Sat 01 Jan 2022 11:54:43 +0000
ROA not before: Sat 01 Jan 2022 11:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25089
IP address blocks: 194.107.142.0/24 maxlen: 24
194.107.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199366891 (0xbe218eb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34f59ea2fa47a9d6311b1c8cc5a86a5b9a0e47a7
Validity
Not Before: Jan 1 11:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0af7134707e78e224f4ea777f67215ca7e9bec78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c7:39:42:5f:80:e7:22:c9:56:f5:ef:14:0b:
d6:0d:6e:f5:e6:77:36:4e:d8:40:58:57:de:ec:59:
7c:dd:28:eb:36:76:cf:12:1c:e4:91:68:65:72:52:
83:4c:cc:51:c2:a6:44:00:bb:04:c5:41:7c:80:f9:
8f:80:09:4b:39:a2:45:3c:ea:12:b1:c9:12:72:a9:
ea:84:14:02:b5:88:fa:5a:0f:fe:f5:c5:e7:3f:bb:
1d:dd:cf:68:b6:b5:4b:38:6a:47:54:40:af:2b:2c:
92:95:ea:fd:1a:17:c9:f0:d3:0a:47:6a:c1:c4:8e:
a3:50:61:08:de:3e:98:fb:0b:53:85:d0:1b:8b:aa:
98:a1:72:ea:92:f5:67:4b:89:4d:29:2c:73:94:1c:
19:65:0c:81:c4:97:4c:ac:c7:77:bd:97:25:04:90:
e1:02:2b:30:6b:75:e0:82:c1:6d:e1:8a:d7:fa:9f:
f3:f2:1b:88:24:8b:e8:a0:76:cf:8f:f5:21:83:20:
a7:5b:7c:ed:7e:88:aa:8d:11:57:dc:28:0d:a1:77:
64:27:84:6e:82:1c:0e:e6:fc:e5:8a:13:d1:5b:74:
ce:c2:af:49:7b:fd:be:ea:2f:5c:6f:e0:ad:1b:71:
79:25:b6:08:a5:1c:c1:fa:31:4e:57:b3:db:75:82:
7d:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:F7:13:47:07:E7:8E:22:4F:4E:A7:77:F6:72:15:CA:7E:9B:EC:78
X509v3 Authority Key Identifier:
keyid:34:F5:9E:A2:FA:47:A9:D6:31:1B:1C:8C:C5:A8:6A:5B:9A:0E:47:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NPWeovpHqdYxGxyMxahqW5oOR6c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f89c9e-3e9a-41ba-9b45-35614e9178fc/1/CvcTRwfnjiJPTqd39nIVyn6b7Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/f89c9e-3e9a-41ba-9b45-35614e9178fc/1/NPWeovpHqdYxGxyMxahqW5oOR6c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.142.0/23
Signature Algorithm: sha256WithRSAEncryption
07:d3:d4:da:78:a6:bf:8f:09:a4:f8:2e:d3:c2:b8:b2:f2:b3:
4a:9e:ea:38:00:a4:e9:ee:d1:9a:b8:b4:4b:a2:42:59:fa:9d:
80:2b:64:69:99:69:04:be:76:3b:f1:99:66:b1:c2:13:ca:34:
ae:a3:84:f8:dd:fb:4f:01:1c:2b:ef:aa:84:fb:2e:57:a0:7b:
d8:3d:f1:bd:25:a5:29:94:c3:dc:75:85:f6:3d:82:8f:63:92:
04:25:d0:74:ed:f1:bb:e4:85:0a:b4:21:ce:5b:62:40:88:9c:
79:94:2c:04:99:23:b7:e6:e1:4f:98:e9:0b:4a:ff:eb:15:77:
f0:3c:4e:d8:9d:aa:6d:87:34:5c:9d:30:53:c7:e1:58:3c:fd:
82:cb:ee:64:50:46:dd:c6:58:6f:6b:a6:46:52:0b:c2:9b:63:
25:49:93:3e:da:7e:9e:be:b5:c7:15:a7:6c:27:45:6d:6d:f6:
13:39:11:a5:e6:2d:0f:3c:03:27:fb:6f:9a:94:a6:18:84:9d:
6e:fd:3a:fe:5f:72:ba:48:b5:2a:8f:a0:ea:60:ea:eb:17:76:
34:a4:be:29:64:82:8a:08:57:57:7b:e4:ce:0f:26:aa:c5:a2:
6f:32:da:1b:f9:8a:d2:88:8d:d2:b0:1f:3f:3e:dd:7b:1f:73:
ee:f0:b7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:07 2024 by rpki-client on console-ams.rpki-client.org