Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/6OJsMY_8tbQgGXu9_JvKasl0vSk.roa
File: 6OJsMY_8tbQgGXu9_JvKasl0vSk.roa (raw, json)
Hash identifier: 3m/CRm9JUcBHxVwj81KP73yLgsNEKDSF96p9OfZonNY=
Subject key identifier: E8:E2:6C:31:8F:FC:B5:B4:20:19:7B:BD:FC:9B:CA:6A:C9:74:BD:29
Certificate issuer: /CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Certificate serial: 9F34
Authority key identifier: 92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/6OJsMY_8tbQgGXu9_JvKasl0vSk.roa
Signing time: Tue 15 Mar 2022 14:35:21 +0000
ROA not before: Tue 15 Mar 2022 14:35:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43805
IP address blocks: 194.107.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40756 (0x9f34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92503aaf126af7cd031cac3ce1e398c174b82e02
Validity
Not Before: Mar 15 14:35:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8e26c318ffcb5b420197bbdfc9bca6ac974bd29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:c4:0a:f9:82:13:8a:d2:ce:6d:95:cb:05:
5b:32:ed:ae:7e:32:ef:a9:33:8a:03:28:1c:a7:c4:
63:e2:75:08:d3:1c:e6:21:32:3f:c9:9b:f2:43:df:
f9:5f:ea:27:6a:37:85:85:03:76:50:e0:61:5c:90:
04:fb:17:79:4a:a3:f9:1a:9e:c0:11:05:dc:07:5e:
a0:53:1c:33:bd:58:2e:15:95:3c:61:de:cb:49:db:
40:f1:ac:31:17:05:63:ab:eb:ae:fc:f2:d6:7e:35:
32:5c:3e:88:d2:46:3f:dc:7f:73:25:85:84:6a:14:
65:cc:05:6e:e8:0f:fe:81:0c:37:55:62:37:e8:9d:
38:5d:6a:17:13:28:6d:d1:fe:1e:99:b2:21:e9:b2:
44:4a:84:e2:cf:e2:01:b6:a7:3f:8d:fd:72:14:ae:
07:04:7b:94:b2:62:80:30:f2:a2:d1:5b:a3:18:27:
2b:cc:6b:09:e5:58:31:5e:7d:c6:50:93:fd:5e:b5:
42:1f:6e:d3:4c:70:77:f6:22:c5:5a:28:c1:7a:7b:
a7:ca:d8:53:03:79:8e:2e:15:e5:4b:c4:25:eb:6a:
fe:50:bb:1e:ac:83:4f:fe:27:f5:44:11:8d:70:92:
e9:54:da:9d:4a:ad:0d:5c:67:3b:6d:7d:c4:6f:43:
54:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E2:6C:31:8F:FC:B5:B4:20:19:7B:BD:FC:9B:CA:6A:C9:74:BD:29
X509v3 Authority Key Identifier:
keyid:92:50:3A:AF:12:6A:F7:CD:03:1C:AC:3C:E1:E3:98:C1:74:B8:2E:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klA6rxJq980DHKw84eOYwXS4LgI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/6OJsMY_8tbQgGXu9_JvKasl0vSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/79bdb0-bd5c-4800-9768-afd1268fdbfd/1/klA6rxJq980DHKw84eOYwXS4LgI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.23.0/24
Signature Algorithm: sha256WithRSAEncryption
39:6f:e5:c9:9b:d1:9b:a6:8e:f9:b3:13:55:95:66:96:88:d8:
01:25:0f:26:94:10:5c:70:29:d9:e0:c6:06:99:53:6b:66:85:
85:0b:38:dd:13:7b:fb:0b:64:57:22:f5:7f:11:c6:35:b5:b6:
2a:dd:86:b7:a9:1f:9a:f4:38:f3:c0:66:b2:52:c5:79:03:f9:
a3:e5:6b:80:61:e4:be:51:fa:82:35:b5:55:7c:12:0a:3f:89:
67:44:8b:ff:60:d1:f9:6c:49:55:f4:76:18:d8:24:be:67:9e:
1a:44:ff:5f:11:9a:aa:03:97:4c:15:f9:c3:a3:94:3e:f4:15:
59:62:84:d1:64:60:63:5f:30:32:f3:24:77:bf:91:97:94:dc:
5a:dc:58:2c:5d:db:da:aa:2e:68:e9:f8:7b:b5:6e:99:4b:ab:
71:55:c4:02:28:c3:5e:26:52:8f:21:5b:3d:b2:a3:b5:f9:26:
de:42:03:7c:43:cb:f0:38:64:60:17:a8:1d:8d:ee:31:cf:66:
d5:31:be:1a:92:9e:2f:76:27:97:13:d1:da:cf:e5:85:49:9d:
ef:7c:73:5b:a2:9f:ec:9a:fd:9b:bc:c0:ea:02:f4:31:f6:73:
0e:29:c4:5a:53:2c:52:4d:68:d5:c5:6f:e5:d5:a2:a3:df:e0:
0e:4a:db:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org