Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/rbQjBdVfoWNp9UfyKdvDXFZIDvQ.roa
File: rbQjBdVfoWNp9UfyKdvDXFZIDvQ.roa (raw, json)
Hash identifier: 8VVNzNufg8QuKqPtdsHETYkA3y7YDOFq6a+Xpcb6x1k=
Subject key identifier: AD:B4:23:05:D5:5F:A1:63:69:F5:47:F2:29:DB:C3:5C:56:48:0E:F4
Certificate issuer: /CN=458d12f095053c35876b88b47685d6435421fcf2
Certificate serial: 0B7F6273
Authority key identifier: 45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/rbQjBdVfoWNp9UfyKdvDXFZIDvQ.roa
Signing time: Sat 01 Jan 2022 10:53:37 +0000
ROA not before: Sat 01 Jan 2022 10:53:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42708
IP address blocks: 194.76.224.0/24 maxlen: 24
109.230.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 192897651 (0xb7f6273)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=458d12f095053c35876b88b47685d6435421fcf2
Validity
Not Before: Jan 1 10:53:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=adb42305d55fa16369f547f229dbc35c56480ef4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:39:20:e9:31:b8:4f:00:74:88:42:87:97:a0:
ec:23:9e:78:91:75:38:8a:d1:5f:47:1c:7c:07:e5:
7e:f7:c0:47:68:37:d8:f2:f4:a0:23:ab:03:37:b1:
e6:f7:0d:95:80:65:9c:4a:8e:9f:49:df:4a:50:d3:
51:89:6b:ce:be:40:d0:cd:2e:9b:4a:09:a9:90:7d:
aa:28:81:00:91:e8:61:76:f6:94:a9:2a:2a:dc:31:
6e:fa:57:62:3c:33:0b:c2:13:53:be:59:af:29:fb:
f9:cf:4b:99:7b:bb:0e:0c:24:65:49:7a:2c:8e:a3:
78:7d:40:26:86:4f:bc:62:35:b4:1c:02:0b:04:a2:
14:f7:a8:ff:72:17:ce:43:d8:1e:e3:c3:13:cc:d9:
b6:61:6c:13:9f:aa:9f:1b:31:f0:8a:f1:9c:e5:22:
c8:5d:d7:25:9a:ba:0d:2f:c5:43:5f:55:a0:18:33:
cf:b8:d3:24:3a:fa:eb:00:64:f9:94:ee:a1:e0:1f:
74:6b:63:55:d0:85:05:6c:8b:f8:43:47:eb:7b:5d:
cc:08:87:9c:a6:99:5c:4c:d2:f3:59:dd:08:6b:46:
ac:90:78:23:93:74:ae:d6:e5:2f:ff:80:6e:74:de:
4f:bd:30:3c:53:da:f2:4f:9c:50:ed:63:5e:46:8d:
70:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B4:23:05:D5:5F:A1:63:69:F5:47:F2:29:DB:C3:5C:56:48:0E:F4
X509v3 Authority Key Identifier:
keyid:45:8D:12:F0:95:05:3C:35:87:6B:88:B4:76:85:D6:43:54:21:FC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/rbQjBdVfoWNp9UfyKdvDXFZIDvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/7cecc7-f63d-43fc-b219-3955959eaf81/1/RY0S8JUFPDWHa4i0doXWQ1Qh_PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.230.199.0/24
194.76.224.0/24
Signature Algorithm: sha256WithRSAEncryption
20:03:85:de:a6:f1:af:92:db:9c:54:fa:0b:78:c0:d9:51:cb:
2a:ce:54:ab:c9:e3:ec:3c:81:b1:82:0d:36:d7:c8:6e:f7:27:
15:5b:89:c3:4c:7c:af:61:26:9c:54:2c:a2:60:e4:9a:4d:c9:
72:54:7a:44:ee:dc:ba:03:27:7d:1a:13:03:d3:01:a2:57:0c:
bc:cf:eb:68:b5:4f:91:04:3f:f9:08:f6:b7:37:dc:c7:87:06:
1a:ab:a6:78:57:4b:ea:8c:92:28:73:13:82:76:28:76:9e:1d:
ac:c4:2b:1d:70:10:8d:8f:77:fc:f9:a4:77:c0:8c:2d:b4:9f:
bd:4d:a8:91:11:b5:0b:d9:c0:68:7c:2f:5d:70:e9:2c:af:95:
e9:73:42:76:ea:dd:fe:8b:81:75:09:a0:c4:a8:db:63:52:64:
dc:0a:7b:83:31:a8:f9:ce:d6:6b:66:d8:a1:b7:39:ab:3d:e9:
50:51:53:72:8b:2a:bd:0d:bd:90:c4:3b:a9:43:84:08:e9:29:
f8:72:a0:50:48:55:a5:4b:04:5c:43:06:8c:f3:0c:ec:d6:10:
44:65:4a:64:19:d1:af:42:25:64:e8:57:34:e3:00:48:6f:ab:
10:1d:fc:55:e1:43:bc:85:8f:12:19:5a:f1:71:cd:e6:c8:44:
23:ea:ac:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:02 2024 by rpki-client on console-fra.rpki-client.org