Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/vOwJpI2RPehk9AVDgx8tYhBiMqg.roa
File: vOwJpI2RPehk9AVDgx8tYhBiMqg.roa (raw, json)
Hash identifier: 4T6uomah603YVspilkqMLXIp3mi3lShlFpjMZTRKaiU=
Subject key identifier: BC:EC:09:A4:8D:91:3D:E8:64:F4:05:43:83:1F:2D:62:10:62:32:A8
Certificate issuer: /CN=e5d272a8dc041f5adc7abd00d64d3f32c204dab2
Certificate serial: 018238F5B6459C7AFFB42861F6744811603A
Authority key identifier: E5:D2:72:A8:DC:04:1F:5A:DC:7A:BD:00:D6:4D:3F:32:C2:04:DA:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5dJyqNwEH1rcer0A1k0_MsIE2rI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/vOwJpI2RPehk9AVDgx8tYhBiMqg.roa
Signing time: Tue 26 Jul 2022 05:23:23 +0000
ROA not before: Tue 26 Jul 2022 05:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133861
IP address blocks: 194.41.36.0/24 maxlen: 24
194.41.37.0/24 maxlen: 24
194.41.58.0/24 maxlen: 24
194.41.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:38:f5:b6:45:9c:7a:ff:b4:28:61:f6:74:48:11:60:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5d272a8dc041f5adc7abd00d64d3f32c204dab2
Validity
Not Before: Jul 26 05:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcec09a48d913de864f40543831f2d62106232a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0f:60:af:d7:2f:7c:3d:95:23:e9:62:39:9b:
f6:1e:25:15:42:d4:5a:5b:5e:d0:79:9c:6d:80:23:
03:91:9d:bf:48:ce:a6:36:88:67:f2:c4:0e:54:13:
92:3e:31:e3:99:6f:fc:59:98:66:6e:4e:23:a3:c6:
71:8a:07:10:4d:43:dc:6f:a1:6a:91:e5:a4:01:f2:
02:ae:0c:34:08:0c:64:f6:7b:84:19:3c:62:87:cb:
e6:e1:25:70:a2:f9:49:1a:c9:25:b0:1a:d5:6b:78:
b7:11:7e:37:b8:b1:66:74:b9:e2:56:28:41:10:ed:
0f:1f:58:d5:16:ca:b7:23:9e:f0:d6:93:df:b6:87:
e1:ac:6b:bf:66:27:6b:80:2a:16:97:9a:e4:65:58:
d3:66:87:54:9e:72:8a:c1:9e:11:ed:14:62:61:e3:
84:33:92:e0:4d:99:0d:b2:a3:47:31:16:c1:d5:fa:
19:d3:b8:1b:1e:dc:51:20:83:b8:84:f6:1d:4f:63:
4e:a6:89:56:4c:a4:eb:c2:76:d5:cb:a5:1c:cd:50:
0a:f2:c4:c4:f3:ee:ef:fb:44:34:88:a6:d3:b2:e9:
5c:08:ef:d3:81:1b:e9:53:5d:a3:45:aa:c5:d6:6a:
22:d2:2b:2e:cc:36:9c:62:04:c5:3c:50:60:01:ec:
bc:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:EC:09:A4:8D:91:3D:E8:64:F4:05:43:83:1F:2D:62:10:62:32:A8
X509v3 Authority Key Identifier:
keyid:E5:D2:72:A8:DC:04:1F:5A:DC:7A:BD:00:D6:4D:3F:32:C2:04:DA:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5dJyqNwEH1rcer0A1k0_MsIE2rI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/vOwJpI2RPehk9AVDgx8tYhBiMqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/417c1d-a2e4-44a6-af24-d4f5027600ae/1/5dJyqNwEH1rcer0A1k0_MsIE2rI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.41.36.0/23
194.41.58.0/23
Signature Algorithm: sha256WithRSAEncryption
2c:c6:24:c9:b8:48:26:c8:2a:af:d4:f2:89:68:a5:b1:df:08:
de:c2:18:72:fd:d6:51:47:9c:af:77:22:fa:63:65:33:76:46:
41:3f:ef:0c:1a:82:02:48:97:c3:88:3e:91:88:4c:bd:d1:56:
18:ba:83:d1:95:c3:61:ec:75:cd:d8:fa:2c:58:c2:c7:c2:9f:
e4:87:92:17:9a:c5:c1:fc:e9:b8:eb:91:89:36:25:cc:20:87:
cd:26:fd:21:9a:ee:7e:7d:78:58:d9:f0:5d:80:58:73:d1:73:
6b:51:54:c4:0a:dd:51:c2:e5:4e:f6:a6:d0:f2:44:9f:a3:67:
33:bf:7a:48:30:cc:6a:9d:26:06:e9:db:2f:4e:96:99:e9:55:
10:d7:b3:00:0d:08:bd:be:cf:99:23:10:26:69:d8:4b:d9:af:
5f:cc:0d:be:91:b5:00:68:23:e7:4f:32:f2:76:d0:9c:ee:29:
77:e2:5c:6c:5e:fc:6c:eb:84:c0:78:82:e3:98:54:b1:17:5e:
04:1c:7e:81:52:a0:c4:73:e1:b0:6c:3c:17:22:fa:13:f1:5c:
7f:be:1f:cd:0d:10:8c:c8:3b:fc:9b:e0:56:46:a6:e0:fc:08:
1b:b1:ef:bc:a2:b5:e9:01:59:63:3f:24:95:45:b4:cf:3a:3e:
6f:5c:25:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:42 2023 by rpki-client on console-ams.rpki-client.org