Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/urilV5-EHbO3SgQpxbkTNbx4ANg.roa
File: urilV5-EHbO3SgQpxbkTNbx4ANg.roa (raw, json)
Hash identifier: v1D9MUkUnCKe+YDGh1bhEsJhp2rhf+E7/t1/S4HxaHo=
Subject key identifier: BA:B8:A5:57:9F:84:1D:B3:B7:4A:04:29:C5:B9:13:35:BC:78:00:D8
Certificate issuer: /CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Certificate serial: 05C307BA
Authority key identifier: A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/urilV5-EHbO3SgQpxbkTNbx4ANg.roa
Signing time: Sat 01 Jan 2022 10:02:23 +0000
ROA not before: Sat 01 Jan 2022 10:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12649
IP address blocks: 194.191.108.0/24 maxlen: 24
195.48.70.0/24 maxlen: 24
195.49.41.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96667578 (0x5c307ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a74c6706e3fbebdff146a8a14ec2a3284a92ba62
Validity
Not Before: Jan 1 10:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bab8a5579f841db3b74a0429c5b91335bc7800d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4d:f2:c1:bc:6b:7b:be:e8:3d:2f:a3:e5:74:
99:78:f3:41:3d:3b:1a:7d:99:dd:32:df:64:44:9f:
a9:53:88:c9:af:30:b4:25:0c:b1:88:65:ae:1f:bb:
80:ff:dc:42:83:e5:25:48:1b:fe:8f:85:34:1e:a0:
49:02:2d:10:1f:49:d9:59:28:a4:f7:83:a9:b8:53:
a4:e1:9b:0f:cc:83:3b:a5:c4:33:c2:a0:f2:9e:18:
54:0a:55:4b:ca:e9:72:16:17:53:3c:dc:c1:e1:6d:
d2:d3:5b:a3:87:65:72:ee:31:08:99:09:74:84:f0:
c1:82:7a:b8:75:17:09:50:c3:89:8f:81:54:bf:96:
1e:ab:74:c0:7c:26:df:82:ac:09:2f:af:7a:11:1a:
b3:89:e3:50:ec:7e:79:c5:e5:9d:06:6d:95:db:4d:
84:1c:75:cf:c7:b8:35:27:cf:0c:da:81:cd:d1:ce:
81:89:9f:6c:8f:0e:77:33:15:a2:7e:e1:ed:28:26:
0d:57:47:91:08:c4:4d:00:62:9e:38:82:30:bf:56:
d3:bd:9c:9b:16:94:05:52:ca:e7:5d:14:6e:31:e6:
7d:a0:a8:04:98:ed:81:a4:3a:29:b8:e2:34:95:0e:
52:eb:d1:81:23:35:1a:a2:fb:f8:bd:7f:0e:7d:ed:
bc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B8:A5:57:9F:84:1D:B3:B7:4A:04:29:C5:B9:13:35:BC:78:00:D8
X509v3 Authority Key Identifier:
keyid:A7:4C:67:06:E3:FB:EB:DF:F1:46:A8:A1:4E:C2:A3:28:4A:92:BA:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p0xnBuP769_xRqihTsKjKEqSumI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/urilV5-EHbO3SgQpxbkTNbx4ANg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a0c444-9796-4f06-83f2-aa788a420aec/1/p0xnBuP769_xRqihTsKjKEqSumI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.191.108.0/24
195.48.70.0/24
195.49.41.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:e1:03:73:3c:83:ee:77:3d:11:ce:7f:e2:1a:d4:64:d2:2e:
89:08:aa:64:7b:2f:79:5a:91:af:db:d2:85:66:79:4a:68:b4:
41:ac:eb:46:1f:b4:09:08:3a:bc:41:12:d9:41:04:59:07:06:
18:d1:2c:23:e9:0d:f7:ee:4d:9f:03:97:a4:7b:3f:f5:4d:59:
76:18:e5:f8:86:c7:ef:fa:1d:74:d8:57:ec:96:b7:7f:2f:c1:
7f:26:a3:0b:73:4e:bd:51:15:ad:45:cb:fb:3d:33:14:ac:6e:
6e:bc:8a:9e:78:db:58:f8:8e:6a:b4:b8:d8:f2:1e:8d:e6:52:
cb:46:ba:48:2e:92:5a:58:64:75:d5:d1:81:ae:af:40:95:18:
0f:29:78:38:6b:ec:69:e9:94:f8:cb:ee:1e:d9:27:9f:96:9b:
42:23:e1:19:4f:c9:2f:95:02:cc:ef:42:50:1c:0e:69:de:e0:
56:60:b6:55:b6:0c:5f:ed:f9:62:fd:5b:32:1e:de:26:3b:bd:
65:ad:e8:a8:a3:d4:b0:dc:04:2c:c6:2c:69:31:4d:3a:38:15:
a1:ba:9c:e0:a0:e1:09:0d:5e:71:b2:40:5e:32:3c:bf:70:cc:
94:ae:ee:82:8b:47:eb:97:aa:22:bd:37:1e:39:53:1c:9a:9e:
fd:bc:bb:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:03 2024 by rpki-client on console-fra.rpki-client.org