Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/0L08lTGAfUEFC5i07ArEzFtBiV8.roa
File: 0L08lTGAfUEFC5i07ArEzFtBiV8.roa (raw, json)
Hash identifier: ImdnXAbbPgV1ZNPT22sPwMix2V/nF80C6SKZOgxmdhc=
Subject key identifier: D0:BD:3C:95:31:80:7D:41:05:0B:98:B4:EC:0A:C4:CC:5B:41:89:5F
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01842DAEEDDF6315EDD82A8CFDF0749BBEF6
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/0L08lTGAfUEFC5i07ArEzFtBiV8.roa
Signing time: Mon 31 Oct 2022 10:55:49 +0000
ROA not before: Mon 31 Oct 2022 10:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 194.107.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:ae:ed:df:63:15:ed:d8:2a:8c:fd:f0:74:9b:be:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Oct 31 10:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0bd3c9531807d41050b98b4ec0ac4cc5b41895f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:68:f5:ad:3a:89:73:99:b7:ff:82:83:39:7e:
07:88:3c:95:bb:b4:9b:4c:ba:82:09:fa:3b:3c:01:
cb:1a:f7:c1:06:36:17:bf:0a:56:46:fb:3f:5b:31:
a0:ee:8c:8c:d5:ac:c7:ec:1a:de:9d:1b:da:8e:a5:
85:e8:d7:f3:81:36:3c:35:ec:62:18:07:10:1a:bc:
50:44:c7:2f:4a:ab:52:36:d8:1d:36:6d:c1:ad:69:
cf:2b:18:04:0c:f9:1b:b7:c7:b1:bb:f6:0b:73:a3:
a3:c4:50:fc:68:52:5d:6b:1c:ce:6c:fd:54:49:88:
e3:fd:00:8f:75:2f:17:46:a0:49:87:24:62:cd:b7:
32:61:49:80:15:87:3d:9b:9f:4b:15:ce:cc:84:54:
98:7c:0c:e7:49:4a:4e:3f:39:73:cf:20:b7:32:73:
c3:fc:67:86:16:fc:1d:2f:ae:68:c0:24:74:5f:a3:
47:44:4d:85:f7:5f:23:d4:15:94:9c:ce:36:dc:04:
fa:ad:6d:d6:7e:30:0b:e6:ce:71:67:73:ee:79:3b:
d0:87:4b:5a:2b:86:99:8f:1a:69:65:36:f6:a7:d2:
fa:e9:d2:42:38:46:8a:f2:2c:44:10:58:06:30:dc:
25:0f:df:31:92:da:ba:29:43:06:20:a0:f8:5c:a9:
e8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:BD:3C:95:31:80:7D:41:05:0B:98:B4:EC:0A:C4:CC:5B:41:89:5F
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/0L08lTGAfUEFC5i07ArEzFtBiV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.161.0/24
Signature Algorithm: sha256WithRSAEncryption
01:19:98:af:c6:f8:4b:33:c1:df:6e:14:6a:3c:d3:56:82:f7:
a8:e5:dc:d5:89:23:18:28:a3:48:3c:d6:e3:9b:38:8e:14:f4:
59:0c:c5:0d:a1:fa:b6:de:2c:d0:2e:f8:18:d0:b4:e7:4e:31:
65:aa:0b:f6:58:de:ef:e3:f2:f2:1d:76:8a:03:7c:43:4d:a4:
c3:81:2d:ef:d6:e2:88:e4:87:37:57:00:ea:e6:f5:07:a6:a6:
ec:a9:6d:1b:1b:06:88:2c:11:e2:55:88:e4:f4:71:74:33:30:
69:46:01:46:12:a5:04:3d:e3:9c:68:77:fe:8d:f8:ab:28:3b:
30:32:f4:60:2c:09:02:7f:cc:4b:3b:d4:c9:b7:3c:4b:56:8e:
ec:4c:1b:08:7f:2a:bd:98:c0:07:d6:d1:77:e0:a9:55:73:c3:
81:67:d7:17:31:bc:2f:70:e3:ff:74:1a:6c:ca:da:24:1b:e7:
67:cd:8e:8e:b5:b3:3c:a4:11:f6:ab:94:e1:f8:d3:8c:88:20:
a8:6d:95:b8:4e:bd:0d:a4:61:6a:ab:24:ff:fe:de:54:77:a6:
6f:30:01:fe:0d:4d:46:f1:e9:a4:26:6b:4d:e9:e2:cf:cc:27:
59:d9:c1:06:24:db:90:15:ac:98:47:2f:91:56:e6:d9:57:a8:
1b:a3:3b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:38 2024 by rpki-client on console-ams.rpki-client.org