Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/J5UhQICvZY5GKtEFLLwml-Rgn1Q.roa
File: J5UhQICvZY5GKtEFLLwml-Rgn1Q.roa (raw, json)
Hash identifier: tzCUigOUldKz4GEy5O66pZRPmfu2iMiN1prFF7HvrGE=
Subject key identifier: 27:95:21:40:80:AF:65:8E:46:2A:D1:05:2C:BC:26:97:E4:60:9F:54
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 018360097EC482254AABC9905F97A467B442
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/J5UhQICvZY5GKtEFLLwml-Rgn1Q.roa
Signing time: Wed 21 Sep 2022 12:32:58 +0000
ROA not before: Wed 21 Sep 2022 12:32:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62579
IP address blocks: 194.107.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:09:7e:c4:82:25:4a:ab:c9:90:5f:97:a4:67:b4:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Sep 21 12:32:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2795214080af658e462ad1052cbc2697e4609f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:f8:96:25:93:e8:c4:b3:b9:07:9a:54:92:
3a:77:31:82:a8:61:c6:ec:9e:86:17:a9:d7:67:79:
10:7d:52:16:08:0c:97:91:b8:3d:de:fb:37:51:62:
db:5c:73:47:16:ef:14:fb:f3:c3:04:b3:63:01:d8:
d2:81:84:69:ec:0c:70:6b:8d:db:d1:fc:6f:bb:65:
02:4e:2c:1b:8f:c2:a4:ab:e7:15:64:13:e2:18:28:
d3:55:d5:14:09:b1:ad:83:c6:3b:6d:88:93:58:84:
0a:e5:04:28:51:dc:5d:9f:5f:d0:21:a7:ce:04:cc:
5d:5e:91:af:32:7e:27:d3:1f:0b:90:1c:51:5b:2f:
b4:ca:d2:dd:d6:06:bf:ab:fb:6d:7d:9e:bf:7d:bc:
7b:8c:6b:61:33:30:dc:f3:25:70:c1:44:c0:f0:f2:
ff:9b:d9:53:f0:ad:ee:c9:29:1e:a8:57:b6:da:ad:
c6:92:8a:34:2d:06:6b:bc:3d:d5:5b:43:46:4b:2a:
eb:05:b2:6f:8b:cf:ff:9a:5e:fc:d1:63:f1:18:38:
5e:fe:31:11:23:a1:a9:22:f3:d8:a0:88:cc:cf:2e:
47:e1:e7:72:29:f7:41:1f:a8:ef:93:fc:b9:5d:15:
04:de:1a:a1:a7:70:d7:6f:62:30:7c:b1:76:b8:60:
98:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:95:21:40:80:AF:65:8E:46:2A:D1:05:2C:BC:26:97:E4:60:9F:54
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/J5UhQICvZY5GKtEFLLwml-Rgn1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.163.0/24
Signature Algorithm: sha256WithRSAEncryption
01:d3:6f:bf:d8:62:50:49:5c:60:cd:9d:0f:47:77:27:c2:20:
e5:1e:66:ee:b4:26:b0:e4:8c:01:df:2f:23:40:98:a2:c7:64:
6e:51:98:21:7f:b6:33:ef:67:fb:0b:0b:76:44:61:f2:d8:50:
8a:f3:5e:e9:68:32:f1:78:4c:36:fe:b9:6d:2e:39:09:f3:63:
a0:4e:b3:b1:ae:43:e7:69:61:77:d9:68:26:f7:82:32:50:7e:
22:1f:bb:73:6e:6a:08:8d:3c:51:f3:ce:c3:f6:6d:28:c1:51:
73:8f:51:87:a2:bb:11:71:c1:f9:4b:03:f0:fc:85:f7:cd:7f:
ee:a5:8e:85:e1:1c:a7:6b:63:4b:da:bf:f5:47:b2:94:10:27:
03:f2:26:2e:cb:bc:ea:98:c6:f7:6d:b0:e3:5b:a7:44:7a:75:
b6:81:f5:ba:80:f6:23:23:72:f2:1a:bd:2c:17:c7:17:f3:d0:
22:c9:e4:2f:4b:af:44:54:cf:40:46:ed:34:6b:45:67:74:ad:
3f:a7:61:7a:c4:a0:5a:ee:90:2f:de:60:8d:9f:79:81:9c:05:
d1:b6:e2:b9:79:71:68:3e:22:80:96:0c:37:ca:d4:5b:b4:c2:
48:31:ed:b4:95:4e:2b:2d:f7:fa:0e:b0:0f:fc:27:e2:c4:3a:
64:23:52:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:12 2024 by rpki-client on console-fra.rpki-client.org