Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/d7tUJkEHMFhZm_slD5K763M7F0g.roa
File: d7tUJkEHMFhZm_slD5K763M7F0g.roa (raw, json)
Hash identifier: YeK200mvWTKUHz07Go4RTL+TozCRVPL4D38vX0kRJ1k=
Subject key identifier: 77:BB:54:26:41:07:30:58:59:9B:FB:25:0F:92:BB:EB:73:3B:17:48
Certificate issuer: /CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Certificate serial: 01842DB1ADE7C3D94E31F5A3DBFACBD6ABFF
Authority key identifier: 94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/d7tUJkEHMFhZm_slD5K763M7F0g.roa
Signing time: Mon 31 Oct 2022 10:58:49 +0000
ROA not before: Mon 31 Oct 2022 10:58:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 194.107.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:2d:b1:ad:e7:c3:d9:4e:31:f5:a3:db:fa:cb:d6:ab:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=94e59d245d150dc38c4896263dcbdcbbd67470a7
Validity
Not Before: Oct 31 10:58:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77bb542641073058599bfb250f92bbeb733b1748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:77:9c:90:69:57:0c:cc:87:9a:44:5e:ff:1f:
f2:d1:95:b5:e8:82:81:2c:e1:7b:99:ec:48:d9:6b:
8a:1b:5f:23:e2:d1:6f:bb:d9:44:0c:13:6c:44:83:
b4:76:ee:25:41:2e:4f:9d:87:bc:64:f7:83:4e:3d:
de:96:f8:ce:57:ca:2f:57:4c:5e:d6:a0:0a:e9:a7:
58:1b:74:aa:79:73:98:76:c3:91:70:0b:b1:15:b2:
d2:f7:82:c8:52:a2:d2:05:d7:67:e6:fa:71:8e:c9:
2b:3b:4f:5d:d0:8f:e7:8b:9f:61:88:86:49:b7:83:
35:b4:88:6f:fd:c2:e4:9a:81:4c:ec:98:ed:fa:01:
b4:8f:25:9e:a7:9d:cb:8c:a3:8b:53:f0:33:b2:ff:
da:61:84:a4:4d:06:0e:b2:a2:9c:b4:e3:aa:c7:71:
5d:ee:ac:b7:3c:ac:cb:29:f8:6d:25:9e:2b:c1:72:
62:db:4e:95:e2:7a:c3:d7:ad:94:2a:ac:12:52:bb:
0b:67:c0:f8:d9:dc:34:f8:4c:8a:91:2b:6d:01:cb:
43:56:72:7c:71:33:b2:9d:8e:aa:25:0b:e2:17:a3:
e0:f1:1e:b4:7e:15:6a:12:46:5f:21:ce:21:87:96:
d7:e0:44:b2:7f:86:58:e4:26:1f:39:a6:9b:17:42:
00:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BB:54:26:41:07:30:58:59:9B:FB:25:0F:92:BB:EB:73:3B:17:48
X509v3 Authority Key Identifier:
keyid:94:E5:9D:24:5D:15:0D:C3:8C:48:96:26:3D:CB:DC:BB:D6:74:70:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/d7tUJkEHMFhZm_slD5K763M7F0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/287cd2-f1d8-44a9-bed2-ee95b6cc3474/1/lOWdJF0VDcOMSJYmPcvcu9Z0cKc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.107.160.0/24
Signature Algorithm: sha256WithRSAEncryption
52:6b:b1:f1:7b:8f:45:cd:5d:54:e5:a7:e5:0d:61:1e:38:cf:
52:f8:0b:06:1a:b5:97:0f:2e:68:6f:38:a0:6e:58:0f:b1:3d:
3b:d6:16:4a:77:83:1a:bd:ce:d9:87:4d:a9:f3:78:37:43:ad:
21:c8:95:64:ae:e7:56:06:d1:da:af:5a:40:21:07:d1:3d:4b:
ec:31:bf:d5:67:18:40:d3:16:77:eb:cc:d8:ad:66:17:23:bf:
11:42:c4:65:19:45:54:f5:f5:41:c4:c9:cd:5e:8e:00:37:a1:
5e:63:0f:f1:b0:58:65:f2:e9:90:d6:dc:28:c5:79:4c:24:8a:
42:84:fb:cf:d2:c8:a1:e6:7a:8d:6e:12:0b:97:ee:b1:91:b9:
7f:4f:63:f5:85:c4:04:95:2b:8a:65:c1:72:8f:29:f0:11:ab:
26:66:bd:79:f0:96:5b:bc:79:d4:98:b2:4c:ad:ca:21:22:c6:
b3:57:7b:d7:ea:a0:be:b6:32:ff:04:a9:19:47:17:33:73:f5:
ea:d7:77:54:b1:f9:3c:d4:11:ed:d4:41:d4:0c:44:dd:1f:0c:
5a:37:d2:e5:69:8e:55:bc:0b:8e:75:da:3c:c0:f1:8d:2d:18:
30:1d:d8:1e:f4:d5:31:ba:51:2c:57:0a:f7:07:4e:c7:03:7c:
72:e1:76:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:39 2024 by rpki-client on console-ams.rpki-client.org