Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/ca0c3b-a969-4847-bd02-66643e0663df/1/ef_V0hEWtfvmaIzYaML4Ty4sDjA.roa
File: ef_V0hEWtfvmaIzYaML4Ty4sDjA.roa (raw, json)
Hash identifier: wC98eL04uu5ZKeOswn+ZiH5/zcwKogyLXIZ3JRA/5Vo=
Subject key identifier: 79:FF:D5:D2:11:16:B5:FB:E6:68:8C:D8:68:C2:F8:4F:2E:2C:0E:30
Certificate issuer: /CN=67415cba22e331ada91ff4dc6688e5fa0af45769
Certificate serial: 06BB7ACD
Authority key identifier: 67:41:5C:BA:22:E3:31:AD:A9:1F:F4:DC:66:88:E5:FA:0A:F4:57:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z0FcuiLjMa2pH_TcZojl-gr0V2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/ca0c3b-a969-4847-bd02-66643e0663df/1/ef_V0hEWtfvmaIzYaML4Ty4sDjA.roa
Signing time: Sat 01 Jan 2022 04:57:33 +0000
ROA not before: Sat 01 Jan 2022 04:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41090
IP address blocks: 194.69.206.0/24 maxlen: 24
194.62.174.0/24 maxlen: 24
194.62.188.0/24 maxlen: 24
194.62.233.0/24 maxlen: 24
2a0f:ad40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112949965 (0x6bb7acd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67415cba22e331ada91ff4dc6688e5fa0af45769
Validity
Not Before: Jan 1 04:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79ffd5d21116b5fbe6688cd868c2f84f2e2c0e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:06:e8:3c:0c:3f:97:f7:53:f0:63:57:32:f2:
8d:fe:77:07:f7:e0:24:51:01:41:09:15:e6:9b:50:
99:9d:92:4f:6b:dc:a5:aa:65:41:c5:c7:4e:60:29:
13:cc:45:76:75:d6:0d:40:01:c2:65:fd:14:66:f7:
ef:18:ee:4b:0f:be:02:a5:b8:9b:39:6e:bf:6b:28:
6b:0e:59:b3:4c:e0:c6:df:ea:29:f8:47:ef:58:cd:
b7:cc:62:1c:48:83:7e:99:f6:c4:6e:fa:a1:55:80:
54:b9:35:15:5f:27:67:9f:7e:77:2d:99:0d:cb:20:
0f:94:1f:e6:42:09:9c:3d:a7:36:37:4a:9f:1b:4a:
03:4c:4f:74:08:31:20:c6:91:e5:54:c3:6c:47:40:
52:ac:49:bf:ef:dc:5e:ae:2b:88:d1:e8:8f:43:a8:
0d:c7:b6:19:05:c0:4c:a2:ea:8a:aa:39:bb:69:67:
66:c4:4c:73:e5:b6:1c:43:31:66:24:25:d1:e1:da:
cc:44:61:9a:cc:d6:35:07:6d:23:43:d4:62:bb:ca:
f7:15:d8:fe:49:61:33:c0:40:a0:e3:93:7b:fe:71:
29:7b:dd:4d:22:1b:83:d4:47:ee:43:cf:fe:dd:8c:
f4:44:a2:75:23:e2:13:f9:42:1a:a0:95:87:4c:9f:
be:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:FF:D5:D2:11:16:B5:FB:E6:68:8C:D8:68:C2:F8:4F:2E:2C:0E:30
X509v3 Authority Key Identifier:
keyid:67:41:5C:BA:22:E3:31:AD:A9:1F:F4:DC:66:88:E5:FA:0A:F4:57:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z0FcuiLjMa2pH_TcZojl-gr0V2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ca0c3b-a969-4847-bd02-66643e0663df/1/ef_V0hEWtfvmaIzYaML4Ty4sDjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/ca0c3b-a969-4847-bd02-66643e0663df/1/Z0FcuiLjMa2pH_TcZojl-gr0V2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.174.0/24
194.62.188.0/24
194.62.233.0/24
194.69.206.0/24
IPv6:
2a0f:ad40::/32
Signature Algorithm: sha256WithRSAEncryption
54:67:e8:5a:82:12:12:93:1e:dd:19:2b:61:6a:a3:12:cf:56:
6c:d1:86:34:33:9b:c7:89:37:b1:ed:8a:52:e7:65:17:3b:02:
07:56:ad:08:c4:c4:5f:2f:c8:10:15:a6:52:1b:15:14:9a:67:
f3:22:00:a2:63:99:b3:96:f8:9d:7f:5f:aa:00:02:c7:ed:05:
a6:c5:88:4e:33:60:54:ad:0d:ae:3a:6b:f2:4f:1a:d7:b8:36:
1f:6e:19:9c:aa:33:70:9e:e6:a5:8a:25:93:20:dc:a5:7a:f2:
7f:99:b3:34:3f:b8:e4:07:4f:24:b2:9d:45:c2:88:33:c0:18:
82:bc:b6:d0:1b:ab:45:f3:87:b5:3b:1f:31:fa:a6:2b:c5:20:
2b:4d:97:1e:51:9c:3a:e8:83:7e:d5:d8:37:bc:fe:9a:3d:c3:
80:63:50:e3:50:1c:f7:cd:dc:60:ea:56:2f:33:82:59:44:94:
85:f1:2b:3e:ca:c8:1b:4b:26:c3:6b:bb:99:66:e1:57:14:61:
51:45:3e:c3:9e:b4:dd:54:62:e1:ba:c8:21:c8:df:11:0c:7c:
ab:b9:fe:47:07:d3:af:e3:b0:32:59:9d:03:78:60:ae:ac:43:
34:d5:63:90:ca:bc:54:cb:c6:ef:1a:5b:0f:e7:a7:fe:4b:f1:
c7:9f:75:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:08 2024 by rpki-client on console-fra.rpki-client.org