Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/YURiXaqCk-fOsWCN_d1QrWSLG9g.roa
File: YURiXaqCk-fOsWCN_d1QrWSLG9g.roa (raw, json)
Hash identifier: f13WCha/W3sCbyMv6Y/AS1bPko/18kvEjngjTbrHLSk=
Subject key identifier: 61:44:62:5D:AA:82:93:E7:CE:B1:60:8D:FD:DD:50:AD:64:8B:1B:D8
Certificate issuer: /CN=746365355b665564a210c358c68a0117b7fbeb9a
Certificate serial: 08305AA2
Authority key identifier: 74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/YURiXaqCk-fOsWCN_d1QrWSLG9g.roa
Signing time: Sat 01 Jan 2022 07:56:09 +0000
ROA not before: Sat 01 Jan 2022 07:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42160
IP address blocks: 194.124.39.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137386658 (0x8305aa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=746365355b665564a210c358c68a0117b7fbeb9a
Validity
Not Before: Jan 1 07:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6144625daa8293e7ceb1608dfddd50ad648b1bd8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:22:53:7c:a4:b6:f3:0d:33:38:9e:1c:04:73:
54:28:eb:1d:3d:e6:7f:f3:c6:93:9d:9f:f9:9b:1f:
c3:ad:e4:ae:6d:41:72:62:09:5e:93:79:83:82:f5:
77:33:7a:7d:79:a0:f1:1a:a9:1a:74:6d:30:c0:0f:
88:33:4c:ac:00:b0:a5:f5:51:7b:5f:06:94:5b:8b:
99:09:9a:bb:22:0e:ae:c1:7a:ec:b3:e1:b1:22:16:
86:f0:26:d8:66:02:c6:b1:70:52:07:8e:34:ca:86:
0a:3c:2f:01:79:c6:0d:5d:16:df:b1:c6:ae:f5:da:
c0:53:14:26:07:2c:f0:86:ce:91:30:f0:da:fe:8d:
ef:ad:b9:e7:9e:8c:35:74:8f:cc:ef:0b:fb:ae:18:
83:ae:1b:78:09:49:24:4f:d7:95:7b:f9:e5:67:3f:
33:de:ed:af:39:f3:bf:e1:5c:b1:65:f0:0d:2b:6c:
f9:3e:1e:51:a0:60:d3:ab:dd:57:8a:82:87:f9:ea:
d8:c4:53:84:a4:0b:98:ef:6f:3d:21:fa:26:ab:91:
17:8f:c5:c9:d7:13:aa:ad:4f:14:63:0c:56:38:01:
ea:c5:4a:b2:5b:7f:66:c2:76:09:80:1c:5a:a5:04:
aa:68:1e:00:e5:96:c3:75:4d:47:28:0c:aa:94:b7:
63:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:44:62:5D:AA:82:93:E7:CE:B1:60:8D:FD:DD:50:AD:64:8B:1B:D8
X509v3 Authority Key Identifier:
keyid:74:63:65:35:5B:66:55:64:A2:10:C3:58:C6:8A:01:17:B7:FB:EB:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dGNlNVtmVWSiEMNYxooBF7f765o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/YURiXaqCk-fOsWCN_d1QrWSLG9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/aea36d-babf-4474-a78b-6a4ecaf8b3b1/1/dGNlNVtmVWSiEMNYxooBF7f765o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.39.0/24
Signature Algorithm: sha256WithRSAEncryption
82:ca:07:88:fa:d1:c4:48:27:59:76:73:0a:d9:10:82:79:5c:
5f:32:b0:a0:4d:57:b5:a6:cf:bc:bb:08:8a:76:7e:71:b0:4f:
22:ce:60:e7:18:80:3a:0e:01:4b:79:f9:c9:61:4e:9f:20:f6:
1b:57:12:d6:33:09:52:87:9d:9d:c1:73:58:c3:ca:66:97:96:
44:3f:51:5c:4a:77:b2:ca:20:5d:7d:5f:aa:b7:9c:5d:72:a8:
91:21:18:de:36:29:37:7e:ff:72:35:70:a4:87:77:7e:10:97:
59:ca:7c:8e:bf:a8:81:e5:04:fe:2e:94:4a:a0:c8:07:90:fc:
af:6a:0c:16:d8:c0:de:4f:94:60:e4:d9:a6:fb:7b:60:25:97:
a1:4f:b9:8e:c2:be:5e:6b:1e:e4:77:f3:d9:a3:ef:f0:be:45:
0b:62:61:f3:08:dc:02:29:50:10:54:78:16:e5:b7:fd:0a:f6:
88:86:b8:32:be:26:73:ed:f6:3f:df:ba:1b:c7:e0:d8:48:0d:
63:ed:89:1b:3f:3c:7a:4b:c9:19:0c:86:25:6d:99:6f:2a:6f:
33:c1:d2:80:7b:60:83:88:77:33:84:1e:33:e2:6f:e3:94:d4:
08:86:d9:ac:7f:17:98:c2:68:a3:af:67:80:23:00:a1:a2:64:
c0:09:a5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:35 2024 by rpki-client on console-fra.rpki-client.org