Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/CUFdJ_pSLf7UZouSARQzlYnsSNU.roa
File: CUFdJ_pSLf7UZouSARQzlYnsSNU.roa (raw, json)
Hash identifier: hRMGxdvnlU2yDmMNiV5bMSUD9nUa5UwmnACHE3WJ4nA=
Subject key identifier: 09:41:5D:27:FA:52:2D:FE:D4:66:8B:92:01:14:33:95:89:EC:48:D5
Certificate issuer: /CN=330e3fdb11d826bc01663290bd7ca406b8d76507
Certificate serial: F490
Authority key identifier: 33:0E:3F:DB:11:D8:26:BC:01:66:32:90:BD:7C:A4:06:B8:D7:65:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mw4_2xHYJrwBZjKQvXykBrjXZQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/CUFdJ_pSLf7UZouSARQzlYnsSNU.roa
Signing time: Wed 27 Apr 2022 12:47:03 +0000
ROA not before: Wed 27 Apr 2022 12:47:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39203
IP address blocks: 194.105.140.0/24 maxlen: 24
194.105.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62608 (0xf490)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=330e3fdb11d826bc01663290bd7ca406b8d76507
Validity
Not Before: Apr 27 12:47:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09415d27fa522dfed4668b920114339589ec48d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0a:1e:c1:a8:d7:49:48:d4:9d:7c:83:e0:e0:
60:84:23:af:ce:9e:51:7a:4b:cf:aa:ab:48:36:df:
a5:24:06:d4:db:10:8c:fb:95:88:6c:27:6b:d3:d9:
38:d1:e8:52:5f:41:74:f9:d0:24:bb:d2:d3:45:da:
17:1e:de:b6:f9:25:1f:03:a4:6d:cc:ed:2c:ad:0b:
41:4b:e3:8d:46:b5:20:81:b5:d7:c9:c8:8b:df:69:
3e:aa:b9:cd:0f:89:7c:31:21:cc:fc:4f:6c:08:a8:
30:c6:4f:81:08:fc:d6:3f:21:d7:bf:0b:6c:d9:c7:
8d:88:8b:cc:9f:a8:28:bc:08:2e:7c:72:44:1a:f6:
cb:61:6d:b7:b3:47:99:ec:77:3c:05:6d:f7:f0:32:
97:8d:44:0e:09:26:1f:0d:46:ec:57:6a:2f:91:2c:
08:36:d8:b6:44:86:b1:21:0d:73:b5:4a:39:73:40:
0b:11:00:46:18:ef:83:43:0b:d1:e1:16:4f:22:d3:
b7:87:35:78:d9:a4:c9:b8:84:55:1a:0b:a8:25:de:
49:f5:0e:87:09:6d:81:03:e8:fb:e5:5d:a5:2b:cc:
33:1a:e3:6f:23:37:f1:98:60:db:27:02:00:6a:0d:
54:00:01:ad:85:be:23:23:0e:39:2e:20:df:95:c5:
11:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:41:5D:27:FA:52:2D:FE:D4:66:8B:92:01:14:33:95:89:EC:48:D5
X509v3 Authority Key Identifier:
keyid:33:0E:3F:DB:11:D8:26:BC:01:66:32:90:BD:7C:A4:06:B8:D7:65:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mw4_2xHYJrwBZjKQvXykBrjXZQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/CUFdJ_pSLf7UZouSARQzlYnsSNU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/34c618-4d43-4736-859f-9d2a42affb1b/1/Mw4_2xHYJrwBZjKQvXykBrjXZQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.140.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:a5:7e:87:03:98:fe:07:d3:01:9d:10:b3:b0:bf:2e:02:36:
fe:0c:9b:e4:b3:c6:6e:a4:08:c4:56:32:68:4a:06:22:95:68:
70:a6:80:a7:f7:84:12:f2:60:79:37:21:53:3c:60:88:1a:84:
7d:06:56:ae:dc:48:7c:60:ae:cb:09:dd:e0:88:26:60:46:2a:
fe:5e:f0:ba:75:37:58:6e:de:63:88:95:62:c0:d3:93:f9:41:
08:08:86:5a:ee:97:7e:b6:f6:42:50:e0:d8:b5:06:89:fe:eb:
4a:da:a1:32:2f:b3:56:79:28:e6:ed:d7:dc:87:b9:9f:b5:48:
21:f3:20:70:c5:bf:59:80:c6:61:e3:9c:b9:59:38:ac:7a:d2:
17:79:dc:e9:10:88:0f:09:3f:be:c5:35:bd:10:da:d3:57:d4:
82:7a:d0:47:90:f5:e7:85:be:45:df:93:21:4f:3a:27:32:9f:
ca:e1:9d:c5:d9:6c:35:9d:49:ec:e7:f4:ab:b2:65:7f:b9:3c:
23:8e:99:f8:c3:1f:21:26:a1:a1:9e:58:98:60:ca:bc:18:21:
9c:a4:7b:b8:7c:41:0c:38:8c:c4:2c:22:47:c9:eb:25:d7:23:
b4:19:12:de:3a:7a:1b:89:6f:09:0e:91:56:73:4b:83:a3:7b:
99:92:b4:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:35 2024 by rpki-client on console-ams.rpki-client.org