Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/u_21fIRxCydGsXGXVLq7QO3j7Co.roa
File: u_21fIRxCydGsXGXVLq7QO3j7Co.roa (raw, json)
Hash identifier: S3CB9bY7QUBb6JPwAVLuvLqXzAeHkpnd7VTNCpbj6ks=
Subject key identifier: BB:FD:B5:7C:84:71:0B:27:46:B1:71:97:54:BA:BB:40:ED:E3:EC:2A
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 447DC387
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/u_21fIRxCydGsXGXVLq7QO3j7Co.roa
Signing time: Sat 01 Jan 2022 03:58:29 +0000
ROA not before: Sat 01 Jan 2022 03:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27822
IP address blocks: 194.2.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1149092743 (0x447dc387)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbfdb57c84710b2746b1719754babb40ede3ec2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:64:48:82:ea:21:a6:64:d9:64:d0:39:21:66:
2f:62:21:46:a9:61:e6:95:26:80:c7:ff:d8:c1:48:
a9:9c:51:35:24:e3:41:27:1a:0b:41:bf:1a:95:c1:
35:ce:f7:90:87:70:cb:cd:cf:a1:a0:79:70:9e:e0:
b5:56:45:1b:6f:b7:46:5d:d6:6a:99:8b:e4:02:b6:
61:7a:0d:1f:da:f6:c0:2a:5a:de:26:69:33:ec:28:
0c:60:c0:ca:9e:58:9c:52:bc:96:a8:e9:4f:12:64:
1b:f4:b7:bb:b5:70:53:b3:14:e9:2f:22:50:f5:27:
85:3c:1c:3c:36:5c:bf:77:04:e7:2f:ab:5d:f6:d2:
d4:c6:01:69:af:9d:38:8d:07:4f:a0:24:9e:e2:51:
90:8d:b3:a7:60:a0:76:91:e8:72:00:6c:ec:c8:23:
02:82:84:96:f5:a2:41:e8:1f:64:a3:0d:db:ea:0d:
6c:c9:63:d9:48:9e:b1:06:b2:52:ec:43:9c:10:fb:
da:38:43:37:ff:e9:73:1d:fb:90:39:c0:8a:b3:c3:
8c:bc:5e:bf:57:2b:8b:46:f4:96:07:7f:78:e1:99:
db:d9:49:11:6a:15:03:7e:8d:27:e9:95:63:33:8b:
e7:bf:14:11:d2:8e:0c:7a:0a:da:8f:63:f4:33:da:
4d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:FD:B5:7C:84:71:0B:27:46:B1:71:97:54:BA:BB:40:ED:E3:EC:2A
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/u_21fIRxCydGsXGXVLq7QO3j7Co.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.2.69.0/24
Signature Algorithm: sha256WithRSAEncryption
88:e6:5f:27:28:1e:76:37:1d:0f:9c:1a:c0:dc:4d:6e:16:0b:
9c:37:82:43:20:5a:2e:dd:99:85:8c:76:bb:52:de:a2:3d:f8:
b7:16:a0:ea:45:19:00:4d:42:f5:47:de:e8:84:8b:df:5f:d0:
80:50:7c:bb:08:bf:59:ef:19:82:9d:50:0b:c7:e3:d8:b9:d5:
6d:a1:50:b2:fb:65:74:e1:35:ff:3a:a9:e8:45:66:93:69:2e:
82:45:e5:ce:b6:0d:05:27:cf:1d:2a:a0:f9:7c:c3:4e:45:b8:
af:6b:f4:0c:55:20:50:50:0b:77:f0:27:44:c3:11:29:f3:5d:
ad:48:b3:37:42:e1:3a:aa:9e:a9:74:eb:93:3c:70:3d:a2:75:
c0:b3:7b:06:76:f8:fe:6d:ee:56:50:39:4f:73:5a:cc:36:c1:
0d:6d:5c:0f:02:7e:22:d2:e6:89:38:3d:06:c2:6f:79:62:22:
ac:76:ed:f0:55:e0:bd:3e:3a:a2:e3:12:ed:5f:c3:f1:75:f5:
a4:a7:33:c7:e3:3b:d8:4e:79:2b:ec:0b:ac:7b:f7:55:64:80:
45:cb:40:75:11:4a:40:22:b1:07:ba:f0:79:7e:36:fd:3f:02:
2f:9f:7d:69:75:5e:18:95:65:16:07:57:d1:d8:fb:7c:7d:cf:
50:63:91:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:20 2024 by rpki-client on console-ams.rpki-client.org