Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/in4Zyr26uJO3AWnM9J3_nyvfrMU.roa
File: in4Zyr26uJO3AWnM9J3_nyvfrMU.roa (raw, json)
Hash identifier: 6060kkVLm4Xo6uiNQ4unWibMTF2UcfKfAGSZWiVGGCI=
Subject key identifier: 8A:7E:19:CA:BD:BA:B8:93:B7:01:69:CC:F4:9D:FF:9F:2B:DF:AC:C5
Certificate issuer: /CN=d833bfa014b9192f2700acaf6f279dbef8a0aff2
Certificate serial: 064AF5D5
Authority key identifier: D8:33:BF:A0:14:B9:19:2F:27:00:AC:AF:6F:27:9D:BE:F8:A0:AF:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DO_oBS5GS8nAKyvbyedvvigr_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/in4Zyr26uJO3AWnM9J3_nyvfrMU.roa
Signing time: Sat 01 Jan 2022 08:02:55 +0000
ROA not before: Sat 01 Jan 2022 08:02:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 194.153.168.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105575893 (0x64af5d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d833bfa014b9192f2700acaf6f279dbef8a0aff2
Validity
Not Before: Jan 1 08:02:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8a7e19cabdbab893b70169ccf49dff9f2bdfacc5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:95:0a:24:08:b4:2f:9f:ff:17:e3:c8:6c:42:
8a:d5:d9:a4:28:52:12:13:65:22:42:7f:fa:e8:09:
00:8f:34:a6:09:f9:23:29:c0:49:85:c7:76:1a:3a:
79:f6:52:bf:bb:f0:05:9b:e4:11:2d:3b:44:f0:e0:
17:84:a9:e5:9e:4e:29:25:0f:80:1d:88:ea:dc:df:
e2:d8:15:d3:5b:7c:14:06:42:f3:9c:23:a2:cc:51:
31:85:46:c4:03:4e:9b:b5:47:eb:94:24:13:5a:4c:
09:be:e2:cb:fb:0e:6f:2c:e1:37:a6:bf:80:cd:69:
fe:3e:a7:7c:90:e8:23:2a:4b:59:07:3a:de:75:f3:
bb:b9:e7:c7:49:37:57:bf:96:90:19:77:d5:0c:12:
ae:71:ed:d8:ac:d6:4a:c3:16:9b:fd:62:0a:8e:e9:
28:c9:30:93:4c:5f:0d:6c:0c:22:57:77:92:46:9b:
75:c6:b5:b4:8c:e3:f2:91:fb:63:ad:5f:d3:69:3e:
80:12:a6:8b:25:f1:44:e5:96:c3:be:90:e7:16:c9:
dc:a2:24:6b:e4:85:df:b8:b2:50:5a:ff:42:bb:c2:
63:ec:95:1d:48:64:2b:22:32:60:13:69:b2:48:b9:
3f:84:11:ae:ec:ad:88:bd:3a:92:16:b0:d0:e0:72:
17:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:7E:19:CA:BD:BA:B8:93:B7:01:69:CC:F4:9D:FF:9F:2B:DF:AC:C5
X509v3 Authority Key Identifier:
keyid:D8:33:BF:A0:14:B9:19:2F:27:00:AC:AF:6F:27:9D:BE:F8:A0:AF:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DO_oBS5GS8nAKyvbyedvvigr_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/in4Zyr26uJO3AWnM9J3_nyvfrMU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/411696-93be-46ba-8e91-5c017bd43663/1/2DO_oBS5GS8nAKyvbyedvvigr_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.168.0/23
Signature Algorithm: sha256WithRSAEncryption
aa:59:9a:18:db:42:27:8d:86:ba:47:76:29:e3:47:fc:cf:d7:
9a:c3:f1:b3:d3:28:1d:c7:1b:c5:2c:4f:c4:1f:55:b3:27:52:
d2:5f:bd:80:06:16:44:bf:42:29:f2:de:b0:eb:2f:6f:0f:20:
4a:e1:54:f7:0c:21:e0:36:1d:7d:ec:61:36:c3:40:c2:89:8b:
d8:02:30:a5:c6:fd:77:fc:79:fc:d0:2b:c2:37:0a:9f:67:4c:
40:2a:8e:bc:91:f0:2b:5d:37:7d:46:c7:29:b0:c0:86:4a:d0:
70:b6:ae:1a:c3:47:c3:ea:1f:8c:85:c6:68:dd:cf:a2:0e:02:
38:fc:a0:56:d1:b4:b5:aa:c8:8f:e0:20:ef:6a:32:eb:78:d1:
df:6e:ef:e8:90:dd:df:74:95:2d:f5:77:c5:25:6d:ad:ef:5d:
9b:b6:a2:bc:ce:dc:e7:18:12:37:c7:0a:e1:ff:f6:42:37:2f:
56:a2:8b:b3:51:30:8a:bd:09:e7:50:69:70:9c:c5:11:9d:ff:
55:ab:aa:11:a6:a8:35:a0:4f:1a:50:93:a2:85:d5:e6:ed:02:
04:26:a4:6b:5b:ab:1e:b5:ba:5f:5a:ad:b2:fd:aa:ca:e2:24:
d2:6e:a9:b5:c0:8a:fa:ff:8f:2b:71:6d:bd:6c:d9:62:b4:4d:
d7:06:93:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:58 2024 by rpki-client on console-ams.rpki-client.org