Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/vFz8T8OqATLzMZ6YHAaW3eNKjxw.roa
File: vFz8T8OqATLzMZ6YHAaW3eNKjxw.roa (raw, json)
Hash identifier: inJYe+rqRcgtjIwplzOxQcLB1W+kP8PyZrxPjhoHVUM=
Subject key identifier: BC:5C:FC:4F:C3:AA:01:32:F3:31:9E:98:1C:06:96:DD:E3:4A:8F:1C
Certificate issuer: /CN=f12b1b68ea1093bcee78d07192e6d8c3f70302cf
Certificate serial: 053499DA
Authority key identifier: F1:2B:1B:68:EA:10:93:BC:EE:78:D0:71:92:E6:D8:C3:F7:03:02:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8SsbaOoQk7zueNBxkubYw_cDAs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/vFz8T8OqATLzMZ6YHAaW3eNKjxw.roa
Signing time: Sat 01 Jan 2022 04:57:26 +0000
ROA not before: Sat 01 Jan 2022 04:57:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39666
IP address blocks: 194.50.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87333338 (0x53499da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f12b1b68ea1093bcee78d07192e6d8c3f70302cf
Validity
Not Before: Jan 1 04:57:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc5cfc4fc3aa0132f3319e981c0696dde34a8f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:1b:42:ff:4c:3d:ef:9c:c7:75:3e:bd:55:fb:
0b:b3:1b:26:ba:33:2e:76:2a:67:27:7d:51:31:24:
db:ce:53:13:3a:9a:25:58:90:8f:82:dd:14:1a:e3:
29:fc:9a:00:cd:c3:da:99:71:61:cc:90:bc:a2:ca:
d9:f9:66:9e:9d:de:e4:73:3c:9c:35:0b:83:cc:95:
18:db:8d:8f:ae:73:41:c2:ff:9a:6e:9c:3f:19:0b:
58:f8:3b:67:4f:00:45:66:a4:af:05:0f:54:cf:47:
51:d4:d7:59:45:63:59:41:14:59:2c:dc:73:99:d3:
32:6b:8a:e5:19:58:8b:2c:2d:e0:c6:61:07:ee:68:
31:df:b5:09:1b:31:48:d1:11:26:c1:21:71:2c:33:
25:e3:cc:17:b3:a4:f3:a0:13:d5:84:7b:5f:3b:30:
44:fc:db:50:99:b8:6f:58:ab:20:0d:79:e9:d4:b6:
af:2d:b1:93:31:fa:3e:ce:94:67:0e:80:71:ac:a1:
41:6a:73:6c:e4:c9:09:0c:0e:a2:4e:0b:b5:c4:52:
b2:39:64:79:45:b8:c5:33:72:fb:8b:9f:02:8c:15:
58:77:2b:e4:ca:db:66:aa:ab:fd:aa:ec:63:8d:b9:
bb:f5:e4:ef:7b:2e:bc:d1:af:42:a1:0d:41:62:41:
49:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:5C:FC:4F:C3:AA:01:32:F3:31:9E:98:1C:06:96:DD:E3:4A:8F:1C
X509v3 Authority Key Identifier:
keyid:F1:2B:1B:68:EA:10:93:BC:EE:78:D0:71:92:E6:D8:C3:F7:03:02:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8SsbaOoQk7zueNBxkubYw_cDAs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/vFz8T8OqATLzMZ6YHAaW3eNKjxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/24875c-f159-464f-a8a7-1119b7fedfec/1/8SsbaOoQk7zueNBxkubYw_cDAs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.114.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:ab:34:49:3a:ed:2e:44:e4:76:94:09:31:65:76:5a:16:83:
e0:66:aa:bf:a0:ce:2f:ad:3c:e6:fd:e7:25:4c:53:21:1b:c0:
59:0a:99:b5:f5:ff:81:5a:58:14:2b:ff:38:7c:ca:b4:6d:57:
33:c3:96:35:09:50:75:33:55:1b:c6:f5:40:39:42:f0:04:48:
c9:69:b0:4a:73:b9:7d:f2:90:c9:ee:a6:07:e6:53:b2:4b:76:
c9:6f:cf:6a:df:0a:32:93:0a:9c:a1:6a:2c:df:df:cd:27:20:
5b:76:33:2e:02:c7:28:2a:74:be:d5:34:03:86:ff:5e:5c:98:
b2:04:9c:dc:e5:99:e6:e2:67:19:81:d8:f4:5a:a4:85:f1:1a:
63:87:b1:45:0f:6e:03:48:e6:1a:96:1b:46:f6:4d:0e:fa:21:
ce:31:91:76:00:17:ea:9f:ca:ef:81:34:38:8c:bc:fe:8d:20:
9f:70:a0:9d:fc:66:de:3a:9e:47:37:e4:fd:58:40:8d:7c:30:
33:7f:fd:f3:43:5b:fd:d0:eb:39:2c:86:8a:62:e3:95:d1:c7:
9f:ea:6c:14:a0:ff:75:80:10:62:05:14:f5:68:fe:06:5e:ec:
df:4e:78:2c:79:43:81:18:b9:b6:fa:9e:21:1c:ec:c0:a4:31:
df:7a:98:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:12:17 2025 by rpki-client