Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/e09b24-8aa8-40e6-842c-2f9ec538cc1d/1/2ynxn2h-ftGvJgIdo95wtOooEjw.roa
File: 2ynxn2h-ftGvJgIdo95wtOooEjw.roa (raw, json)
Hash identifier: U2t0pifiX0i+mQzzHdeH3ZMgpVf3u61GRlk0vPhb0/c=
Subject key identifier: DB:29:F1:9F:68:7E:7E:D1:AF:26:02:1D:A3:DE:70:B4:EA:28:12:3C
Certificate issuer: /CN=2829eb664506b86bfa1f702f6b1ffb484cc2cb12
Certificate serial: 9935A7
Authority key identifier: 28:29:EB:66:45:06:B8:6B:FA:1F:70:2F:6B:1F:FB:48:4C:C2:CB:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCnrZkUGuGv6H3Avax_7SEzCyxI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/e09b24-8aa8-40e6-842c-2f9ec538cc1d/1/2ynxn2h-ftGvJgIdo95wtOooEjw.roa
Signing time: Sat 01 Jan 2022 01:55:57 +0000
ROA not before: Sat 01 Jan 2022 01:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31500
IP address blocks: 194.110.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10040743 (0x9935a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2829eb664506b86bfa1f702f6b1ffb484cc2cb12
Validity
Not Before: Jan 1 01:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db29f19f687e7ed1af26021da3de70b4ea28123c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:86:a4:df:0a:31:94:13:2b:d3:0c:2d:36:96:
aa:66:9c:c5:2d:35:0d:c1:5e:63:44:b3:93:ff:dc:
6f:5f:57:ff:c6:a7:ea:71:70:45:f5:84:3b:ed:0c:
30:f0:a6:c3:12:42:a8:c9:6c:99:7b:2b:1c:9f:8b:
3f:96:12:30:09:bf:43:c9:e1:84:b5:f8:ea:78:8c:
aa:c1:94:cc:2a:bd:0f:d3:94:7b:cf:a3:49:18:84:
0d:93:eb:e7:f7:e6:0f:4f:be:3f:61:54:7b:e7:66:
d4:4c:b2:f9:3a:41:fd:34:7e:51:d5:8b:d8:fc:79:
29:7b:fa:f9:74:f7:c5:1a:6c:9f:87:8f:a5:72:9f:
62:18:8f:17:aa:8a:73:f7:e1:a7:81:f3:fa:de:50:
2f:21:a9:8f:94:73:b3:8d:e6:6a:10:6f:c0:28:00:
2e:f1:ab:17:7d:8a:27:48:b2:91:78:58:f2:4e:e5:
60:9a:0f:14:c1:27:27:72:e3:e2:7f:c2:7d:e3:ba:
f5:44:98:23:9d:31:e5:f4:96:98:29:ed:f3:3f:87:
c1:92:59:48:00:e3:7f:a6:44:f9:40:66:d7:89:15:
93:2c:d3:68:b1:44:00:09:44:e4:1f:c5:0a:fc:40:
10:4e:5c:f2:ff:4d:30:e5:e0:3e:5b:d1:18:40:a3:
c9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:29:F1:9F:68:7E:7E:D1:AF:26:02:1D:A3:DE:70:B4:EA:28:12:3C
X509v3 Authority Key Identifier:
keyid:28:29:EB:66:45:06:B8:6B:FA:1F:70:2F:6B:1F:FB:48:4C:C2:CB:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCnrZkUGuGv6H3Avax_7SEzCyxI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/e09b24-8aa8-40e6-842c-2f9ec538cc1d/1/2ynxn2h-ftGvJgIdo95wtOooEjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/e09b24-8aa8-40e6-842c-2f9ec538cc1d/1/KCnrZkUGuGv6H3Avax_7SEzCyxI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.66.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:e6:7d:68:a2:49:a6:3e:11:49:2f:c5:28:56:c1:de:0c:2b:
e7:8b:2f:9b:96:95:c4:ef:4b:06:49:72:2f:7e:7d:da:a6:d0:
81:68:83:91:51:a4:7f:47:59:51:75:50:16:87:90:7b:19:f8:
79:ea:84:89:2e:51:a9:23:df:61:73:ce:5c:a5:3e:fa:23:02:
8e:f5:6e:d1:7e:6f:c8:dd:9d:6f:d5:86:2a:4d:b4:85:e4:9e:
f3:a3:4b:bb:ae:88:52:e5:75:41:2e:c0:46:ab:9a:72:14:c4:
6b:77:e0:e5:0a:ef:b5:e0:37:8e:70:e8:fd:df:91:59:88:48:
4f:41:57:14:7d:fb:5f:24:e5:6c:20:99:c5:0b:fa:0e:38:5f:
48:fb:9c:25:95:72:f9:a7:36:72:27:40:a4:3a:e1:a8:4c:5c:
97:64:70:5e:69:91:13:4b:69:3d:71:dc:2a:39:a1:c6:cc:e6:
1a:1f:1c:6c:25:79:9c:34:e5:92:d7:8b:2b:39:40:d3:a9:1b:
d9:33:b0:97:71:ca:1e:ed:e2:52:d3:91:c2:52:7d:b1:a9:5f:
75:47:36:1f:bb:a1:0d:dd:9b:97:54:f3:5b:7b:68:3e:bd:ed:
57:55:3f:83:c6:52:ba:b3:cb:84:7f:76:1d:f8:03:01:a3:2b:
b2:56:53:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:15 2024 by rpki-client on console-ams.rpki-client.org