Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/2sUF5we_CtWFjalTwTh0nlqfcUY.roa
File: 2sUF5we_CtWFjalTwTh0nlqfcUY.roa (raw, json)
Hash identifier: NrmG/O45v2eNxrVTc5bIHK83Z6wjsWaETJnmpVpE1es=
Subject key identifier: DA:C5:05:E7:07:BF:0A:D5:85:8D:A9:53:C1:38:74:9E:5A:9F:71:46
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 0A41A3F8
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/2sUF5we_CtWFjalTwTh0nlqfcUY.roa
Signing time: Sat 01 Jan 2022 13:59:01 +0000
ROA not before: Sat 01 Jan 2022 13:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24953
IP address blocks: 194.34.224.0/24 maxlen: 24
194.34.227.0/24 maxlen: 24
2a0d:f9c3::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172073976 (0xa41a3f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Jan 1 13:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dac505e707bf0ad5858da953c138749e5a9f7146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:98:2f:74:38:78:c3:9b:e1:bf:e3:7f:e7:ef:
cb:90:b0:b3:f8:1b:db:5f:fd:d0:49:15:d6:7d:4a:
52:36:42:e9:1c:a7:91:17:0d:80:6c:71:29:9a:8e:
eb:7d:95:d1:29:3e:4c:47:92:b5:ff:d2:25:17:88:
73:4a:d9:7f:a0:67:f4:a4:a3:5f:fb:5e:56:cf:40:
ef:27:10:a6:7e:e5:65:2f:03:6e:5f:56:b7:b1:55:
88:af:c4:6f:f2:f9:49:40:ec:e0:a1:78:f0:eb:a9:
4c:ae:eb:aa:5c:53:f3:5e:c0:f6:5d:7d:5c:a5:d4:
aa:07:9a:b4:38:f5:20:67:67:c6:a3:6f:81:87:0e:
5d:30:68:16:ab:81:94:46:c8:bc:59:99:bb:5e:52:
94:a2:cb:c4:30:ed:ef:41:14:fd:7e:25:7f:04:c4:
b9:d9:69:c0:ac:36:11:aa:54:17:84:96:8a:b3:73:
75:ce:37:03:98:5b:be:14:b5:1e:a9:71:1a:32:30:
6c:eb:82:31:95:b2:1b:23:69:26:ca:ef:26:62:5b:
55:f6:9b:02:49:ee:07:2e:4a:ac:22:80:f7:b7:3a:
d6:86:76:96:f7:bf:fe:fa:72:8e:be:e2:c3:bd:3d:
fa:e3:7a:f2:8f:89:6a:43:94:0b:c5:8d:41:1c:fa:
48:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C5:05:E7:07:BF:0A:D5:85:8D:A9:53:C1:38:74:9E:5A:9F:71:46
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/2sUF5we_CtWFjalTwTh0nlqfcUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.224.0/24
194.34.227.0/24
IPv6:
2a0d:f9c3::/32
Signature Algorithm: sha256WithRSAEncryption
11:d4:de:55:e4:f6:18:f7:d3:72:74:12:c6:e4:4d:77:b1:d3:
0a:8d:b8:c2:f7:de:2c:b2:22:31:15:60:2e:f0:b7:9a:15:c3:
7b:f3:39:b7:ed:5b:ca:80:40:8b:7c:75:6c:29:d5:52:de:65:
7e:50:a3:f7:fe:80:e3:ec:4f:a5:3b:5e:bd:80:b9:1c:0d:7e:
a8:7d:5e:1b:aa:a7:51:0d:24:83:7a:e2:95:8c:37:2c:2f:f0:
99:53:57:54:a8:44:d6:ae:8f:3d:a1:1c:22:31:ce:f0:c3:4f:
5b:8c:7a:03:84:cc:1e:7c:4e:fa:7a:41:e6:9d:68:9a:12:12:
c5:8c:23:bf:24:59:49:f6:d6:9a:61:b3:52:40:93:6f:29:42:
dc:8a:2f:48:2c:f1:ca:dd:f9:ad:ff:30:c3:19:02:0f:35:1b:
11:cd:41:e1:1d:32:12:25:8c:f9:a4:6f:08:7e:32:d3:b0:f1:
35:49:a3:82:da:05:c1:a6:9d:15:e9:22:7c:d5:44:4e:14:0c:
8a:51:27:a6:e9:05:64:ae:97:e5:0d:8b:74:f4:2f:14:af:db:
a6:12:f2:2f:be:cb:8b:35:0f:fe:96:e3:30:d9:96:25:55:ae:
05:44:7d:89:f2:23:3f:35:73:b9:dd:d4:87:9c:22:b2:47:9e:
7f:63:aa:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:47 2023 by rpki-client on console-fra.rpki-client.org