Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/rrFmj5ft5icaqyrodjMlu6vNoH8.roa
File: rrFmj5ft5icaqyrodjMlu6vNoH8.roa (raw, json)
Hash identifier: 4VhlfKTO0LpcKRRloKezT5VoCc6Yx6i2UjRYDLSQxHc=
Subject key identifier: AE:B1:66:8F:97:ED:E6:27:1A:AB:2A:E8:76:33:25:BB:AB:CD:A0:7F
Certificate issuer: /CN=583d76051017d0afa915fcfb790a00f4667b0a88
Certificate serial: 39452790
Authority key identifier: 58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/rrFmj5ft5icaqyrodjMlu6vNoH8.roa
Signing time: Sat 01 Jan 2022 08:05:33 +0000
ROA not before: Sat 01 Jan 2022 08:05:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48555
IP address blocks: 194.225.240.0/21 maxlen: 24
194.225.248.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 960833424 (0x39452790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=583d76051017d0afa915fcfb790a00f4667b0a88
Validity
Not Before: Jan 1 08:05:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aeb1668f97ede6271aab2ae8763325bbabcda07f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:34:5e:db:f1:31:b4:ae:1b:79:9d:7b:f6:6d:
5e:24:29:c2:2d:c1:2d:f1:3e:e2:ed:2f:b7:ed:88:
84:57:e5:24:44:50:8e:91:a4:d1:5e:fb:ff:5b:5b:
66:a0:87:b0:ae:14:72:35:14:2a:6d:20:0f:09:87:
ab:d1:c8:4d:4b:25:2f:1c:04:34:51:67:db:e0:2f:
b9:c3:c7:84:92:1b:00:8b:fa:96:a5:86:32:aa:99:
52:9f:fb:9d:a5:ad:ea:ef:e4:c9:24:c3:be:46:26:
a2:c5:70:d0:07:20:44:81:1c:d3:7b:10:37:a5:6b:
26:1c:9b:b2:43:0c:f6:d4:9e:e2:d5:d2:66:2c:ca:
62:70:a2:2d:32:be:a8:44:a1:84:86:bb:05:8f:00:
55:d4:a6:43:58:e0:94:41:bf:e7:c3:8b:91:b4:f4:
c6:c0:6d:eb:1f:b8:b0:d5:0f:37:80:c3:0c:09:8c:
e9:6e:40:94:45:4f:62:43:12:b4:91:72:18:2c:69:
0a:74:50:4a:67:02:50:b7:74:b9:15:9e:7f:11:f9:
19:93:0b:45:67:4a:50:19:2c:3e:42:40:4d:cb:79:
65:e4:72:40:88:b4:4b:54:35:42:b9:44:47:c3:1a:
07:6b:30:dc:6b:74:35:f6:02:f9:0f:e7:34:c5:2d:
c6:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B1:66:8F:97:ED:E6:27:1A:AB:2A:E8:76:33:25:BB:AB:CD:A0:7F
X509v3 Authority Key Identifier:
keyid:58:3D:76:05:10:17:D0:AF:A9:15:FC:FB:79:0A:00:F4:66:7B:0A:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WD12BRAX0K-pFfz7eQoA9GZ7Cog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/rrFmj5ft5icaqyrodjMlu6vNoH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/4f1b27-326a-4679-a64b-da6153885f3b/1/WD12BRAX0K-pFfz7eQoA9GZ7Cog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.225.240.0-194.225.251.255
Signature Algorithm: sha256WithRSAEncryption
0b:98:b6:b0:4e:94:07:c1:45:66:1d:f7:83:78:88:e4:55:f5:
8a:ec:85:15:e8:0f:6a:ef:39:87:9d:fb:a5:73:02:be:d9:96:
e2:62:00:03:c6:8c:0b:48:6d:e6:be:68:ce:c9:4a:8e:56:89:
14:9d:c2:25:e9:b3:ec:52:77:da:2f:19:3d:4a:9b:b6:33:79:
10:e6:2a:7d:62:7c:68:6b:4a:29:82:07:ef:ef:ea:8b:1f:1a:
22:d6:b8:36:8c:7f:ae:d0:9f:9c:6c:fa:a2:07:fd:dd:6b:cb:
17:8e:e1:f5:e4:67:6d:41:8f:32:2a:33:6e:c3:80:d1:cf:4f:
4b:59:d5:51:c9:2f:43:26:cd:40:2c:f9:44:a3:7c:15:59:9b:
99:66:2d:31:c2:21:9a:42:a8:13:f4:4c:74:27:92:a2:b1:4e:
9c:eb:82:30:19:c9:02:a5:e0:d1:93:31:59:61:a3:79:46:a5:
84:ce:7f:ca:8d:98:e2:17:25:f9:b5:cd:d8:8b:e9:a2:9a:c2:
55:dc:bf:a9:b2:bb:70:4a:7d:5d:02:32:9e:53:a8:43:bb:57:
fc:be:2f:8c:85:cf:9c:d5:c9:1e:b6:3c:07:b9:65:0c:ef:6b:
21:b1:40:55:e5:ab:8e:ad:65:72:e6:2c:f5:9b:07:d6:a5:b0:
bf:a1:ef:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:11 2024 by rpki-client on console-ams.rpki-client.org