Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/3SaeOJvxRQnAUEK-xSbEMaiveEs.roa
File: 3SaeOJvxRQnAUEK-xSbEMaiveEs.roa (raw, json)
Hash identifier: JmK8XuNcq41QUM6IsOg1GO0SprEqQIiJDnvfxxfa2dQ=
Subject key identifier: DD:26:9E:38:9B:F1:45:09:C0:50:42:BE:C5:26:C4:31:A8:AF:78:4B
Certificate issuer: /CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Certificate serial: 06D28C50
Authority key identifier: 13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/3SaeOJvxRQnAUEK-xSbEMaiveEs.roa
Signing time: Sat 01 Jan 2022 08:01:10 +0000
ROA not before: Sat 01 Jan 2022 08:01:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50321
IP address blocks: 194.150.220.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114461776 (0x6d28c50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Validity
Not Before: Jan 1 08:01:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd269e389bf14509c05042bec526c431a8af784b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c5:c2:82:67:40:f7:cc:e4:52:6a:23:71:4f:
4b:22:5c:f4:2d:c3:3b:a8:cb:38:fc:9f:fa:8c:ce:
7f:d8:6f:d4:8f:4c:96:a5:ac:2b:e1:fa:8e:8b:58:
ee:a0:9f:cb:8d:f0:d0:72:3f:e3:90:a0:db:38:91:
1b:20:30:36:40:00:bb:85:0c:4c:88:46:2c:f9:4d:
fb:40:dc:66:fe:c1:24:a9:c2:a5:5c:5f:0a:e7:f1:
c6:cc:23:f1:ee:d2:8d:45:4f:1f:ad:0e:1a:df:c3:
c6:a1:1f:07:96:cb:34:97:a7:fe:fa:10:e0:db:aa:
3a:ad:66:b9:40:8f:e1:1c:66:30:63:a7:cf:04:66:
39:2c:5a:24:85:cb:04:6c:06:67:44:1d:1b:72:01:
3c:9f:6b:3d:cc:72:bf:3e:1f:36:16:dd:24:d8:a4:
a0:c0:57:37:06:70:7c:5e:4c:c4:77:60:20:05:e4:
b3:54:66:4b:56:0b:2c:1c:b0:32:9a:98:eb:cf:a6:
bb:4c:7b:88:58:1d:68:50:a5:ba:3a:34:52:b2:58:
41:1b:8e:98:ea:a9:15:65:aa:e6:2c:42:ec:44:c3:
82:d4:f6:58:64:46:cf:21:b2:40:91:9e:1c:3f:98:
52:59:57:5b:4d:b0:96:f5:4c:b6:ef:d1:03:ef:55:
f5:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:26:9E:38:9B:F1:45:09:C0:50:42:BE:C5:26:C4:31:A8:AF:78:4B
X509v3 Authority Key Identifier:
keyid:13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/3SaeOJvxRQnAUEK-xSbEMaiveEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/E2a5YKbx8EQ58JGG-ez1ManOJkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.220.0/23
Signature Algorithm: sha256WithRSAEncryption
65:ff:53:e0:e4:d5:d8:b1:2d:98:6b:64:bf:18:71:5e:50:62:
70:21:51:2b:55:f0:71:88:35:74:32:cd:96:27:3e:4f:2f:3f:
86:a1:f6:b1:7f:35:84:db:3b:16:e8:22:04:29:c5:f9:70:5c:
02:c1:db:5b:03:22:08:38:eb:6c:d7:6b:8a:a9:d9:5f:b4:a4:
b8:ed:27:11:3f:2d:2b:24:a3:ad:fd:78:06:c4:c6:2a:97:aa:
19:6c:62:96:cb:91:5f:03:da:20:65:60:ca:19:d6:24:4f:0b:
77:0d:2f:2e:9b:9e:fa:ce:39:0f:3e:4a:07:bb:7b:74:bb:9e:
eb:47:ac:4b:08:5c:2e:d6:31:20:b6:08:5b:95:9f:ab:65:26:
9e:89:87:4d:a8:9e:05:63:e2:6c:08:34:7c:be:b8:b1:85:11:
e2:8a:a6:f6:41:53:a4:9d:2c:6b:4f:e9:2d:6a:37:25:f8:7b:
32:79:6f:80:66:7d:b8:1f:24:71:1d:0c:6e:e0:d3:72:ae:26:
9a:36:d0:af:59:35:67:be:16:08:d1:40:47:9c:bb:2a:7e:15:
a8:56:ee:6d:87:87:ac:bd:86:65:6d:53:3a:31:79:59:b7:71:
f7:89:ef:e0:5a:3d:3c:67:b0:c5:f2:3b:a8:8d:07:9a:d8:60:
2c:fb:8a:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:36 2024 by rpki-client on console-fra.rpki-client.org