Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/2146ca-e026-402c-a56e-86af52fb4eeb/1/d0A2uoUkeHwaOvFnsEg7Nxpa1E4.roa
File: d0A2uoUkeHwaOvFnsEg7Nxpa1E4.roa (raw, json)
Hash identifier: hx9yiOcyx7Xz/L30E2sM0eEtkfIPmqXd8SUFuxth/pM=
Subject key identifier: 77:40:36:BA:85:24:78:7C:1A:3A:F1:67:B0:48:3B:37:1A:5A:D4:4E
Certificate issuer: /CN=a2510279be138c42cdef62718f0f6afacae1819e
Certificate serial: 0154D0F8
Authority key identifier: A2:51:02:79:BE:13:8C:42:CD:EF:62:71:8F:0F:6A:FA:CA:E1:81:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olECeb4TjELN72Jxjw9q-srhgZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/2146ca-e026-402c-a56e-86af52fb4eeb/1/d0A2uoUkeHwaOvFnsEg7Nxpa1E4.roa
Signing time: Sat 01 Jan 2022 06:00:57 +0000
ROA not before: Sat 01 Jan 2022 06:00:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42700
IP address blocks: 194.110.199.0/24 maxlen: 24
2001:678:1ec::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22335736 (0x154d0f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2510279be138c42cdef62718f0f6afacae1819e
Validity
Not Before: Jan 1 06:00:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=774036ba8524787c1a3af167b0483b371a5ad44e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:6f:83:dd:aa:8a:c0:b2:a9:1d:3b:fa:f3:6c:
6c:a1:a2:ee:70:9e:b2:8a:8c:f7:4e:a6:51:6e:db:
f0:a7:ce:04:8a:c3:0f:70:d2:ce:6d:32:72:99:07:
36:0b:51:9a:e9:46:ec:8c:f0:f1:c4:a2:48:d0:a2:
5e:6f:a7:7a:41:fa:69:71:82:3b:52:f2:c7:6a:86:
bc:94:e5:19:b0:a8:9c:0a:f7:ea:56:15:96:50:c1:
fe:c7:dc:14:ad:f9:34:f1:b1:f5:7b:9e:18:61:d2:
67:1a:8b:7f:79:2a:f5:f1:b5:73:ef:00:be:25:55:
a3:7d:e4:ed:17:eb:3a:25:be:9a:89:bb:37:9f:6b:
5c:c7:15:97:50:74:53:25:26:a5:ea:b2:65:1a:ea:
46:74:0b:d5:91:28:ad:b6:9d:4b:59:63:ed:70:61:
c9:cc:0a:43:29:37:51:0c:c2:52:4d:4a:d5:51:bc:
4d:5c:ca:8b:0b:16:63:ea:b7:e7:25:f5:88:68:32:
33:ef:5f:05:51:ee:df:b1:c8:4e:e4:96:10:11:8f:
af:a1:95:30:c7:78:f3:fb:e3:a2:0f:33:59:db:6f:
a2:4e:8e:53:d6:60:1d:63:3b:15:80:01:d1:a8:16:
5c:2a:01:9d:e5:7f:36:d3:c1:7b:8f:a1:d9:14:54:
f9:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:40:36:BA:85:24:78:7C:1A:3A:F1:67:B0:48:3B:37:1A:5A:D4:4E
X509v3 Authority Key Identifier:
keyid:A2:51:02:79:BE:13:8C:42:CD:EF:62:71:8F:0F:6A:FA:CA:E1:81:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olECeb4TjELN72Jxjw9q-srhgZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/2146ca-e026-402c-a56e-86af52fb4eeb/1/d0A2uoUkeHwaOvFnsEg7Nxpa1E4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/2146ca-e026-402c-a56e-86af52fb4eeb/1/olECeb4TjELN72Jxjw9q-srhgZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.199.0/24
IPv6:
2001:678:1ec::/48
Signature Algorithm: sha256WithRSAEncryption
91:a6:dd:5d:82:b5:d6:f2:8e:ee:1e:58:6a:56:7d:45:53:56:
33:3f:77:6a:c7:44:8c:f4:bb:0a:f4:5c:dc:90:2b:ea:c1:67:
1d:7b:14:82:e5:99:0f:2a:83:06:f2:0c:39:a9:3a:7c:11:83:
21:c7:4c:3c:96:85:78:7c:0e:6d:25:bf:93:7a:66:4c:62:33:
3c:90:5b:a9:2e:64:ab:a2:b7:96:2c:71:73:1e:a8:55:18:3b:
95:dc:de:01:d1:a0:6d:e3:c2:cb:1f:c5:3e:2f:b1:57:16:66:
4b:28:6c:7f:16:ea:50:4b:96:51:cd:71:13:4e:34:88:f0:08:
4d:9e:93:8f:fd:cd:c4:82:ac:a1:5a:28:9f:38:96:29:4c:c4:
a2:3b:49:0d:90:b3:f3:1c:60:8a:7a:78:a4:ac:35:cd:d1:e7:
43:11:ed:e4:ea:cb:3d:41:18:ed:97:b3:cb:96:87:ae:a9:aa:
12:ab:6c:65:37:ff:1c:97:68:35:54:f3:a3:22:a5:57:cc:7e:
d8:ea:d9:7e:c9:a5:7b:84:7b:03:ba:44:24:04:90:ef:41:b7:
23:8a:57:ed:5f:97:3e:07:9d:9a:05:58:42:3b:0f:13:18:ed:
63:ac:df:e8:74:69:5c:94:30:aa:c7:7e:a7:dc:7d:1b:ab:7d:
3c:e4:2d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:53 2024 by rpki-client on console-fra.rpki-client.org