Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Xf1jXPKcn-slFMsmzwNM1JDsoFc.roa
File: Xf1jXPKcn-slFMsmzwNM1JDsoFc.roa (raw, json)
Hash identifier: yvd59ICnTNrwejE4SrZhg9utWDZfIvWM4sZQ3sNMasA=
Subject key identifier: 5D:FD:63:5C:F2:9C:9F:EB:25:14:CB:26:CF:03:4C:D4:90:EC:A0:57
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F81B18A
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Xf1jXPKcn-slFMsmzwNM1JDsoFc.roa
Signing time: Sat 01 Jan 2022 08:05:04 +0000
ROA not before: Sat 01 Jan 2022 08:05:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57530
IP address blocks: 194.226.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 260157834 (0xf81b18a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:05:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dfd635cf29c9feb2514cb26cf034cd490eca057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:63:94:17:15:6a:c5:68:7c:f3:d7:9a:94:54:
4b:f3:94:aa:84:22:73:45:94:9e:03:e0:af:0d:98:
7c:89:eb:26:27:4f:56:64:20:b6:47:6f:5b:72:9a:
71:1d:fa:a8:23:b8:8f:43:86:5c:f6:b3:ee:12:c8:
e6:88:f7:10:88:cb:08:d4:97:86:0e:48:fe:59:b3:
26:2c:93:55:9a:6c:72:c1:a2:8b:eb:ce:4f:67:6e:
67:61:00:55:24:37:64:54:41:06:60:c5:50:a4:3f:
ad:39:9c:4a:1a:de:02:64:67:68:21:b7:d4:13:11:
62:7e:22:8c:70:7e:34:ca:21:35:19:80:71:43:9b:
a7:66:b5:76:65:cd:5e:db:6b:b5:d0:29:c5:15:f3:
f0:1a:f6:05:0f:a8:30:41:81:1a:8c:b8:ae:a6:25:
61:53:f1:d5:32:2a:1f:8a:1e:ae:6c:d5:93:5b:67:
f5:4a:34:57:20:0e:11:f0:96:e4:9e:e6:04:4c:60:
cb:7b:6d:ec:4c:cb:39:2b:d3:c9:9d:fa:89:9d:de:
b9:29:d0:26:96:30:eb:03:fc:0f:d7:13:55:69:d7:
4d:9e:ce:a6:3b:8c:80:a8:2a:10:fd:cc:6c:98:98:
63:0a:d0:3f:a7:26:1c:ee:5e:03:6e:fa:0a:b7:56:
0c:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FD:63:5C:F2:9C:9F:EB:25:14:CB:26:CF:03:4C:D4:90:EC:A0:57
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/Xf1jXPKcn-slFMsmzwNM1JDsoFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.226.176.0/24
Signature Algorithm: sha256WithRSAEncryption
57:b2:6b:fa:bc:8f:de:cb:5d:c2:21:99:13:c8:f5:a4:c8:60:
f3:7d:81:04:64:6a:79:36:73:e6:3b:46:2b:51:67:a0:f1:b1:
05:54:a5:db:b8:4d:c4:5d:31:92:1d:f8:ec:02:b0:82:53:1f:
a4:39:d9:a5:53:f6:61:ad:66:e2:d5:80:d6:bf:0b:3b:10:8e:
2d:32:de:c1:a3:56:23:eb:37:96:8c:09:fb:d2:3c:ff:2d:fc:
bf:92:04:bd:aa:43:4d:e2:81:52:2c:ec:ea:c4:53:6e:77:0f:
04:10:1b:58:14:5b:88:f8:d3:5c:17:d7:74:87:89:26:d6:e0:
3e:76:25:10:4d:0a:74:6f:34:13:81:47:9f:21:19:f6:cf:50:
d7:17:3a:33:cf:71:0a:c8:97:f9:41:7c:86:dc:27:51:12:2c:
8d:0b:e5:1d:84:5b:a8:d4:a1:5d:5e:db:dd:75:46:54:56:e2:
c2:4d:26:d4:09:f8:41:aa:44:6a:21:7a:f3:81:db:bc:17:6b:
d2:15:1f:9c:e6:a0:da:e0:59:11:37:d9:96:25:ee:87:16:85:
ed:7b:6f:f7:20:22:7e:68:0a:e9:d9:a4:f6:91:1c:61:7f:08:
cd:2f:ab:ef:c4:20:95:78:89:47:d9:d7:41:eb:58:50:64:87:
60:d7:41:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org