Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/2kK4OHWuWeq7Kgm5FkQmWF6DjJA.roa
File: 2kK4OHWuWeq7Kgm5FkQmWF6DjJA.roa (raw, json)
Hash identifier: D5LqeFVyWj3gpCwA1MzJa9gAl/8yMZFBvI2BVz4y5Mk=
Subject key identifier: DA:42:B8:38:75:AE:59:EA:BB:2A:09:B9:16:44:26:58:5E:83:8C:90
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 018475BB5F6AC6C654517BC9611443BCF5BC
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/2kK4OHWuWeq7Kgm5FkQmWF6DjJA.roa
Signing time: Mon 14 Nov 2022 10:42:04 +0000
ROA not before: Mon 14 Nov 2022 10:42:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398464
IP address blocks: 194.247.44.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:bb:5f:6a:c6:c6:54:51:7b:c9:61:14:43:bc:f5:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Nov 14 10:42:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da42b83875ae59eabb2a09b9164426585e838c90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1a:61:a7:c6:f2:54:c8:cf:43:96:4a:97:8b:
d8:cd:be:a4:90:3f:b7:42:99:a1:b5:79:2d:f0:18:
cd:16:1c:85:5f:05:ed:e7:02:f8:74:4e:d5:84:06:
38:f9:8c:24:7b:6d:b9:16:a1:66:56:b7:fb:5c:5d:
d7:a5:6f:e8:13:39:a0:92:c9:18:ba:af:32:a5:1f:
53:ab:46:bf:fc:86:08:67:57:3f:9e:00:76:f9:47:
43:f4:5d:a3:16:a4:da:aa:3e:69:c4:09:5b:8d:91:
3a:d0:f9:01:2d:86:67:03:6b:42:5d:22:97:90:75:
00:83:d4:08:40:70:b5:d7:93:7f:04:99:d3:ad:e6:
cf:53:28:9c:70:38:79:ec:3c:7c:9e:c6:1b:ae:5a:
c0:0c:99:4d:ba:f9:8a:c2:1a:dd:d5:29:d2:76:1b:
07:69:74:bc:17:7c:0c:f3:e2:30:e8:fe:b7:3c:ba:
b3:18:b2:3c:ac:2e:de:c6:29:c1:f7:51:fa:c3:29:
df:7b:df:5a:ae:64:fc:be:37:e6:89:d2:08:f1:72:
3b:97:92:14:ee:8f:87:52:88:53:45:27:fd:c9:e2:
68:a9:1d:68:36:3c:ab:29:d3:4e:eb:62:67:ac:5b:
e7:06:7c:33:5c:c9:a5:b8:0f:49:05:b2:c2:0d:1e:
5d:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:42:B8:38:75:AE:59:EA:BB:2A:09:B9:16:44:26:58:5E:83:8C:90
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/2kK4OHWuWeq7Kgm5FkQmWF6DjJA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.44.0/23
Signature Algorithm: sha256WithRSAEncryption
73:78:e0:06:0e:e2:2c:05:ad:53:1c:54:a4:c0:e1:b4:11:26:
11:62:ca:45:8a:89:83:6a:53:bf:95:fe:e2:8d:f7:b5:21:b7:
b9:b1:9f:78:dc:c1:dc:1e:6b:46:14:7d:6a:39:2a:e0:d2:2f:
33:a1:32:07:d6:91:a9:9b:ca:bf:6c:cd:92:3a:e8:51:7a:f9:
f6:2a:7d:f8:62:62:c3:f4:13:ef:96:ce:62:bf:31:10:a7:1c:
1e:4d:a7:4c:cf:ee:41:c9:4c:ef:36:cf:3b:8b:61:cd:fd:74:
f8:15:76:95:8e:63:69:21:d4:36:0c:61:63:ea:b0:58:6e:bd:
b0:90:e7:02:a7:04:28:c2:b4:cb:2b:a4:75:dd:4b:99:44:5a:
14:c8:bf:4a:57:9d:0c:d5:45:71:86:ad:13:09:9e:59:83:d2:
c1:fc:35:8c:99:c5:2f:34:35:77:cc:ad:a7:07:83:0f:52:49:
c7:24:61:c8:b4:d7:9e:bd:4f:40:23:9f:d4:1b:ae:58:bf:8f:
87:2b:df:59:23:ba:78:dc:91:bb:f4:06:14:85:c0:fe:34:1d:
5e:cd:9b:e2:22:3d:b3:dd:f5:cf:e1:5a:ab:85:e4:5b:fe:09:
07:d3:ff:aa:9e:75:e1:5a:92:d3:09:9f:c0:92:a5:12:eb:d8:
8e:88:67:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org