Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/5e6dxvVD5xTveV2tLi5b1kXmNcM.roa
File: 5e6dxvVD5xTveV2tLi5b1kXmNcM.roa (raw, json)
Hash identifier: sXSLpqPpnoddLH6tKrM9RnYW/VwKUIYXua4Kfxbdbv8=
Subject key identifier: E5:EE:9D:C6:F5:43:E7:14:EF:79:5D:AD:2E:2E:5B:D6:45:E6:35:C3
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 032FE57F
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/5e6dxvVD5xTveV2tLi5b1kXmNcM.roa
Signing time: Mon 17 Jan 2022 14:24:18 +0000
ROA not before: Mon 17 Jan 2022 14:24:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 194.37.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53470591 (0x32fe57f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: Jan 17 14:24:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5ee9dc6f543e714ef795dad2e2e5bd645e635c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bc:d5:de:f9:e1:7b:b7:74:cd:89:45:5a:04:
c4:f9:26:f6:f8:ac:72:ea:d8:bb:57:03:1d:85:4d:
68:d5:02:7e:95:fa:3b:4b:b4:53:5e:08:7d:4c:ce:
64:39:ea:49:6b:aa:58:0f:3f:fb:f0:23:f7:1a:4e:
be:2b:37:d7:db:56:5e:9c:3b:d0:ac:48:f8:47:e9:
8e:8a:87:bd:71:bb:95:03:8b:05:05:8d:d4:c2:9c:
18:83:eb:c1:8a:e5:79:ce:aa:eb:e4:2f:9c:6c:99:
a4:de:57:0d:d4:a4:f2:37:b0:8a:41:08:70:3e:43:
ad:c7:5e:d0:38:81:1c:90:96:48:79:42:26:85:8e:
54:d6:c4:a1:f5:56:77:2c:e9:7a:bf:85:36:d6:97:
65:44:4d:a3:65:e1:65:9c:41:b1:12:25:4d:1f:1f:
f8:74:fc:da:29:54:97:36:06:ba:a1:ba:dc:f6:6b:
a5:a0:9e:ba:fd:7e:b2:f0:5e:2a:f9:ba:37:04:49:
0c:33:b5:d0:c3:e7:de:c5:77:9e:4f:b6:46:0e:ab:
af:8b:58:dd:5e:ec:a2:c9:e9:25:4d:64:97:46:e9:
6c:8a:f5:50:84:47:cc:d0:96:1a:45:08:66:f2:a2:
b8:6e:c2:28:ef:3a:95:63:ed:95:0d:5b:9a:bc:a2:
64:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:EE:9D:C6:F5:43:E7:14:EF:79:5D:AD:2E:2E:5B:D6:45:E6:35:C3
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/5e6dxvVD5xTveV2tLi5b1kXmNcM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.94.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:2a:87:2f:1a:a6:89:f0:f2:e2:4e:f4:21:94:6a:e9:a8:d3:
51:ef:73:ac:2a:a4:20:e7:6c:9f:2f:b7:ea:e7:f0:06:54:b5:
2b:55:ae:63:41:60:c3:b6:a0:29:b0:bc:74:bb:9a:ee:06:75:
ee:1c:0c:96:ad:41:50:8e:d2:8f:b1:33:df:6e:c7:47:fd:2e:
23:58:ed:48:bc:93:20:ac:d3:8f:9d:f3:12:2c:38:20:87:0d:
69:17:1a:eb:a4:7c:9c:4a:5c:88:5a:07:ac:50:cb:4e:7c:b9:
64:4a:59:6e:af:c0:4d:9c:73:cc:93:19:a1:1a:cc:98:ae:f0:
69:aa:1b:d7:bc:24:89:d7:b7:97:25:e2:ae:d7:53:0f:60:9b:
31:89:d3:ee:01:64:5a:02:7b:a5:58:7e:b1:40:c0:65:31:82:
cd:e1:06:21:8c:22:12:07:39:c5:2a:23:9a:b5:c0:0e:ea:f0:
16:f7:70:fa:f6:01:f5:31:4d:8c:6e:d1:5b:5b:71:32:0f:f1:
34:28:af:34:eb:f2:ba:5b:39:f9:18:72:d8:6c:a1:50:a0:a6:
44:0a:cd:ab:b8:d5:52:02:74:ca:42:1c:15:9d:2a:79:86:7f:
25:29:58:c5:b9:33:31:f7:3b:5e:b5:3f:a2:b4:fa:bd:75:23:
ca:4f:69:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:13 2024 by rpki-client on console-fra.rpki-client.org