Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/DlE3AODKoyEC2eH-MUmnmJeE5N8.roa
File: DlE3AODKoyEC2eH-MUmnmJeE5N8.roa (raw, json)
Hash identifier: 5DyOLGlXJLANnXaFsehXUPu01aNNg+iziCGDBlFfcuY=
Subject key identifier: 0E:51:37:00:E0:CA:A3:21:02:D9:E1:FE:31:49:A7:98:97:84:E4:DF
Certificate issuer: /CN=05712e88949d5a435a33e7040c9fb7e7a8244395
Certificate serial: 039A5702
Authority key identifier: 05:71:2E:88:94:9D:5A:43:5A:33:E7:04:0C:9F:B7:E7:A8:24:43:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BXEuiJSdWkNaM-cEDJ-356gkQ5U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/DlE3AODKoyEC2eH-MUmnmJeE5N8.roa
Signing time: Sat 01 Jan 2022 15:04:35 +0000
ROA not before: Sat 01 Jan 2022 15:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42547
IP address blocks: 194.50.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 60446466 (0x39a5702)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05712e88949d5a435a33e7040c9fb7e7a8244395
Validity
Not Before: Jan 1 15:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e513700e0caa32102d9e1fe3149a7989784e4df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:31:4d:74:24:c9:51:84:34:81:16:41:37:61:
10:85:38:f7:96:f4:37:a1:63:a5:be:c3:ec:e2:66:
0b:4c:7f:42:9a:dc:9f:6f:a0:8f:53:0c:fc:13:e3:
3e:2b:2f:7e:56:98:df:23:51:88:36:46:97:0c:ee:
ee:68:e5:28:d8:29:81:48:73:21:f0:bd:6d:ed:e5:
6e:6b:cd:7b:a4:3f:fa:83:8d:e3:4f:0a:41:a3:1f:
17:64:50:41:4a:55:ab:47:43:39:56:ea:33:bf:2c:
fa:f2:5b:b9:5e:bd:f0:3c:c5:22:6d:25:0d:67:84:
f9:71:5b:94:bb:8c:99:d3:79:65:cf:2f:3d:fc:fe:
c7:30:3b:c1:63:86:a4:cf:ba:8c:94:7e:63:92:27:
01:d5:0e:a6:37:81:08:de:be:12:c0:2f:4f:01:63:
85:ee:15:a7:d3:8f:30:d3:25:dc:1e:44:1f:13:b3:
2a:6b:d2:d0:e7:da:72:9c:58:39:85:ed:d1:8d:c2:
67:2b:b4:8a:eb:9c:d9:d9:ca:f8:91:23:26:8c:13:
ad:e5:5a:89:6d:07:78:a7:59:97:7b:3a:d2:c4:db:
ee:48:51:e6:a6:c8:82:fc:07:6f:cd:3d:85:3f:a0:
0d:20:35:f0:2e:cd:cd:b8:82:d5:a2:28:18:f1:fc:
5c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:51:37:00:E0:CA:A3:21:02:D9:E1:FE:31:49:A7:98:97:84:E4:DF
X509v3 Authority Key Identifier:
keyid:05:71:2E:88:94:9D:5A:43:5A:33:E7:04:0C:9F:B7:E7:A8:24:43:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BXEuiJSdWkNaM-cEDJ-356gkQ5U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/DlE3AODKoyEC2eH-MUmnmJeE5N8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/2c950e-7d3a-4cad-841f-2c014b740c3b/1/BXEuiJSdWkNaM-cEDJ-356gkQ5U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.117.0/24
Signature Algorithm: sha256WithRSAEncryption
75:3a:39:01:41:82:1b:a3:5e:55:b7:86:f6:99:f4:a1:88:06:
1b:a4:26:7d:e1:eb:e0:0b:40:30:38:5d:37:4a:bf:e4:f6:7b:
ec:9d:94:2e:12:b2:26:1d:b4:0d:1a:7b:1a:2e:52:d1:78:64:
79:a1:3d:8b:ab:8f:5b:68:c0:b4:fd:d9:f0:26:1a:df:77:a6:
4f:a6:23:80:8c:e2:ae:fb:56:a1:19:1e:6b:80:46:03:45:c7:
f9:49:0e:ae:22:73:05:76:36:ef:f0:48:19:9f:bf:01:85:61:
7d:0f:d5:12:7a:13:fe:a6:3d:bd:39:bb:44:e1:f8:c6:49:52:
bf:52:76:c3:48:7a:16:73:a5:6e:73:57:4c:ac:7d:76:d2:9a:
8f:6f:bf:6a:7b:70:58:60:d7:8f:0d:33:4a:58:af:86:ff:85:
89:a6:22:40:01:18:9c:57:b6:aa:ec:f3:e9:43:49:ff:76:8f:
49:f2:f0:2a:06:46:1f:5b:48:09:26:cf:ec:75:4d:3a:fd:e2:
d2:f3:31:27:7f:15:27:03:92:0c:ef:82:18:53:c0:a8:b1:cd:
9a:88:45:64:60:3a:42:f1:97:eb:dd:fb:99:b2:5e:ac:ce:f6:
37:8c:ba:af:31:56:43:41:f8:e8:25:32:1a:48:38:20:e7:48:
30:e2:c0:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-ams.rpki-client.org