Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/7418g0KMKU6Ig5HnIPjiS8MlDUc.roa
File: 7418g0KMKU6Ig5HnIPjiS8MlDUc.roa (raw, json)
Hash identifier: om+dD7U43cJXHYbs8t+/LIvqiQ4cZSsEbZ3Pht72SLU=
Subject key identifier: EF:8D:7C:83:42:8C:29:4E:88:83:91:E7:20:F8:E2:4B:C3:25:0D:47
Certificate issuer: /CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Certificate serial: 8028
Authority key identifier: 3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/7418g0KMKU6Ig5HnIPjiS8MlDUc.roa
Signing time: Tue 26 Apr 2022 15:14:39 +0000
ROA not before: Tue 26 Apr 2022 15:14:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24951
IP address blocks: 194.11.232.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32808 (0x8028)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a40ff154c453943a0b02aa65021c9c264947c2b
Validity
Not Before: Apr 26 15:14:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef8d7c83428c294e888391e720f8e24bc3250d47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:08:39:e4:04:8a:09:7a:0d:c9:f4:84:a5:57:
2b:3b:03:45:7e:53:57:c8:6b:e4:3c:3d:f8:55:2a:
e3:f0:dd:e9:20:14:a9:42:67:99:18:d7:d3:06:6b:
9b:0d:29:da:9f:92:e4:f0:b7:af:c8:8e:81:36:61:
32:f8:78:f0:11:75:a6:2b:7e:bf:8d:3c:ae:6e:50:
4d:74:9a:6c:98:d0:08:43:76:7e:83:32:ca:c2:4b:
e1:90:5f:9c:3a:96:af:1a:ef:2d:41:00:97:f9:98:
c5:a4:38:9f:10:ba:70:ff:24:b3:c9:1d:17:96:13:
15:87:17:e2:03:8d:b7:8b:95:d2:7d:a1:49:36:33:
e4:4b:e2:d8:70:eb:0b:6c:f6:92:3e:cc:11:19:b6:
8a:ab:5b:89:88:68:cd:83:3e:43:52:69:8b:83:6f:
c8:51:b6:24:96:e5:95:63:a2:92:b6:a5:fc:05:28:
4f:a5:21:50:bf:f6:8f:a4:a3:04:9d:0b:38:97:80:
c0:eb:c0:f8:e1:bb:71:67:b0:74:12:74:14:82:bf:
c7:a3:4e:d4:17:9b:df:2e:a0:73:91:7f:6b:7b:83:
96:21:cc:3e:bc:ee:9c:83:a6:d0:48:83:32:5b:00:
36:1b:51:10:39:ab:10:e8:75:f1:e8:f5:25:5e:bc:
d3:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:8D:7C:83:42:8C:29:4E:88:83:91:E7:20:F8:E2:4B:C3:25:0D:47
X509v3 Authority Key Identifier:
keyid:3A:40:FF:15:4C:45:39:43:A0:B0:2A:A6:50:21:C9:C2:64:94:7C:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkD_FUxFOUOgsCqmUCHJwmSUfCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/7418g0KMKU6Ig5HnIPjiS8MlDUc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/4efcae-afc9-422b-aadd-82bb0bb11e3e/1/OkD_FUxFOUOgsCqmUCHJwmSUfCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.232.0/23
Signature Algorithm: sha256WithRSAEncryption
90:04:2e:7a:52:22:de:cc:39:ba:da:63:c3:3a:7a:ee:56:cd:
04:45:2e:ef:7c:98:26:5c:8e:25:13:b2:37:a4:4f:c6:95:43:
16:6d:96:79:5c:1b:c4:f7:54:09:d3:f0:d0:fd:ba:29:49:11:
06:99:3d:6f:61:e4:8e:06:ae:95:6b:c5:0d:67:8e:1c:3f:95:
a3:6c:e0:9b:af:e3:19:cc:21:97:e4:6c:4d:3c:f8:4a:1d:6e:
62:b4:e7:48:c5:e1:99:5b:50:e7:df:cd:e7:41:d4:d7:35:c3:
4a:0d:39:e4:0d:66:a2:43:50:49:69:46:95:5d:07:23:11:58:
17:11:09:d9:99:3a:97:88:ee:96:12:d2:f7:af:75:98:e0:72:
62:db:61:c8:c1:4f:1f:fe:fd:89:24:7a:04:7d:81:8f:4a:26:
af:34:ee:f3:9b:22:18:4e:91:cb:f1:4e:94:a4:4c:82:e6:8c:
ac:a4:51:a1:4b:7b:64:7b:09:84:30:6a:b1:22:64:f4:83:21:
83:db:a0:2f:29:24:1b:cc:28:d6:e5:b6:51:e1:c4:5b:a4:34:
d4:dd:e9:09:de:f3:fe:5b:af:36:a5:ac:83:02:56:59:b1:71:
e1:0d:3d:df:4a:dd:a1:a6:be:0b:7b:12:30:fe:8d:c5:0f:52:
51:ca:9b:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:11 2024 by rpki-client on console-fra.rpki-client.org