Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/1-uT1dzc2OAagG9WSpdIDiNzbUNk.roa
File: 1-uT1dzc2OAagG9WSpdIDiNzbUNk.roa (raw, json)
Hash identifier: fjU9SXtOAOHCdH19eEE25UI0S52FVGY8TR/m1+5CbEw=
Subject key identifier: FA:E4:F5:77:37:36:38:06:A0:1B:D5:92:A5:D2:03:88:DC:DB:50:D9
Certificate issuer: /CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Certificate serial: 05E8471B
Authority key identifier: 88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/1-uT1dzc2OAagG9WSpdIDiNzbUNk.roa
Signing time: Sat 01 Jan 2022 10:05:18 +0000
ROA not before: Sat 01 Jan 2022 10:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202486
IP address blocks: 194.76.221.0/24 maxlen: 24
194.76.220.0/24 maxlen: 24
194.76.220.0/23 maxlen: 24
194.76.237.0/24 maxlen: 24
194.76.236.0/24 maxlen: 24
194.76.236.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99108635 (0x5e8471b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=884bf80e72f50f09bf563493ebdb11a34bba312d
Validity
Not Before: Jan 1 10:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fae4f57737363806a01bd592a5d20388dcdb50d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:ca:e8:13:29:43:fb:3a:03:45:bb:9f:fd:
b6:0f:5c:12:44:15:e2:1d:b0:c7:99:4d:0b:00:7a:
ae:62:c2:a9:41:0f:f0:62:c6:ad:f3:47:03:45:bf:
28:9b:be:e3:3a:39:52:55:49:c0:83:c9:27:37:1f:
e4:f0:2f:be:94:fc:30:25:33:c4:b4:68:90:9e:bf:
21:79:46:2d:68:dd:f6:af:60:c6:2e:fe:ab:e9:fc:
2d:d0:af:a8:f8:58:43:2b:ef:19:a6:0b:e9:e5:29:
e4:1e:9f:7e:df:2a:6e:2a:5e:0f:25:ca:b6:12:92:
7e:e3:e9:27:f5:ff:b7:d7:71:de:df:4f:8d:f0:c1:
93:1e:e9:de:60:71:e5:95:a2:19:f7:71:c7:92:bd:
33:ad:a6:60:15:dc:50:e5:0c:c0:80:f1:5e:79:24:
8c:dc:ce:38:9a:0f:9f:12:3d:45:d9:89:ed:b5:97:
1a:49:78:d9:6e:92:be:fb:e4:96:33:62:9a:ad:4f:
e4:19:33:7c:0c:84:c7:c4:f6:74:33:fa:48:52:5b:
d5:d5:a3:50:bd:e6:9d:6b:08:74:3c:0e:d7:88:00:
bf:c6:4d:f3:69:26:f7:61:37:d4:89:0a:31:55:91:
97:15:7b:33:01:e0:40:07:00:fc:13:9c:5b:7d:69:
34:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E4:F5:77:37:36:38:06:A0:1B:D5:92:A5:D2:03:88:DC:DB:50:D9
X509v3 Authority Key Identifier:
keyid:88:4B:F8:0E:72:F5:0F:09:BF:56:34:93:EB:DB:11:A3:4B:BA:31:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iEv4DnL1Dwm_VjST69sRo0u6MS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/1-uT1dzc2OAagG9WSpdIDiNzbUNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/b12e4d-8a1a-4010-9a8b-36f9847ac35b/1/iEv4DnL1Dwm_VjST69sRo0u6MS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.220.0/23
194.76.236.0/23
Signature Algorithm: sha256WithRSAEncryption
4e:0b:5f:f1:e8:9a:47:e4:75:75:94:e0:33:15:03:66:19:91:
0a:0c:38:67:34:d6:7e:c1:b3:8a:af:05:ac:15:1c:cb:72:4b:
03:ff:a3:7c:af:dd:17:ce:bd:f8:72:f3:02:9d:2f:aa:98:e5:
5d:9c:fb:75:3a:81:7b:c6:8a:c8:59:4c:05:53:f1:c7:45:0e:
c6:e0:4a:b4:49:c8:e9:f8:1e:7a:16:b2:bb:a6:47:33:3b:d6:
9c:0d:b4:3e:4f:cd:cc:dd:65:d8:bd:20:df:5c:52:75:7c:26:
69:bf:ab:33:26:41:38:bb:ba:61:87:f7:fb:01:7e:78:48:3a:
ec:9a:8e:ea:67:2a:5c:5d:8e:24:75:bd:38:4e:02:dc:66:fd:
8e:d9:bd:29:5a:53:22:fa:68:60:39:31:91:f0:62:aa:86:00:
20:08:04:31:e6:7a:a3:7d:f6:33:6b:57:2a:aa:d2:49:43:94:
60:ae:23:0a:14:e4:32:02:8f:50:7f:69:76:29:c1:78:18:85:
ec:0e:bc:e1:8a:ac:28:0f:0b:b6:ad:dc:20:64:2c:21:13:2e:
ea:56:68:81:97:82:a9:c9:90:92:2a:27:fd:8d:44:22:a4:34:
96:2b:e8:55:63:c3:6a:6e:df:a3:16:d4:95:b8:c1:39:77:8e:
7e:1c:2d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:52 2024 by rpki-client on console-ams.rpki-client.org