Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/DG899ubf3_adxX8KzugDcHx9ouo.roa
File: DG899ubf3_adxX8KzugDcHx9ouo.roa (raw, json)
Hash identifier: U6Cc0r3z5dTGvg7OqdMBxumjR2mxzwElftkiqce3K0g=
Subject key identifier: 0C:6F:3D:F6:E6:DF:DF:F6:9D:C5:7F:0A:CE:E8:03:70:7C:7D:A2:EA
Certificate issuer: /CN=b3efea3a72faf0df4322cdaab9a136d79de8a3ef
Certificate serial: 01C42AEB
Authority key identifier: B3:EF:EA:3A:72:FA:F0:DF:43:22:CD:AA:B9:A1:36:D7:9D:E8:A3:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s-_qOnL68N9DIs2quaE2153oo-8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/DG899ubf3_adxX8KzugDcHx9ouo.roa
Signing time: Thu 19 May 2022 11:52:00 +0000
ROA not before: Thu 19 May 2022 11:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 194.26.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29633259 (0x1c42aeb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3efea3a72faf0df4322cdaab9a136d79de8a3ef
Validity
Not Before: May 19 11:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c6f3df6e6dfdff69dc57f0acee803707c7da2ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:03:f9:49:53:68:53:cd:24:26:21:3e:d2:e5:
5c:13:91:b5:c0:19:63:85:ff:94:a1:d2:5c:5a:36:
e3:25:86:2e:1f:d2:a3:57:71:1b:68:8a:9a:5a:ae:
a3:1c:45:5a:b3:11:0c:20:54:ed:36:98:35:12:8f:
6f:90:35:fc:66:82:9b:51:5b:5f:44:ef:ab:bb:a9:
7b:74:45:3b:36:d5:fd:98:1e:42:fe:5f:10:c3:b8:
6d:81:9a:f7:f8:98:b4:0b:41:03:39:8b:ae:0a:e9:
5f:f7:a1:be:94:1d:07:a2:6d:7d:03:c9:7e:d7:5d:
4e:1a:e6:50:1e:95:57:3c:7b:31:d4:71:65:fe:31:
79:cb:92:a4:bd:f0:5a:7f:24:b4:a7:9a:c6:14:33:
6f:f3:ff:aa:40:25:ec:06:da:f8:b6:ee:c1:88:ac:
a4:51:98:7a:ee:66:67:24:89:fb:67:4a:d0:36:dc:
ed:e9:07:70:b5:69:b4:3b:2b:01:36:0f:86:97:a3:
be:15:30:5d:3d:11:88:69:44:ca:0c:42:6a:dd:66:
e0:1e:29:7a:76:b0:30:fb:37:fe:db:a0:d6:14:87:
b3:a4:47:38:e2:8b:d6:02:73:48:39:e0:af:e5:c7:
e1:95:17:9d:26:a1:4a:b4:a6:53:78:b8:40:1e:4c:
3a:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6F:3D:F6:E6:DF:DF:F6:9D:C5:7F:0A:CE:E8:03:70:7C:7D:A2:EA
X509v3 Authority Key Identifier:
keyid:B3:EF:EA:3A:72:FA:F0:DF:43:22:CD:AA:B9:A1:36:D7:9D:E8:A3:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s-_qOnL68N9DIs2quaE2153oo-8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/DG899ubf3_adxX8KzugDcHx9ouo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/cd94f2-3b19-4826-a0eb-bfe221553f07/1/s-_qOnL68N9DIs2quaE2153oo-8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.215.0/24
Signature Algorithm: sha256WithRSAEncryption
98:7d:ed:8a:92:9f:f3:43:40:de:a7:93:54:49:a5:bd:36:be:
c3:98:96:ae:23:40:d0:09:33:a3:1d:7a:2d:3c:1b:c3:e8:80:
b4:7f:93:c2:c0:d0:59:b3:f8:57:59:b0:93:ff:00:c8:fe:c5:
99:59:ed:12:5e:8f:38:ed:5b:d7:25:3f:c4:b8:11:e7:0f:6c:
0d:82:37:58:c6:fa:a2:7d:a0:96:30:89:a3:c3:2e:9e:16:0e:
c6:3f:57:90:d8:43:73:b4:0e:01:ba:02:02:bd:94:61:73:ab:
f0:a0:90:96:79:60:e1:0e:32:e7:84:58:ce:5a:02:80:fd:9b:
38:91:7f:84:25:27:ed:51:57:83:6f:cb:b2:78:51:96:84:b7:
ef:1c:5b:54:5e:9e:9b:02:d8:fc:eb:4f:be:47:5b:64:68:a6:
7e:86:28:ac:dd:2e:25:5e:99:fa:ec:b9:38:5e:f7:96:34:db:
62:76:2c:1a:85:3d:10:79:46:27:2a:0b:12:9f:92:6e:6c:61:
25:f5:3d:6b:30:4e:62:53:44:5d:03:23:43:1d:bf:0f:dc:8c:
a1:c8:fd:94:81:f2:da:e4:ca:5e:e2:cc:ab:77:fb:fd:8f:8b:
5f:3d:ff:7a:0c:cf:70:06:16:58:87:b8:dd:f5:b9:47:88:cd:
53:1b:d8:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:16 2023 by rpki-client on console-fra.rpki-client.org