Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/N-OzA1Uks7c88AYcDfeWxUbjKVg.roa
File: N-OzA1Uks7c88AYcDfeWxUbjKVg.roa (raw, json)
Hash identifier: audiL5IIRAHvsHu9W0+BwBSh/BMUyhosv/qLqYscML0=
Subject key identifier: 37:E3:B3:03:55:24:B3:B7:3C:F0:06:1C:0D:F7:96:C5:46:E3:29:58
Certificate issuer: /CN=30309941a6d84fa4dbddaf0f4ecd99f9f043cfdc
Certificate serial: 026EA797
Authority key identifier: 30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/N-OzA1Uks7c88AYcDfeWxUbjKVg.roa
Signing time: Sat 01 Jan 2022 06:54:00 +0000
ROA not before: Sat 01 Jan 2022 06:54:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209011
IP address blocks: 94.177.128.0/24 maxlen: 24
194.28.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40806295 (0x26ea797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30309941a6d84fa4dbddaf0f4ecd99f9f043cfdc
Validity
Not Before: Jan 1 06:54:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37e3b3035524b3b73cf0061c0df796c546e32958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:b1:6b:c7:95:90:c9:97:f3:13:d8:f8:23:5c:
8c:91:84:bc:7a:36:b1:d9:18:36:00:d8:25:eb:d5:
6c:f2:27:9e:2f:ce:c7:c1:54:f5:95:44:96:d8:b9:
ec:73:42:93:3d:2c:e8:9d:86:9b:c3:00:a1:e8:17:
ca:0d:70:63:c5:f8:5a:ba:df:c0:d3:ee:81:c3:d0:
43:3e:f6:5b:9b:0d:d1:18:f7:3b:b8:49:80:2a:3b:
e6:a4:e1:bf:03:fb:20:59:d5:13:1d:ce:b2:09:60:
4e:9c:68:bc:a1:5a:38:f1:13:df:3d:5f:e6:db:94:
42:21:fe:16:41:b1:98:75:09:b0:a8:e0:dc:5e:b1:
65:c1:fa:cd:ff:62:64:8b:83:60:77:60:3a:cd:64:
9f:da:9e:c5:ec:08:10:01:0a:d5:7b:05:6a:55:1a:
89:26:06:66:d1:45:ec:40:db:9b:25:b3:14:1c:eb:
06:25:c2:90:26:b6:62:18:b3:84:bc:27:2b:88:55:
c5:80:46:7e:36:f2:db:19:e9:1b:69:b6:f5:13:72:
c1:64:4b:7f:7d:b7:c5:29:e1:31:32:87:92:0c:bc:
c3:64:1d:d4:ae:19:14:ed:d9:42:10:11:91:38:ab:
dd:0d:48:70:ed:40:a0:68:5e:5f:64:17:e6:4c:d7:
a9:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E3:B3:03:55:24:B3:B7:3C:F0:06:1C:0D:F7:96:C5:46:E3:29:58
X509v3 Authority Key Identifier:
keyid:30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/N-OzA1Uks7c88AYcDfeWxUbjKVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.177.128.0/24
194.28.44.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:17:e9:cb:93:65:f7:bc:50:1d:51:6b:fc:b5:10:73:68:d0:
7c:40:17:ad:d3:65:32:10:b7:fb:b3:b2:2d:58:9c:ce:84:0d:
e5:4d:98:31:57:0a:36:5a:79:53:0d:d1:53:ea:0a:37:0f:e8:
46:8a:e9:d4:b2:7a:8e:31:87:7a:05:99:77:11:4d:23:8a:e5:
3f:60:b8:73:6b:ed:20:da:98:40:6c:bb:35:8d:c1:e1:17:c7:
85:d9:98:03:4d:a4:44:37:02:9d:01:ea:d5:7f:70:9f:ad:81:
90:41:d3:4b:94:07:aa:5d:77:ee:c7:3b:31:38:51:97:8c:05:
d7:04:54:86:c7:35:8e:8e:02:92:fc:9d:40:8b:3b:f9:81:86:
67:a6:57:8c:7d:44:5f:70:44:c4:43:3b:f0:f2:41:56:0e:4e:
af:a1:e7:aa:6d:d6:5e:78:73:f0:1c:04:f2:79:3b:f8:26:32:
66:99:a7:f0:e6:c2:d4:34:91:25:af:a4:38:98:39:c8:65:aa:
49:c0:ec:fa:15:0a:f0:52:c1:42:1f:d8:ec:74:d9:9c:13:33:
0b:fc:e9:d1:a5:ce:6f:29:4a:d4:e3:8d:11:d1:8b:a0:79:c9:
2a:d3:e4:84:f8:08:61:63:fa:2e:62:63:83:b4:14:e0:b5:fb:
1e:8f:d3:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:51 2025 by rpki-client