Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/O1_-Zfv9vlt0ZaCFEt8NKjYkvkc.roa
File: O1_-Zfv9vlt0ZaCFEt8NKjYkvkc.roa (raw, json)
Hash identifier: g080/W7dHHFSx0T/ahf4Y8VB3Ol+S9AOEeVA0y5o/mk=
Subject key identifier: 3B:5F:FE:65:FB:FD:BE:5B:74:65:A0:85:12:DF:0D:2A:36:24:BE:47
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 9D86
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/O1_-Zfv9vlt0ZaCFEt8NKjYkvkc.roa
Signing time: Tue 26 Apr 2022 13:40:45 +0000
ROA not before: Tue 26 Apr 2022 13:40:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8708
IP address blocks: 194.102.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 40326 (0x9d86)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Apr 26 13:40:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3b5ffe65fbfdbe5b7465a08512df0d2a3624be47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:b3:bc:3c:25:2c:8a:8e:5c:24:83:9e:c7:4b:
63:0f:8c:5f:e7:8d:0b:d0:7c:9a:04:5a:eb:bf:5c:
d2:86:c6:2c:e7:6f:d5:02:d0:69:18:ea:c6:e7:2a:
1d:b1:2f:d1:24:ad:a7:1a:a7:df:16:af:11:3a:fb:
be:61:6d:91:85:6e:1a:31:b3:ba:a1:6e:74:14:f8:
c0:70:18:d4:6c:e4:8b:98:84:78:5e:7f:d1:fe:7d:
30:27:b2:b7:a3:97:5a:23:d9:4a:87:7a:bb:bb:c5:
67:31:45:8e:86:ca:2b:3c:33:f8:d8:59:e4:7e:47:
ee:51:fd:2b:7c:e7:96:fe:d0:73:2e:4c:0f:d4:3e:
7b:31:a6:f4:bd:41:15:9d:2e:cd:f3:8e:01:b4:c4:
bc:73:ec:ee:cb:e2:f7:9e:3c:8c:9d:30:9d:25:74:
b5:57:13:11:38:e1:b3:82:a7:3a:63:36:d5:8a:fe:
06:7e:6a:67:9b:e5:f6:be:2a:21:44:16:42:81:37:
a6:4f:e4:c8:9b:2e:07:b0:b6:8a:64:e5:90:6b:20:
b4:4c:7c:4b:c5:23:38:c4:67:f7:f3:c0:1c:ff:04:
33:b9:77:23:a0:e6:5e:1f:3f:0f:d5:df:3a:f9:61:
1b:82:91:c5:07:b0:93:47:36:96:8b:75:4f:c8:58:
e3:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:5F:FE:65:FB:FD:BE:5B:74:65:A0:85:12:DF:0D:2A:36:24:BE:47
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/O1_-Zfv9vlt0ZaCFEt8NKjYkvkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.129.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f7:f6:a1:e3:3e:38:d6:a5:2e:f3:de:81:5f:14:62:e6:17:
de:a6:80:6c:7d:cd:93:11:15:ef:46:f4:98:6f:b8:19:31:81:
64:c4:ab:e0:6c:bd:40:84:d8:69:2c:f1:a3:fe:fd:a4:d2:7c:
61:4e:aa:13:37:b6:4a:ea:37:d4:48:a0:14:ff:b5:d3:6e:e0:
bf:27:ff:85:62:2a:9f:9a:3f:8b:d2:5a:25:bb:7e:3d:e1:e4:
d9:e3:a1:10:3c:99:b0:73:2c:90:87:3e:13:9b:60:5a:57:21:
d9:20:c3:7f:6a:48:5a:fa:7a:1f:e0:cf:0d:2e:78:5c:7d:7b:
fd:d3:26:8a:3a:28:48:0e:70:56:c2:af:ee:6a:84:e8:b7:95:
78:d6:8d:66:67:34:23:2b:dd:dd:fe:37:db:9e:a5:01:f8:69:
27:74:6a:af:6f:34:62:04:c7:05:60:40:95:63:37:40:7b:a2:
f6:d6:de:ed:9a:b9:16:41:9b:6b:c3:b9:2d:9a:29:06:bd:11:
52:db:af:05:e8:15:b7:df:38:f3:d9:94:94:05:72:ea:4a:be:
45:b3:c8:ef:70:ac:d7:7a:af:67:5d:9a:66:df:51:3b:0e:3a:
f9:3a:f3:a4:30:f2:3c:18:f6:8f:28:83:11:91:01:9b:b3:94:
b6:8a:a0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:53 2024 by rpki-client on console-fra.rpki-client.org