Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/Xf2rGZGXM9ffkqMfDnUQzb3y2eg.roa
File: Xf2rGZGXM9ffkqMfDnUQzb3y2eg.roa (raw, json)
Hash identifier: caBOdH6c0wdwf4jkT7sJPp8oTC0LcFK+M3pvtfRK2kc=
Subject key identifier: 5D:FD:AB:19:91:97:33:D7:DF:92:A3:1F:0E:75:10:CD:BD:F2:D9:E8
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A26813B
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/Xf2rGZGXM9ffkqMfDnUQzb3y2eg.roa
Signing time: Thu 28 Apr 2022 07:53:10 +0000
ROA not before: Thu 28 Apr 2022 07:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204281
IP address blocks: 194.12.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170295611 (0xa26813b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5dfdab19919733d7df92a31f0e7510cdbdf2d9e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:91:a0:b1:6f:b8:55:fd:77:e4:b7:66:ea:dc:
b7:1f:ac:fb:fa:43:fe:6f:4d:b5:21:84:41:25:87:
b4:f4:da:0f:e2:68:10:dc:2d:49:43:8d:99:65:17:
d9:7d:38:f0:97:91:67:8a:05:48:ac:54:fa:3f:44:
8f:b1:b6:86:b7:6c:0a:8f:4e:bc:a5:81:52:de:50:
ec:19:5a:5c:b1:22:4d:a5:24:d4:76:5d:65:66:6b:
6e:d2:17:b6:23:d8:df:27:0f:ff:e0:c1:af:35:86:
06:5d:e4:19:e6:37:f4:3f:66:ce:2b:5a:bb:92:d3:
26:aa:81:2a:1d:41:e1:8c:74:53:12:c8:a0:12:f7:
1b:f8:1e:b6:03:40:16:05:96:1b:41:33:61:cf:f4:
82:7b:07:45:ad:6f:70:7e:3b:c3:9b:75:d4:e0:57:
b1:38:6e:f0:6b:91:ab:84:d1:7a:9b:28:47:02:85:
7a:dc:dc:27:83:f3:3a:37:6c:58:50:f6:22:fc:85:
8d:0f:00:b5:0e:56:b3:c5:9c:4e:8f:72:ae:a4:a0:
c8:2d:c2:c2:bb:69:4c:3e:36:0c:13:c0:d5:65:1f:
c3:b4:b9:4b:be:2f:eb:e5:e8:49:0a:16:32:6c:89:
5f:fb:96:48:a9:ee:ac:c5:6b:0e:02:ca:02:34:40:
74:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:FD:AB:19:91:97:33:D7:DF:92:A3:1F:0E:75:10:CD:BD:F2:D9:E8
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/Xf2rGZGXM9ffkqMfDnUQzb3y2eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.12.237.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:c2:7d:50:3e:dd:78:28:2b:2c:1c:f4:6b:a6:28:b1:37:30:
59:5e:02:1a:5b:98:50:b9:3b:85:55:9c:fa:8d:53:e6:3b:da:
11:29:7e:df:e1:32:40:bc:c7:de:c6:11:d7:24:a9:75:5b:aa:
54:db:3f:a5:e8:57:61:25:16:71:d0:b1:9d:e3:68:42:17:4b:
d9:8e:a5:4b:13:46:86:ad:69:a3:bb:92:03:62:cb:c9:50:19:
37:da:19:1b:a9:c7:a9:cf:b4:24:fd:5c:b0:5b:de:36:d0:b6:
65:42:4c:1f:ec:01:45:75:99:a8:3f:fa:32:d4:3e:41:3f:3f:
df:13:64:91:f3:71:7a:76:ff:d2:69:6a:48:dd:06:61:c0:e5:
68:9a:de:1a:4a:d7:be:95:e7:59:1f:01:39:4a:4b:3e:a1:71:
a7:c6:a3:ca:6b:12:55:91:31:6f:e4:fc:9e:07:59:fc:a2:6d:
e5:23:a7:a3:30:25:e7:4e:c2:d4:78:cb:eb:09:a8:cf:81:8e:
f3:3c:23:41:c1:f9:fa:44:a8:93:aa:a3:46:0e:a5:2a:d6:06:
44:aa:d2:e6:7f:d7:51:69:8c:1a:a4:9c:0f:0a:75:45:73:2b:
6d:a5:38:5b:fc:88:09:6b:c6:d8:ae:00:3a:03:f8:10:60:f0:
a8:9f:b1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:19 2024 by rpki-client on console-ams.rpki-client.org