Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/C4-U4R40iNEVciJdqFjyrLsw-tg.roa
File: C4-U4R40iNEVciJdqFjyrLsw-tg.roa (raw, json)
Hash identifier: pfKfCF8YMf62ZBvfZFZG6fc3eiQmG2qKRUsUgL5Q+dU=
Subject key identifier: 0B:8F:94:E1:1E:34:88:D1:15:72:22:5D:A8:58:F2:AC:BB:30:FA:D8
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 063BF923
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/C4-U4R40iNEVciJdqFjyrLsw-tg.roa
Signing time: Sat 01 Jan 2022 06:52:34 +0000
ROA not before: Sat 01 Jan 2022 06:52:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42947
IP address blocks: 194.41.124.0/23 maxlen: 23
194.41.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104593699 (0x63bf923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jan 1 06:52:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b8f94e11e3488d11572225da858f2acbb30fad8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:25:4f:a2:f8:dc:5d:d1:02:5e:59:72:e0:4b:
6c:5b:cf:68:ed:b5:c9:97:22:6f:be:44:df:89:e2:
64:ef:01:45:3e:9e:38:67:1c:c7:49:e5:a7:d9:37:
76:b1:21:83:8a:11:44:23:5c:33:92:9d:bd:8a:ae:
ee:cb:2a:43:86:2c:e9:2d:42:6b:96:6b:e4:0c:94:
e7:93:3b:2c:06:27:cf:ea:7a:46:f2:56:c0:08:67:
fe:f8:dd:e3:f4:31:6e:df:36:c9:54:85:d4:93:b4:
d4:6a:52:d4:12:a3:00:54:22:4d:89:c5:ce:b6:77:
3a:a2:d4:84:75:a1:2f:7f:96:5d:7e:e6:ee:ea:8d:
1c:dc:68:92:0d:ed:61:b1:e7:e7:2c:49:51:f7:7c:
4c:79:cd:fb:a1:f1:fa:02:ac:13:9e:81:bf:24:4a:
41:21:1f:09:43:31:0d:7a:9d:1e:16:69:8b:b7:44:
58:5c:92:c9:bf:85:91:5a:03:e1:83:f8:3c:5b:7c:
d1:8b:44:ac:3f:1b:53:de:fa:83:52:1d:2a:0c:da:
c5:93:2a:ea:ef:08:9f:a6:b1:35:15:c9:5c:a1:4b:
06:a4:68:b6:24:e4:b0:84:99:bf:00:73:83:bc:1a:
77:8e:2c:f2:f8:9a:eb:17:d5:05:b9:15:f1:7a:9f:
2b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:8F:94:E1:1E:34:88:D1:15:72:22:5D:A8:58:F2:AC:BB:30:FA:D8
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/C4-U4R40iNEVciJdqFjyrLsw-tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.41.124.0/22
Signature Algorithm: sha256WithRSAEncryption
af:12:ea:92:c8:f6:ca:dc:cf:3e:26:5e:59:81:46:21:54:45:
a5:5b:35:c4:63:e5:80:c1:4c:62:8b:02:4c:54:87:0d:ef:9d:
60:fe:8b:e3:5b:12:9d:34:74:7e:b7:37:a4:aa:5b:ce:21:4a:
cf:7f:48:1b:57:f9:15:f1:bf:d8:ab:6a:db:03:3f:a3:40:f8:
01:b7:45:a7:c4:16:06:ed:f7:5d:c3:06:06:8a:04:a1:a5:a4:
0a:e6:f9:73:86:06:ad:51:df:fd:2a:7c:8c:c3:72:12:d9:e9:
65:2a:ef:d7:b2:98:a2:d2:03:fb:d2:0e:11:cc:3d:0f:73:9a:
9f:14:ee:8e:75:df:be:30:59:1a:51:ad:9b:29:8d:61:b1:86:
4f:5e:1a:f2:01:6e:34:31:93:37:7c:38:15:98:44:e3:7d:cb:
2c:bc:1a:38:2e:ca:54:f9:fd:12:f4:8f:79:6a:ff:c8:81:04:
df:d3:a3:d6:85:9a:57:89:23:b8:b4:af:81:af:6c:1d:64:67:
37:75:05:60:b8:79:06:cd:24:0a:bf:86:1e:e7:a0:5b:fe:89:
a7:de:1b:19:c7:43:eb:81:63:f3:bf:f2:d4:dd:15:0c:f5:2a:
c7:53:bd:a4:65:0c:db:8d:26:5d:05:b0:57:18:a2:90:86:50:
48:db:f6:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:40 2024 by rpki-client on console-fra.rpki-client.org