Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dudNGHv7XS1d0JGx3Oy4Q-V3hmY.roa
File: dudNGHv7XS1d0JGx3Oy4Q-V3hmY.roa (raw, json)
Hash identifier: QZO5F9Ottv34MK9o1UGUHHYpFbhgf54gnJEEp6xa4nA=
Subject key identifier: 76:E7:4D:18:7B:FB:5D:2D:5D:D0:91:B1:DC:EC:B8:43:E5:77:86:66
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17A4723E
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dudNGHv7XS1d0JGx3Oy4Q-V3hmY.roa
Signing time: Sat 01 Jan 2022 04:54:03 +0000
ROA not before: Sat 01 Jan 2022 04:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39526
IP address blocks: 194.56.76.0/24 maxlen: 32
185.214.71.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396653118 (0x17a4723e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76e74d187bfb5d2d5dd091b1dcecb843e5778666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:72:df:d3:29:5c:be:8a:9c:74:e6:20:7c:f4:
b3:26:e1:20:ed:58:38:8a:80:0c:85:36:59:9b:1f:
06:7b:db:79:9d:00:16:33:f3:68:95:17:02:4a:6a:
51:29:15:e5:ad:df:1d:d3:54:cb:6c:b7:ca:c9:c4:
e0:02:32:e4:70:42:a0:1e:94:ac:e6:ca:18:42:41:
92:ea:1d:db:4d:1d:42:00:71:15:d7:0c:79:1a:35:
1c:27:a4:7c:d6:50:d9:16:98:70:95:ed:6f:46:08:
a9:b7:6a:37:42:94:69:13:24:4a:31:d5:2d:86:6b:
ec:4d:b5:4f:ab:d5:e6:86:ba:d8:22:16:c6:2b:fd:
43:f5:5e:99:f1:3e:1b:fb:1c:2e:c3:0d:94:14:94:
b7:02:ac:be:b7:8f:c2:2f:1f:7a:1b:78:06:99:98:
b3:59:3b:7e:37:78:c7:c4:56:d9:b3:db:3e:65:b1:
f1:56:dc:ae:56:3f:f4:fd:25:28:2e:6e:5b:8a:a3:
4c:c3:49:a8:d0:1a:55:d9:c6:a3:30:a4:17:62:12:
c4:80:cb:cb:28:6b:58:23:80:82:09:de:a4:39:31:
65:2c:32:62:d2:50:e7:f1:bf:98:a1:b5:a7:57:4e:
b0:2c:d4:ca:67:8f:e5:36:66:90:fd:5d:52:f5:f6:
d4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:E7:4D:18:7B:FB:5D:2D:5D:D0:91:B1:DC:EC:B8:43:E5:77:86:66
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/dudNGHv7XS1d0JGx3Oy4Q-V3hmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.214.71.0/24
194.56.76.0/24
Signature Algorithm: sha256WithRSAEncryption
62:74:db:d2:bc:b1:aa:d5:f6:e8:19:70:29:9d:16:c5:b7:80:
3f:e0:a3:36:e8:73:45:5c:af:c8:4e:84:a9:6e:bc:65:5e:d9:
d5:d9:89:0e:0e:59:b5:0e:b3:17:3c:76:14:e5:32:84:7b:c5:
b2:eb:a2:98:24:ec:25:66:6e:69:be:d1:da:1a:0d:8c:61:d3:
29:a0:51:a3:1a:fb:f2:ba:34:0e:ea:60:3d:c0:bd:3d:3f:fd:
79:c5:5a:21:73:56:97:2c:bb:22:56:9d:2c:58:f4:73:ed:e3:
e0:80:e0:db:79:47:d6:d9:54:68:6a:4a:6d:92:a7:74:7d:08:
f8:10:49:70:07:85:f3:c1:ba:52:66:e6:95:e0:8c:0f:6c:2b:
c4:76:e5:39:83:5e:8e:b8:b7:b3:b7:bc:84:82:e9:73:4b:4a:
01:b2:c8:eb:f9:85:1b:6b:a9:61:7a:ce:a5:d2:0e:87:9e:9d:
f9:63:c1:56:b6:db:17:7c:7d:34:b2:f0:8e:de:ed:66:1c:44:
50:5d:71:d2:41:9b:58:4c:99:de:a9:81:f4:59:19:9b:07:5a:
5a:72:06:7d:eb:f1:b1:af:70:2a:97:65:19:10:d7:ee:4e:00:
98:c1:78:7c:ed:ba:98:74:3a:9a:31:e7:3e:a6:f7:c6:88:aa:
89:40:e0:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org