Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/10WqY2iBEp81SsqONIc3Dy8E_WI.roa
File: 10WqY2iBEp81SsqONIc3Dy8E_WI.roa (raw, json)
Hash identifier: bbpFzf48GCX9zCR0n6O5yMOA0lGAPqUuq+p7bP+vQzk=
Subject key identifier: D7:45:AA:63:68:81:12:9F:35:4A:CA:8E:34:87:37:0F:2F:04:FD:62
Certificate issuer: /CN=3b2616b6cf7bb31efbfc153768625a4d504b24df
Certificate serial: 02885683
Authority key identifier: 3B:26:16:B6:CF:7B:B3:1E:FB:FC:15:37:68:62:5A:4D:50:4B:24:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OyYWts97sx77_BU3aGJaTVBLJN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/10WqY2iBEp81SsqONIc3Dy8E_WI.roa
Signing time: Sat 01 Jan 2022 08:55:20 +0000
ROA not before: Sat 01 Jan 2022 08:55:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39337
IP address blocks: 194.126.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42489475 (0x2885683)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b2616b6cf7bb31efbfc153768625a4d504b24df
Validity
Not Before: Jan 1 08:55:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d745aa636881129f354aca8e3487370f2f04fd62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:2f:0c:bd:b1:c5:f6:ac:38:cf:6f:61:f7:cb:
eb:5a:46:e0:d4:34:f8:41:59:49:0a:b4:86:fb:ed:
35:65:27:cb:ef:f6:cc:63:2c:08:e1:3d:f2:64:97:
70:0e:9f:c6:8d:44:71:07:4f:c0:d3:dc:20:a2:0d:
32:6d:59:a6:28:cb:5b:4b:c3:5b:ff:64:6e:ac:92:
51:9e:ee:c2:a2:4c:c5:b2:59:4b:8b:5d:fd:b5:04:
f7:64:bc:33:a4:57:ed:af:35:3d:8b:3f:a3:d1:72:
b7:21:64:b3:e7:85:1c:87:53:37:1c:a8:9f:3d:61:
bf:43:6d:0d:78:1a:0b:a8:5d:06:4c:eb:fd:42:94:
f4:ad:27:7b:1f:3b:c8:93:56:5a:c4:49:cb:ea:2f:
d8:96:0d:b6:3e:b4:04:43:a3:6a:80:ca:1e:1b:fe:
a9:3e:bc:af:69:28:7a:e6:d3:9f:bb:d2:78:f3:14:
58:a9:0d:0c:b2:40:8b:ab:a0:2e:8f:80:be:40:50:
b5:a1:1d:74:cf:46:df:c9:5a:17:f6:31:a7:b4:cf:
37:37:20:8a:ce:f4:56:4c:2a:eb:30:c0:43:7d:f8:
13:e7:ee:e8:69:75:10:3f:b0:63:01:f8:69:2e:de:
0a:07:5b:68:77:25:0e:ff:b6:18:4d:e6:82:99:09:
cd:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:45:AA:63:68:81:12:9F:35:4A:CA:8E:34:87:37:0F:2F:04:FD:62
X509v3 Authority Key Identifier:
keyid:3B:26:16:B6:CF:7B:B3:1E:FB:FC:15:37:68:62:5A:4D:50:4B:24:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OyYWts97sx77_BU3aGJaTVBLJN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/10WqY2iBEp81SsqONIc3Dy8E_WI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/720539-d36a-44dc-93e7-5a537629a439/1/OyYWts97sx77_BU3aGJaTVBLJN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.160.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:36:e6:a4:84:b6:f2:43:a2:5c:e0:4a:dd:c4:f5:7c:3e:d9:
1d:0c:9d:80:b1:c3:0c:4f:62:1e:b9:2e:f8:1c:e6:94:e0:4a:
40:af:e9:14:00:8e:c7:c4:27:02:8d:7e:cc:31:13:27:67:da:
f6:67:29:f1:72:93:ff:c7:b3:45:ab:3e:89:a0:91:f8:23:b5:
28:e1:0f:c2:31:de:4e:c5:23:93:8c:00:ef:72:46:73:25:ce:
e6:b7:07:ce:9a:fa:e6:6f:48:1d:93:e3:cd:d4:41:aa:74:11:
b7:5d:b2:35:25:86:a9:3f:a1:b6:8b:09:19:1a:5f:29:12:3d:
e0:c5:b4:4b:37:77:a8:78:70:30:d7:ac:4c:16:26:8a:f1:6d:
85:8b:e1:b7:53:42:00:a3:93:a6:ff:18:8b:76:77:2f:6e:18:
a4:4c:70:89:0c:ef:ec:a0:19:08:a6:73:67:d6:8e:1e:27:15:
72:71:82:0f:4b:9b:48:ea:1f:9e:71:18:dd:aa:6a:35:b9:8c:
a9:2f:5f:4b:ff:65:1a:4f:1d:95:b8:98:67:b1:4e:e4:3d:19:
a5:eb:ee:72:a6:24:61:98:04:ff:db:d8:71:f1:d1:1a:43:e1:
4b:4f:a4:de:1a:74:50:05:90:87:36:68:7a:ac:a8:27:54:76:
e1:dd:f7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:40 2024 by rpki-client on console-ams.rpki-client.org