Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/0bf196-65ab-4e74-a61a-819164b92b88/1/d16UN12m3nVmqFRFwofi0-7wwDI.roa
File: d16UN12m3nVmqFRFwofi0-7wwDI.roa (raw, json)
Hash identifier: ib+5WWybGED0SCarTA1YZjI9IP8X5U2p1Lt/VgeSfZY=
Subject key identifier: 77:5E:94:37:5D:A6:DE:75:66:A8:54:45:C2:87:E2:D3:EE:F0:C0:32
Certificate issuer: /CN=c51791a5811c7f6ed81fd441b50265af5e9c61b0
Certificate serial: 0904EA68
Authority key identifier: C5:17:91:A5:81:1C:7F:6E:D8:1F:D4:41:B5:02:65:AF:5E:9C:61:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xReRpYEcf27YH9RBtQJlr16cYbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/0bf196-65ab-4e74-a61a-819164b92b88/1/d16UN12m3nVmqFRFwofi0-7wwDI.roa
Signing time: Sat 01 Jan 2022 01:59:28 +0000
ROA not before: Sat 01 Jan 2022 01:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48095
IP address blocks: 194.4.168.0/23 maxlen: 23
194.4.170.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151317096 (0x904ea68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c51791a5811c7f6ed81fd441b50265af5e9c61b0
Validity
Not Before: Jan 1 01:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=775e94375da6de7566a85445c287e2d3eef0c032
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a2:eb:24:fa:35:b5:f2:39:d3:f4:5e:53:dd:
57:ef:62:17:5d:50:10:e3:e9:0e:bf:33:3c:28:e0:
98:07:dd:8f:8f:c4:f6:a6:7d:eb:0b:e9:d4:20:f8:
5e:bf:c5:3d:e4:5f:01:39:01:2e:d4:d7:e8:e0:09:
12:1d:bf:f8:8a:ca:22:c9:86:59:92:b4:86:25:9b:
69:13:0b:49:95:16:41:f9:d3:be:f7:1e:c0:bb:26:
99:e4:57:8c:44:ec:f7:86:c0:c2:f2:13:fe:0b:ce:
0d:fc:c5:95:6b:7a:f5:3c:29:db:18:83:76:4f:65:
82:34:a6:57:7f:82:11:d4:b6:a2:8f:88:d8:e5:fd:
69:02:fa:ee:13:3a:34:28:cd:37:c4:35:a2:2e:21:
83:26:dc:50:67:a1:1c:cc:7c:2f:d0:0f:ae:c7:a0:
18:df:14:89:ee:e4:03:6a:70:94:b6:b9:92:50:2f:
b5:4a:d4:a6:b2:cb:ff:23:da:7c:e6:13:58:dd:a1:
31:d1:cd:07:b9:f9:54:29:cf:a0:fd:81:a2:19:2f:
9b:d0:25:f5:5a:19:7a:84:ab:70:02:29:31:56:39:
8e:bf:e2:7e:67:8d:d6:77:81:e5:6d:3e:c6:8a:a5:
86:51:08:ee:c2:a0:6e:d8:73:88:14:9c:fd:70:48:
21:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:5E:94:37:5D:A6:DE:75:66:A8:54:45:C2:87:E2:D3:EE:F0:C0:32
X509v3 Authority Key Identifier:
keyid:C5:17:91:A5:81:1C:7F:6E:D8:1F:D4:41:B5:02:65:AF:5E:9C:61:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xReRpYEcf27YH9RBtQJlr16cYbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/0bf196-65ab-4e74-a61a-819164b92b88/1/d16UN12m3nVmqFRFwofi0-7wwDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/0bf196-65ab-4e74-a61a-819164b92b88/1/xReRpYEcf27YH9RBtQJlr16cYbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.4.168.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:52:6a:a0:ac:96:2c:9c:7c:ca:ed:e0:4f:76:e9:0d:f6:0a:
72:c9:fc:df:54:b2:0d:3c:a6:42:61:15:f2:96:8c:63:eb:cd:
a3:06:a5:76:78:bb:40:b5:8e:60:2b:32:75:03:3a:51:41:22:
cc:cc:a3:e3:f9:eb:09:e2:ad:c0:e3:02:3e:ec:ac:36:c2:3d:
0e:17:46:c0:d8:fb:66:e5:69:73:5c:da:d7:f9:ff:db:12:0d:
49:80:a0:5b:ea:63:97:49:04:0b:18:24:51:a1:84:d3:11:a5:
cc:86:2b:e5:69:f8:fd:5b:2d:a7:cb:bd:aa:2a:0b:59:69:5f:
1b:19:99:f9:57:53:53:2f:b0:ad:7f:33:44:3e:23:ec:67:39:
fc:e7:9c:1f:f8:cd:46:ff:6c:64:10:8f:6d:bd:6b:34:db:1f:
46:b4:9c:c5:44:52:30:90:d3:90:04:96:18:97:c6:41:a5:f5:
4e:61:87:97:4c:f1:cc:39:c4:2b:08:bb:79:02:e1:08:d9:56:
d7:7c:7d:16:cd:23:37:88:46:aa:7e:65:cb:63:08:95:3a:c0:
08:66:73:8e:2b:97:6e:c6:e3:f8:95:2c:36:77:41:b3:2a:0f:
3a:68:60:31:07:52:51:03:14:3a:86:e6:87:2f:a2:72:cd:80:
12:04:e5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:56 2024 by rpki-client on console-fra.rpki-client.org