Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/M56ut07zwfgTJvLz0833YRVvHis.roa
File: M56ut07zwfgTJvLz0833YRVvHis.roa (raw, json)
Hash identifier: FSjfAH+XsVmUvkCpIW35w2srzvi2pnGyW3bwGa0paAc=
Subject key identifier: 33:9E:AE:B7:4E:F3:C1:F8:13:26:F2:F3:D3:CD:F7:61:15:6F:1E:2B
Certificate issuer: /CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Certificate serial: 367063AD
Authority key identifier: 41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/M56ut07zwfgTJvLz0833YRVvHis.roa
Signing time: Thu 07 Apr 2022 12:34:02 +0000
ROA not before: Thu 07 Apr 2022 12:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25211
IP address blocks: 192.109.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 913335213 (0x367063ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41f5a10e4fd2655adbbb40ede18b2615ac558ea9
Validity
Not Before: Apr 7 12:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=339eaeb74ef3c1f81326f2f3d3cdf761156f1e2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:59:4b:d3:d8:28:b1:40:29:f5:76:f9:ee:fe:
14:34:8e:03:ea:c5:8b:20:36:0e:93:2f:db:69:5d:
af:e4:ef:ee:71:6a:92:59:cf:ce:22:69:1b:37:b9:
8a:99:8a:16:2e:54:d4:5b:fa:dd:2f:39:f4:f6:dd:
8b:22:c2:a4:85:26:88:b4:f4:07:1a:65:40:06:eb:
14:6f:4d:2b:ca:8d:80:41:19:72:ef:74:c2:e4:74:
2b:a4:a3:1b:55:0c:11:e7:0d:64:b0:df:5b:49:ca:
b7:67:ca:dc:3f:f4:44:36:c0:54:3f:59:6d:e0:1b:
a5:04:50:7c:f6:d1:8e:4f:08:d9:d7:86:41:84:a0:
d8:69:25:6f:e8:6e:12:b2:08:9d:56:40:48:50:62:
3e:e0:1f:c1:4a:f3:8d:36:d0:1f:b3:ab:1a:79:f3:
5e:63:89:27:86:7c:d5:c7:0c:5f:a7:5e:f5:e3:75:
7d:dc:c4:be:8b:d0:14:33:c9:bf:f9:cb:1e:2a:a5:
db:26:67:5b:ac:08:67:9e:bb:3e:9c:33:d5:76:38:
17:eb:2a:1d:57:8f:60:5b:2d:ff:cc:66:32:ab:6d:
61:4d:90:57:63:85:aa:df:49:1d:80:3a:5f:13:87:
92:ef:43:a1:c7:0b:a3:f7:1d:33:cb:2f:56:92:66:
83:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:9E:AE:B7:4E:F3:C1:F8:13:26:F2:F3:D3:CD:F7:61:15:6F:1E:2B
X509v3 Authority Key Identifier:
keyid:41:F5:A1:0E:4F:D2:65:5A:DB:BB:40:ED:E1:8B:26:15:AC:55:8E:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/M56ut07zwfgTJvLz0833YRVvHis.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/8d3c82-e403-4da6-b315-8790206f0d74/1/QfWhDk_SZVrbu0Dt4YsmFaxVjqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.201.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:61:db:9c:98:ec:4a:97:df:f1:6e:a5:64:06:64:fd:51:f0:
6b:fe:ae:d6:10:5b:ce:76:ff:8d:7e:0f:25:d5:af:c3:7b:83:
05:95:7c:0e:04:02:96:76:4c:26:43:cd:b7:bc:79:2d:8e:7a:
66:c7:72:3d:c2:2a:5f:a2:87:a1:94:93:80:a7:d6:9d:b7:fb:
90:91:26:68:78:23:18:61:fe:f8:92:89:c8:0b:24:9e:06:4b:
ef:23:24:e5:f5:2f:f9:87:74:fc:da:1d:3e:c9:ea:67:30:70:
cc:08:eb:19:54:7f:16:07:77:75:11:80:83:c4:92:8f:7a:17:
b7:ec:af:5f:0d:a1:90:e3:dd:5d:f7:73:a2:9f:d2:31:92:83:
c7:de:06:c6:1a:54:3c:ae:ff:51:bf:ae:eb:ce:af:9a:fb:02:
8b:a8:d0:32:cb:1b:82:db:c2:da:0a:c6:9e:b9:61:3a:66:74:
9b:ac:1a:3a:e8:15:12:77:b1:c8:1d:96:4f:7b:ee:40:ac:84:
0d:72:6e:4e:e6:d2:2e:73:28:d5:a7:ed:49:ba:1b:53:df:01:
eb:04:02:4a:e0:ba:8f:60:ed:ac:44:c3:28:9b:cf:47:0d:45:
6a:cc:61:30:4a:8a:aa:13:65:e9:e9:20:32:21:95:fa:87:cc:
59:67:9f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:01 2024 by rpki-client on console-ams.rpki-client.org