Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/L_QD4jOLIKOkUPvxiH-1vPrb4i8.roa
File: L_QD4jOLIKOkUPvxiH-1vPrb4i8.roa (raw, json)
Hash identifier: r8VtshSfjtqdSzBNSy098SqeEFgytua3NgbwZKK78x0=
Subject key identifier: 2F:F4:03:E2:33:8B:20:A3:A4:50:FB:F1:88:7F:B5:BC:FA:DB:E2:2F
Certificate issuer: /CN=19fb56adc9071d5e9fda2b669438b92bf863e58f
Certificate serial: 0231679E
Authority key identifier: 19:FB:56:AD:C9:07:1D:5E:9F:DA:2B:66:94:38:B9:2B:F8:63:E5:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GftWrckHHV6f2itmlDi5K_hj5Y8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/L_QD4jOLIKOkUPvxiH-1vPrb4i8.roa
Signing time: Sat 01 Jan 2022 05:55:48 +0000
ROA not before: Sat 01 Jan 2022 05:55:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21083
IP address blocks: 194.8.57.0/24 maxlen: 24
2001:67c:14d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36792222 (0x231679e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19fb56adc9071d5e9fda2b669438b92bf863e58f
Validity
Not Before: Jan 1 05:55:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ff403e2338b20a3a450fbf1887fb5bcfadbe22f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a9:0b:24:4c:fc:03:62:07:a4:26:7e:8d:2f:
d1:58:f8:43:38:10:19:ea:95:9a:49:06:b3:d4:0e:
da:f9:32:fc:1e:d4:4c:63:c3:59:3f:a3:b7:2a:7a:
38:e4:8d:58:66:2b:e0:c9:f4:fd:9e:ce:a4:38:c5:
40:6f:bb:3a:8a:0d:98:de:2f:40:1d:c9:5d:b7:c3:
f0:cc:f5:d4:fd:ee:08:ef:c6:fe:5c:fc:52:76:cf:
88:91:71:48:d6:15:58:e5:61:07:75:ad:0a:fe:76:
1d:08:e5:1a:ee:af:a7:f9:ca:28:1c:84:31:a6:4a:
51:83:3e:66:32:39:0f:c1:db:5e:8d:49:d7:b5:b2:
33:2a:cc:bc:c6:7c:8e:02:13:25:22:18:0b:4f:fd:
ea:b8:7b:98:f3:09:a3:7a:47:e8:0c:e2:13:7b:cb:
c7:da:fc:cd:35:d6:d7:2c:08:a2:8e:e5:3c:d5:e8:
e9:05:dd:d8:3e:b7:16:53:f2:f2:df:f0:af:bf:3c:
6a:ae:0c:35:00:34:60:25:6a:f5:70:7f:0c:77:a0:
53:98:5e:4c:b7:3c:7f:6f:0d:25:b3:6f:d5:db:28:
99:81:84:e2:dc:78:ff:29:6c:33:f6:21:ce:4b:90:
cb:8d:4c:b3:bc:6a:61:a8:86:da:39:31:7e:ab:4f:
81:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:F4:03:E2:33:8B:20:A3:A4:50:FB:F1:88:7F:B5:BC:FA:DB:E2:2F
X509v3 Authority Key Identifier:
keyid:19:FB:56:AD:C9:07:1D:5E:9F:DA:2B:66:94:38:B9:2B:F8:63:E5:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GftWrckHHV6f2itmlDi5K_hj5Y8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/L_QD4jOLIKOkUPvxiH-1vPrb4i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/618399-c53b-4cf2-930e-63eebe0325ec/1/GftWrckHHV6f2itmlDi5K_hj5Y8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.57.0/24
IPv6:
2001:67c:14d::/48
Signature Algorithm: sha256WithRSAEncryption
87:2e:fc:de:2d:01:99:d5:07:8c:ee:9c:e7:d6:20:cb:79:62:
68:43:9a:03:fb:cf:7e:d2:40:46:97:02:6b:0c:87:2b:5b:db:
06:b2:4c:75:82:d2:a8:f4:90:4f:b2:e3:fc:e8:b7:23:01:66:
14:79:48:dd:dd:6e:ef:04:f4:3d:78:50:f8:ae:00:b4:09:c7:
f7:27:c7:2f:4d:90:27:4a:d6:34:f0:04:37:e3:82:03:a5:16:
8c:aa:bc:10:1d:e5:57:23:d3:bb:3c:5a:cc:29:34:34:6e:23:
50:fb:c3:3f:57:89:95:c9:9c:01:e7:2e:d4:e9:47:6b:84:3e:
74:7d:cc:df:91:c5:57:0a:a7:dd:48:2f:2c:5d:fe:a3:76:bb:
cb:09:33:37:ce:db:5b:cf:34:1f:ea:35:2f:ad:cb:3e:3e:cc:
f6:19:b2:91:91:40:bb:ae:2b:5c:80:c2:86:05:1b:be:d9:e0:
d9:80:d9:70:c7:64:28:b3:c3:ad:9c:2f:33:3c:b3:a3:52:7a:
f5:93:af:91:4d:de:62:88:b6:44:14:c1:c7:3e:8f:11:d2:ca:
8b:ea:27:1e:2a:36:cd:72:08:b0:84:55:92:5c:66:4e:b2:ad:
46:4a:34:34:94:12:fd:0b:c3:88:b3:68:25:d9:5e:ee:64:a4:
3d:0d:37:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:29 2023 by rpki-client on console.sobornost.net