Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/899218-2a19-4d0f-9f1e-ef38e8ce33d1/1/k5t7ueYpKHoaH9pqU9zVhD1YIcA.roa
File: k5t7ueYpKHoaH9pqU9zVhD1YIcA.roa (raw, json)
Hash identifier: d1by08oHTxaaF1eGWzhzaDM42OlbslIBff4jgmujL9Q=
Subject key identifier: 93:9B:7B:B9:E6:29:28:7A:1A:1F:DA:6A:53:DC:D5:84:3D:58:21:C0
Certificate issuer: /CN=3afa2fc06e1aa9135c2631b73becc5957b023a93
Certificate serial: 033939D3
Authority key identifier: 3A:FA:2F:C0:6E:1A:A9:13:5C:26:31:B7:3B:EC:C5:95:7B:02:3A:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvovwG4aqRNcJjG3O-zFlXsCOpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/899218-2a19-4d0f-9f1e-ef38e8ce33d1/1/k5t7ueYpKHoaH9pqU9zVhD1YIcA.roa
Signing time: Sat 01 Jan 2022 10:05:13 +0000
ROA not before: Sat 01 Jan 2022 10:05:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 194.99.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54082003 (0x33939d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3afa2fc06e1aa9135c2631b73becc5957b023a93
Validity
Not Before: Jan 1 10:05:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=939b7bb9e629287a1a1fda6a53dcd5843d5821c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b4:9d:06:92:af:ef:af:1a:46:79:49:df:af:
b1:d3:ea:ed:2a:ff:1c:13:3d:0d:ba:17:fd:83:b6:
96:60:66:77:89:ae:60:5a:c1:6e:02:7a:44:c2:97:
48:5f:1f:df:e1:75:95:d5:a5:72:66:46:ee:91:12:
13:d9:6d:89:5e:84:fa:bb:bc:b6:0f:f4:4d:df:eb:
ff:a2:c2:a6:58:51:28:2e:c1:82:c9:68:4f:bb:e6:
5b:56:68:1a:9d:29:23:99:28:09:88:01:dc:5b:60:
6e:7b:bf:68:92:2d:b1:6e:95:86:a0:5e:0c:0e:14:
07:2b:58:fc:13:b7:73:78:e8:45:44:b2:4a:4b:45:
8f:bf:13:e8:2d:ae:c2:ec:bf:73:a5:e8:55:4a:a3:
43:87:f4:1d:77:a1:35:b4:e1:dd:c9:7b:4d:4e:27:
34:49:f6:5e:4d:0a:b1:08:cc:89:07:60:0a:e7:5c:
7b:5f:0e:ef:31:ac:3d:de:6f:4e:5a:28:46:56:16:
9e:ff:15:84:bf:36:0f:01:28:de:4b:bf:53:00:53:
3e:f2:16:2d:f3:a6:ae:0e:e9:3a:0a:6c:a4:cb:d1:
78:fd:74:6f:e3:c7:35:42:e9:5c:06:a5:dc:2c:1e:
d3:02:3a:82:14:40:35:db:76:91:75:b2:02:dd:0e:
13:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:9B:7B:B9:E6:29:28:7A:1A:1F:DA:6A:53:DC:D5:84:3D:58:21:C0
X509v3 Authority Key Identifier:
keyid:3A:FA:2F:C0:6E:1A:A9:13:5C:26:31:B7:3B:EC:C5:95:7B:02:3A:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvovwG4aqRNcJjG3O-zFlXsCOpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/899218-2a19-4d0f-9f1e-ef38e8ce33d1/1/k5t7ueYpKHoaH9pqU9zVhD1YIcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/899218-2a19-4d0f-9f1e-ef38e8ce33d1/1/OvovwG4aqRNcJjG3O-zFlXsCOpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.12.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:60:7e:47:4f:80:dd:7a:7f:d2:d6:fa:3b:9a:84:e7:93:f7:
f5:8d:f9:63:54:ec:3a:6f:72:66:e6:45:46:d6:b2:8b:c7:77:
50:59:c6:86:44:0b:2b:e9:38:d1:21:c5:53:19:34:27:e2:d4:
94:74:21:ce:9f:d8:c7:ca:e1:51:72:0a:46:ca:33:c7:9a:8e:
8e:a7:31:38:ef:90:14:dd:5c:5f:74:b9:2a:3a:3c:f7:aa:86:
f4:43:7b:dd:04:a3:46:cb:ef:6e:f6:31:ef:bf:5d:0c:0f:2a:
4e:02:03:25:19:63:2e:f0:ff:78:b3:2a:f9:83:f6:11:10:86:
c8:ce:06:68:69:bf:93:da:55:3b:bc:90:f7:b2:8f:91:c0:45:
78:7b:ac:1f:e5:cc:dc:09:3f:26:c1:35:db:55:5f:14:a0:b0:
31:eb:76:67:d5:52:f2:32:7f:3f:3d:bf:7f:a3:35:67:f4:46:
fa:f1:ec:db:71:39:bd:65:74:7b:d2:27:c8:25:9a:5e:7b:0e:
2b:0f:99:7e:1a:b5:77:76:73:e2:5b:ab:4b:e7:f6:74:0f:09:
b6:95:a9:09:03:00:f2:16:ff:9c:84:d6:76:c5:e5:77:07:48:
83:42:3b:57:2e:89:06:f9:94:df:32:c1:c6:cd:66:f5:41:98:
04:8d:1f:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:56 2023 by rpki-client on console.sobornost.net