Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/4Dd1OC21gLRoPkwyaZHr1h2ErME.roa
File: 4Dd1OC21gLRoPkwyaZHr1h2ErME.roa (raw, json)
Hash identifier: nkefjGT04iqth0kuARZM9r/XXu4Ovo2WCb/kFV/cSkQ=
Subject key identifier: E0:37:75:38:2D:B5:80:B4:68:3E:4C:32:69:91:EB:D6:1D:84:AC:C1
Certificate issuer: /CN=af781c845339900f7e6b2033e63888b53ae57875
Certificate serial: 0696823F
Authority key identifier: AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/4Dd1OC21gLRoPkwyaZHr1h2ErME.roa
Signing time: Sat 01 Jan 2022 13:57:15 +0000
ROA not before: Sat 01 Jan 2022 13:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203536
IP address blocks: 194.59.14.0/23 maxlen: 23
194.59.14.0/24 maxlen: 24
194.59.32.0/23 maxlen: 23
2a0f:bc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110527039 (0x696823f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af781c845339900f7e6b2033e63888b53ae57875
Validity
Not Before: Jan 1 13:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e03775382db580b4683e4c326991ebd61d84acc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ef:f0:99:99:ad:17:bc:68:ee:71:0e:c5:60:
e6:8c:8b:1a:e3:4e:94:c6:2e:1d:f5:14:a7:db:d2:
18:fb:c3:e1:c2:41:01:fd:69:80:3e:90:c1:de:96:
80:0b:79:dc:da:20:5e:64:b6:a5:ba:2f:aa:59:89:
bf:95:54:96:b4:9e:8b:61:12:90:92:9a:14:9f:3e:
db:08:3c:01:c1:14:7e:6b:d1:f5:25:88:63:bb:eb:
63:08:ca:46:18:41:3f:76:d9:be:79:3f:04:f2:3d:
72:12:a0:2a:49:7a:6b:d8:02:bf:dc:b2:2d:66:5d:
64:e5:36:9a:2d:9d:bf:40:14:03:af:45:7d:c5:0f:
fb:44:12:27:83:12:fc:8b:82:75:c1:4f:04:4a:2b:
76:92:47:46:ac:36:dd:5d:f6:ff:e1:58:78:b7:ea:
7b:3c:0e:2d:be:04:b9:3e:75:03:56:c0:c8:92:89:
5d:4a:24:fe:81:5b:53:be:2e:a3:0a:66:62:8c:4b:
bb:ba:9e:22:d4:12:63:41:27:2e:81:fe:b8:03:87:
d5:3f:55:68:89:c7:d5:56:41:b2:c7:a5:4f:09:d9:
20:f0:40:c6:d9:58:49:0d:cd:48:8f:35:5d:63:cf:
62:e2:8e:18:14:8d:25:5b:8c:61:08:dc:f6:e8:21:
4b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:37:75:38:2D:B5:80:B4:68:3E:4C:32:69:91:EB:D6:1D:84:AC:C1
X509v3 Authority Key Identifier:
keyid:AF:78:1C:84:53:39:90:0F:7E:6B:20:33:E6:38:88:B5:3A:E5:78:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r3gchFM5kA9-ayAz5jiItTrleHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/4Dd1OC21gLRoPkwyaZHr1h2ErME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/d1c71d-aa50-4d78-8e52-5cf37a34830d/1/r3gchFM5kA9-ayAz5jiItTrleHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.14.0/23
194.59.32.0/23
IPv6:
2a0f:bc0::/29
Signature Algorithm: sha256WithRSAEncryption
2c:e5:c4:57:b5:f9:0e:bf:40:70:6d:41:a2:39:e9:15:a7:72:
4a:14:ba:ef:18:c0:a9:1b:b3:f7:e7:35:28:a3:c1:cd:e3:3b:
07:78:5c:1c:bb:8d:99:f5:53:3e:f4:0a:f9:c7:f8:d9:1d:f0:
1d:7c:11:6d:f4:55:ec:ee:b1:5e:31:49:d8:9b:4d:2c:66:88:
e8:4f:d8:b1:05:a9:40:e5:2d:e2:a1:28:50:38:43:95:96:d0:
6f:30:9f:52:b2:b5:33:1c:eb:bd:8f:58:13:a3:7c:4c:c3:5f:
1f:4c:f3:b8:b5:ff:34:57:8d:88:71:51:ea:61:ca:92:61:b6:
15:ce:e4:d3:c6:89:88:d8:66:2b:84:ed:fb:00:ed:88:b5:ee:
0f:2c:a1:4c:84:55:fc:c1:1c:0e:4f:29:a9:d7:91:21:a9:8b:
90:eb:0d:1a:d2:7e:b1:58:23:1c:53:11:c3:fa:48:fa:e2:00:
14:06:f0:8d:fd:e4:d7:66:00:c0:40:97:7a:7c:8a:04:67:ce:
45:c1:e9:1d:fb:85:9d:3a:43:63:9c:16:79:d2:f4:81:b9:37:
4c:27:59:76:a2:6c:62:fa:ef:c5:40:26:36:5e:28:30:19:05:
e8:60:ee:41:fd:aa:f6:eb:82:b6:18:4f:88:a3:e8:24:d6:70:
bf:83:54:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:17 2023 by rpki-client on console.sobornost.net