Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/DGYuBGuU1cXO6KKtHg8S7XJdhlw.roa
File: DGYuBGuU1cXO6KKtHg8S7XJdhlw.roa (raw, json)
Hash identifier: viv+dK9oA97820+mOduXlv8aqdIg2yAeCOj3AKgYLeI=
Subject key identifier: 0C:66:2E:04:6B:94:D5:C5:CE:E8:A2:AD:1E:0F:12:ED:72:5D:86:5C
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 0183217907C50702AF18AD3C643A1C578EF3
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/DGYuBGuU1cXO6KKtHg8S7XJdhlw.roa
Signing time: Fri 09 Sep 2022 08:58:43 +0000
ROA not before: Fri 09 Sep 2022 08:58:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28742
IP address blocks: 194.21.56.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:79:07:c5:07:02:af:18:ad:3c:64:3a:1c:57:8e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Sep 9 08:58:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c662e046b94d5c5cee8a2ad1e0f12ed725d865c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9d:e5:25:13:3c:8e:cc:c0:a7:d1:ba:89:97:
e2:40:53:4e:8c:66:62:09:f9:fb:7d:03:09:21:3c:
88:a8:93:48:f7:3e:78:c7:c9:7c:0d:fa:fa:bb:b6:
3e:05:61:67:33:8c:52:b6:a5:e5:47:f5:b2:98:dc:
63:e9:0a:08:bf:a3:ee:a0:7f:31:77:32:95:ca:6c:
19:30:55:65:e1:88:e7:12:72:e8:62:2d:32:6c:68:
de:86:ce:ef:e6:c5:48:67:fb:77:33:62:dc:32:84:
db:23:ec:ac:c5:b6:a6:60:f9:da:24:b0:23:12:ea:
eb:2e:84:74:27:36:31:ed:64:81:8c:8c:44:4d:37:
13:98:e3:93:fc:11:d0:c6:74:73:ce:b5:a3:65:fd:
79:47:50:3c:44:07:ca:c6:bf:8f:34:25:8e:b5:90:
67:df:53:ac:b4:d7:cb:65:c8:5b:38:b7:15:40:03:
65:78:53:52:03:a3:2a:59:d3:fc:a4:df:f8:dd:23:
41:c7:e0:7c:c2:da:64:ea:ca:a4:44:f8:40:79:33:
66:d8:4d:87:55:3c:be:e4:5a:bb:64:fe:ae:b3:8c:
fb:b9:c5:38:f2:be:0d:dc:22:9d:51:4a:2e:cd:71:
94:e3:3b:32:bd:dc:e5:70:a0:77:a4:93:26:a6:6c:
61:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:66:2E:04:6B:94:D5:C5:CE:E8:A2:AD:1E:0F:12:ED:72:5D:86:5C
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/DGYuBGuU1cXO6KKtHg8S7XJdhlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.21.56.0/23
Signature Algorithm: sha256WithRSAEncryption
72:ee:82:31:a0:14:7c:2e:43:1a:87:fd:c4:93:65:5f:20:e2:
47:b0:36:23:06:04:74:c5:f4:f8:26:6b:78:21:ab:e4:04:fa:
54:7c:46:35:01:f1:45:4a:fc:37:5a:a2:f8:12:0c:09:14:3d:
eb:f3:5f:88:d1:d0:a6:b6:b5:94:09:76:ee:d2:d4:bd:b7:0d:
36:52:84:98:e9:80:27:d0:57:f8:e8:6b:1e:29:a1:4b:20:c4:
8b:47:3c:a8:3e:82:75:05:fb:12:a3:4e:fb:59:7c:a8:d2:3d:
45:66:f7:20:62:fb:fd:6e:05:dd:9c:5c:62:2c:68:c1:8e:0b:
1d:13:68:b1:48:6a:fc:4a:e4:21:d1:14:84:f0:7b:dc:5c:0f:
4a:8a:f4:66:32:3d:b8:1b:47:49:08:5a:6a:1d:0e:28:eb:5f:
02:47:1f:e5:fc:1b:95:44:17:55:f2:d9:17:22:18:12:e6:60:
b9:e1:45:85:52:9d:80:b5:44:7d:12:dd:cf:e4:2e:bb:b9:1f:
6f:b0:fe:ea:00:3e:12:6a:c4:28:15:e8:80:ac:5d:8c:4c:b1:
d0:80:86:a0:2f:4b:d2:90:65:63:c0:e3:7a:b2:09:7c:c9:0b:
82:9a:8e:ac:3d:00:09:98:30:70:89:38:6d:65:47:65:70:1d:
e6:d0:ab:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net