Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/BCE67TfJ5JhMPa4F3ICk6XJ5_4w.roa
File: BCE67TfJ5JhMPa4F3ICk6XJ5_4w.roa (raw, json)
Hash identifier: Vku4NqKiGpVbsuWQiDGpxh+CrmF22Ccnq/+KdOJWf9s=
Subject key identifier: 04:21:3A:ED:37:C9:E4:98:4C:3D:AE:05:DC:80:A4:E9:72:79:FF:8C
Certificate issuer: /CN=c9b59f41779e6f2435f59f1a171c080a5a7a44d2
Certificate serial: 0A9143EE
Authority key identifier: C9:B5:9F:41:77:9E:6F:24:35:F5:9F:1A:17:1C:08:0A:5A:7A:44:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ybWfQXeebyQ19Z8aFxwIClp6RNI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/BCE67TfJ5JhMPa4F3ICk6XJ5_4w.roa
Signing time: Sat 01 Jan 2022 12:03:24 +0000
ROA not before: Sat 01 Jan 2022 12:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210190
IP address blocks: 194.36.44.0/24 maxlen: 24
2a0d:8240::/29 maxlen: 64
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177292270 (0xa9143ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9b59f41779e6f2435f59f1a171c080a5a7a44d2
Validity
Not Before: Jan 1 12:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04213aed37c9e4984c3dae05dc80a4e97279ff8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b6:5a:a3:39:7e:97:2d:0d:19:be:71:a6:d2:
29:d8:a4:77:46:13:98:45:23:ca:8a:58:73:f7:4c:
6c:33:95:23:06:43:cf:c1:47:a3:f9:4b:6f:df:a0:
98:6f:fb:71:b4:93:2d:45:2a:47:32:7d:da:a5:ca:
69:82:af:de:ac:a9:06:22:36:4c:74:58:34:65:e3:
f4:44:e5:78:1b:8a:d5:c4:0b:1f:3e:d9:6f:ce:e8:
bf:8d:e2:6c:db:34:df:dc:1c:97:0c:90:d4:b8:2a:
22:a7:16:a6:4f:c5:40:dc:62:74:0b:32:75:ec:1e:
99:01:42:6c:f8:e2:ce:3a:c2:e1:0a:99:ac:c9:ad:
1a:ea:6d:a0:3b:1e:c1:86:02:ab:bc:2c:54:08:5a:
46:90:24:4f:bc:16:e8:c3:eb:6d:09:9d:6c:34:62:
0f:0b:49:b2:97:cb:ed:75:cb:8d:27:6a:5e:13:be:
ba:6c:3e:2b:49:66:82:c1:e7:c5:03:61:1b:46:d7:
e1:20:29:ac:c3:3d:2e:59:57:27:0a:60:60:df:ac:
a2:27:1c:48:89:4d:e5:a1:47:fb:56:03:ae:22:02:
bf:22:d7:80:6c:b5:74:57:ff:a3:a3:9b:33:ba:e8:
58:00:b9:57:23:d3:71:cd:bc:fc:02:4f:56:6a:9c:
2a:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:21:3A:ED:37:C9:E4:98:4C:3D:AE:05:DC:80:A4:E9:72:79:FF:8C
X509v3 Authority Key Identifier:
keyid:C9:B5:9F:41:77:9E:6F:24:35:F5:9F:1A:17:1C:08:0A:5A:7A:44:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ybWfQXeebyQ19Z8aFxwIClp6RNI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/BCE67TfJ5JhMPa4F3ICk6XJ5_4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/027c8b-4009-4da6-ae97-72367cbb19ef/1/ybWfQXeebyQ19Z8aFxwIClp6RNI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.44.0/24
IPv6:
2a0d:8240::/29
Signature Algorithm: sha256WithRSAEncryption
4d:61:9e:5a:9c:e3:91:6a:52:7f:76:0c:22:30:31:3f:dd:88:
21:a1:91:cd:ca:ee:b2:4a:03:37:9f:92:b4:08:68:53:ee:2e:
2f:28:53:2b:50:d1:ed:2a:8f:0c:5d:59:a8:92:40:3e:ab:a6:
ad:06:17:4f:c7:4e:c9:a2:73:01:a1:94:0c:10:ff:f9:24:48:
a1:c5:e3:a8:34:44:79:8d:b4:7f:13:4d:a6:08:2f:4a:43:63:
f6:c5:1a:66:f1:69:6e:7c:47:c8:8d:78:5e:6c:12:a1:02:f9:
0f:23:8a:99:63:6e:ce:3b:36:b1:f0:39:28:25:8b:c9:35:cd:
7f:0b:19:95:58:8c:d7:d1:3d:4d:1f:01:56:12:7b:ec:e8:44:
f6:cb:52:d0:7d:b2:f0:91:3f:cf:12:d8:b7:b3:3d:97:47:35:
0d:ea:66:b6:6d:c8:10:6d:89:27:96:9f:46:06:ba:4f:8a:82:
f7:db:c8:46:c8:78:5d:17:4a:d4:65:94:23:82:4a:ae:64:43:
d2:b6:4a:d0:84:24:b6:5a:78:30:a3:79:65:39:2a:e6:62:0e:
be:00:ff:01:6a:f2:9b:0e:be:9f:67:3d:9b:5e:e4:ec:bc:d7:
21:f6:eb:e3:43:67:56:cf:82:34:7d:45:8c:6a:00:f2:d5:e3:
26:36:f5:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:22 2023 by rpki-client on console.sobornost.net