Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/DP-7lvuACuE2vBaVmJvinlXnh6o.roa
File: DP-7lvuACuE2vBaVmJvinlXnh6o.roa (raw, json)
Hash identifier: bzXmwfXHdP/Ft66AKntYEM9cq671RVEL5nH3pbsp61g=
Subject key identifier: 0C:FF:BB:96:FB:80:0A:E1:36:BC:16:95:98:9B:E2:9E:55:E7:87:AA
Certificate issuer: /CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Certificate serial: 0184BCF7DCDBBC38DB68D5406A0F0E5A51C2
Authority key identifier: 50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/DP-7lvuACuE2vBaVmJvinlXnh6o.roa
Signing time: Mon 28 Nov 2022 06:41:11 +0000
ROA not before: Mon 28 Nov 2022 06:41:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 194.37.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:bc:f7:dc:db:bc:38:db:68:d5:40:6a:0f:0e:5a:51:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50542fba0c17b4391e3296c434b5fff23a829b6e
Validity
Not Before: Nov 28 06:41:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0cffbb96fb800ae136bc1695989be29e55e787aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:46:f3:9c:a2:06:99:67:be:71:26:75:e2:b1:
b7:aa:06:0c:b0:67:19:e9:4d:dd:7a:02:ce:5e:2d:
63:61:4e:32:ea:62:6d:a2:01:65:0e:f8:91:54:52:
6c:3e:78:01:f7:7c:96:3d:af:a3:b3:78:02:1c:4e:
9b:e4:ee:08:68:18:fc:09:fe:c9:78:fb:b2:3d:a3:
d1:d0:35:6a:e0:f3:10:d9:49:09:dc:b3:14:9b:c3:
72:42:01:29:9d:25:5b:eb:23:02:9d:61:84:62:d9:
72:71:a8:60:c4:86:23:36:30:4b:32:49:08:6d:58:
d7:a0:e5:8c:0b:09:52:f6:dc:8b:3f:55:a9:a7:e2:
5b:e7:39:33:52:47:70:30:0c:48:dc:76:53:52:c6:
05:73:ec:de:f4:d3:d1:21:84:58:ca:e3:45:c6:7a:
ab:4f:1c:c1:84:60:3e:76:cc:63:10:ed:10:00:e0:
38:7c:2c:55:9f:a7:68:3d:02:30:2b:11:5d:59:52:
f5:72:1d:66:5b:1b:95:b1:6f:a0:e9:d8:3c:e5:a0:
47:96:02:5e:5e:26:9a:e7:06:bc:b5:90:de:80:b5:
07:f7:84:13:4d:46:a4:2b:4b:ea:54:ef:56:71:ec:
47:5f:ee:40:de:5a:72:11:ba:f4:e0:df:9a:9d:4d:
7c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:FF:BB:96:FB:80:0A:E1:36:BC:16:95:98:9B:E2:9E:55:E7:87:AA
X509v3 Authority Key Identifier:
keyid:50:54:2F:BA:0C:17:B4:39:1E:32:96:C4:34:B5:FF:F2:3A:82:9B:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UFQvugwXtDkeMpbENLX_8jqCm24.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/DP-7lvuACuE2vBaVmJvinlXnh6o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/cb2bdd-3291-40af-8a88-5e9787b6aeaa/1/UFQvugwXtDkeMpbENLX_8jqCm24.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.37.94.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:21:8b:18:a6:58:b8:18:95:61:89:6e:5b:7a:85:d2:c1:a6:
1e:b5:ad:26:dd:7d:35:ce:d9:78:b0:85:7b:b4:ab:cb:18:21:
72:c3:1e:90:6d:a9:18:0a:86:15:be:74:f0:4d:83:f9:ae:6e:
5a:70:51:64:e4:d5:c1:94:b5:39:62:51:78:60:48:ad:d1:3c:
6f:cd:4e:c0:4e:fc:c2:80:c7:72:88:65:d6:51:1f:f2:5e:a4:
1a:a5:c8:42:10:66:91:61:e9:e3:57:63:20:39:cc:74:fd:23:
b9:6b:5c:76:d2:70:a1:69:ce:97:ac:5e:4b:b0:52:06:11:d4:
78:af:3e:c4:2c:d2:d4:19:bb:05:6d:65:2c:9e:0f:de:07:25:
1b:29:7e:af:1a:75:b7:6b:95:1d:8c:2e:22:28:95:18:2b:8e:
1c:d5:32:0b:79:dd:d1:25:60:16:8e:4c:06:b5:b2:74:88:9a:
b2:37:8f:c4:4a:68:c8:a7:ac:8b:54:0f:48:ed:2f:4c:ef:a3:
05:73:f4:55:86:c8:20:a6:54:f0:43:d7:79:b2:d9:9a:fb:42:
c0:81:d1:0f:2f:6d:e1:2e:d9:fd:91:9d:01:eb:02:2e:47:de:
1d:b5:c4:5b:c7:d1:a1:c8:1e:ef:1b:a6:17:71:fb:4b:33:70:
cf:c4:94:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:58 2023 by rpki-client on console.sobornost.net