Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/_QQsDzmubfSUYrTkjROb-2ox5zE.roa
File: _QQsDzmubfSUYrTkjROb-2ox5zE.roa (raw, json)
Hash identifier: vnDd/Ff4Pdss1Z85XGY3S2VpBnAi2c95vN636bJqLfM=
Subject key identifier: FD:04:2C:0F:39:AE:6D:F4:94:62:B4:E4:8D:13:9B:FB:6A:31:E7:31
Certificate issuer: /CN=af59d35331c9efe33c9530769325ae8ef550ffda
Certificate serial: 0490C2EC
Authority key identifier: AF:59:D3:53:31:C9:EF:E3:3C:95:30:76:93:25:AE:8E:F5:50:FF:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r1nTUzHJ7-M8lTB2kyWujvVQ_9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/_QQsDzmubfSUYrTkjROb-2ox5zE.roa
Signing time: Sat 01 Jan 2022 09:58:25 +0000
ROA not before: Sat 01 Jan 2022 09:58:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208026
IP address blocks: 194.60.112.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76595948 (0x490c2ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af59d35331c9efe33c9530769325ae8ef550ffda
Validity
Not Before: Jan 1 09:58:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd042c0f39ae6df49462b4e48d139bfb6a31e731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:66:39:1f:17:d7:be:ed:dd:8a:f2:e3:5c:30:
0e:89:e2:8c:8d:df:07:14:31:c3:e0:80:0a:dc:bd:
68:f5:94:2a:76:50:14:b4:9a:bc:de:fb:ab:90:c5:
9b:30:28:6f:47:ac:13:0a:f7:a0:03:dd:fb:fb:df:
e4:f7:95:ff:0b:36:33:c5:53:83:b7:db:e8:5f:9b:
1c:5b:83:c3:d8:05:08:9e:0c:67:1a:2c:21:e1:d9:
b4:88:ba:c1:d6:2c:dc:9a:72:24:29:2f:f5:30:30:
85:6d:50:15:83:c1:bf:6c:b2:66:31:80:8c:aa:27:
bd:82:3a:82:6a:ad:ee:5d:b7:6c:66:a1:68:9b:43:
1e:87:18:12:63:0d:fd:cf:0e:6f:84:c5:32:0d:36:
cc:94:c2:51:17:56:1d:2b:62:6d:d2:dd:22:67:6c:
7b:ef:16:47:58:74:92:45:2e:56:78:c5:a7:38:04:
3e:b7:89:d4:08:08:8e:67:a3:46:43:b4:bb:7e:39:
c5:83:d2:86:fa:0b:6b:77:3a:10:d0:51:a8:33:7c:
b0:01:77:6c:af:a7:0c:52:ee:f7:66:14:e6:22:5b:
15:53:d0:07:ca:2d:b4:94:e2:30:d4:d8:37:4e:d6:
58:43:04:77:7c:6b:22:ed:42:01:6e:20:cf:e1:d5:
c7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:04:2C:0F:39:AE:6D:F4:94:62:B4:E4:8D:13:9B:FB:6A:31:E7:31
X509v3 Authority Key Identifier:
keyid:AF:59:D3:53:31:C9:EF:E3:3C:95:30:76:93:25:AE:8E:F5:50:FF:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r1nTUzHJ7-M8lTB2kyWujvVQ_9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/_QQsDzmubfSUYrTkjROb-2ox5zE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/14e601-f31a-41bb-93fe-a59e6e9abcc8/1/r1nTUzHJ7-M8lTB2kyWujvVQ_9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:d4:31:63:ea:33:37:11:b1:78:69:4e:f8:95:74:43:15:ee:
94:e0:ab:85:74:2f:9f:08:f4:97:b5:a9:6c:ce:ce:cc:96:3d:
12:84:0c:1d:69:05:19:3c:24:ee:27:82:51:46:6a:36:3a:8d:
64:49:7a:c2:37:cd:4c:e4:e8:16:6b:c2:4a:97:c9:f1:94:74:
68:fe:78:32:97:13:18:00:d4:bf:dc:89:31:74:c0:1e:46:79:
2f:36:ec:32:6e:b0:84:fc:76:19:f0:d8:ce:0d:81:e8:a6:36:
bd:b1:49:fc:f4:57:49:e5:a3:13:ab:f6:c7:45:91:c0:2e:fe:
a9:9d:dc:19:1b:13:95:72:5a:79:16:c5:62:fe:48:3b:ac:56:
6e:41:c3:17:d3:ce:1b:1d:49:f0:73:b3:ea:9a:a4:7e:d6:4d:
f5:ad:e9:13:74:29:a9:91:b9:a8:66:5a:7e:15:ac:e1:ea:02:
57:e8:67:aa:4b:d9:d3:99:14:f8:d9:7f:6f:c6:68:97:20:fa:
87:df:42:34:a0:45:32:4d:d9:d9:f7:f6:8d:29:0c:c2:ed:46:
1f:e4:02:cc:7e:51:68:0a:4e:a3:06:33:d7:20:35:5a:8a:79:
a6:7e:a2:e7:92:7f:ce:93:42:dc:d3:f0:c7:fb:58:94:8e:22:
a0:ca:ff:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net