Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/znJWHExlvx8mT7jMk7sBhx7v9eE.roa
File: znJWHExlvx8mT7jMk7sBhx7v9eE.roa (raw, json)
Hash identifier: KNzxDIhjf0HZWU0MSf9W3+ld9ZfC5SDHpCuxjFlZ8JE=
Subject key identifier: CE:72:56:1C:4C:65:BF:1F:26:4F:B8:CC:93:BB:01:87:1E:EF:F5:E1
Certificate issuer: /CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Certificate serial: 019098E9
Authority key identifier: B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/znJWHExlvx8mT7jMk7sBhx7v9eE.roa
Signing time: Sat 01 Jan 2022 05:03:32 +0000
ROA not before: Sat 01 Jan 2022 05:03:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209815
IP address blocks: 194.31.136.0/22 maxlen: 22
2a09:1380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26253545 (0x19098e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b739c4e3fe869d9783ba2dadf660dccd0fa53707
Validity
Not Before: Jan 1 05:03:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ce72561c4c65bf1f264fb8cc93bb01871eeff5e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:60:1e:90:e0:e6:3e:07:e5:53:8d:53:50:
c9:54:6d:66:ef:1f:a7:32:bd:40:c6:da:23:35:ce:
91:45:db:65:2d:42:5a:5a:06:9b:2e:56:b4:4c:c2:
c3:cb:cb:55:30:87:22:13:61:af:71:22:46:54:23:
cc:cb:9b:87:a0:3e:66:73:fe:b1:9e:fb:99:c4:fd:
5c:9c:82:ca:04:bb:12:ae:d3:53:97:0c:36:60:fe:
f2:57:e7:8a:5e:0a:52:f0:38:2e:f3:49:4e:06:fe:
30:ff:93:16:1d:94:c0:d9:89:f8:6f:c7:52:a8:9c:
70:6c:be:bc:36:65:0e:1e:65:09:11:b8:10:36:0b:
54:dc:e8:83:2f:80:01:f4:20:d5:64:61:7e:b7:26:
f9:4d:9a:65:96:5f:21:c0:a1:cd:46:56:47:c5:45:
04:cd:a6:83:ee:5d:d6:36:fb:10:1b:66:6d:5f:25:
b6:5a:47:e3:1a:45:34:22:88:54:01:d6:38:09:0b:
95:49:84:71:02:0c:3a:97:51:20:6e:a4:e9:ed:d4:
fe:52:91:92:0d:16:2e:01:b1:e0:74:3d:93:f4:be:
03:65:b6:9f:a0:f8:81:fa:c6:f0:bd:da:46:99:77:
77:e8:07:40:c0:34:e2:24:bc:0d:34:10:79:bb:d4:
44:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:72:56:1C:4C:65:BF:1F:26:4F:B8:CC:93:BB:01:87:1E:EF:F5:E1
X509v3 Authority Key Identifier:
keyid:B7:39:C4:E3:FE:86:9D:97:83:BA:2D:AD:F6:60:DC:CD:0F:A5:37:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tznE4_6GnZeDui2t9mDczQ-lNwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/znJWHExlvx8mT7jMk7sBhx7v9eE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/21b558-7e89-41a2-825d-072262e30fc5/1/tznE4_6GnZeDui2t9mDczQ-lNwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.136.0/22
IPv6:
2a09:1380::/29
Signature Algorithm: sha256WithRSAEncryption
38:aa:41:b6:d3:13:a3:2b:11:5d:a6:25:1a:91:69:ec:fc:fd:
92:49:5a:16:8c:06:89:a6:94:ed:3b:2c:83:5e:67:6f:c9:dd:
85:90:ee:bb:30:3f:f3:91:8a:56:6a:f4:1f:fb:8c:1d:9a:06:
54:58:78:bc:37:fd:50:43:38:a3:a9:18:0a:08:3d:a3:76:5a:
1b:a9:a5:42:1d:38:8f:e5:a5:40:07:71:5e:8b:b7:b3:fc:5b:
98:45:22:13:ec:48:9a:0e:ca:cb:1c:27:bd:76:3e:45:3b:b7:
3a:91:a6:a7:7d:8e:9a:e4:7d:0e:b1:37:c5:41:05:01:ee:54:
76:45:0c:34:5e:eb:cb:28:d6:eb:0b:9f:4c:8a:32:99:18:9c:
74:65:24:a0:88:af:78:09:0e:53:9a:25:11:44:60:73:88:89:
9d:c3:9e:d1:2c:27:a5:6d:f3:8e:26:b5:95:77:a2:30:5f:0d:
82:2d:b6:e8:1c:c4:4c:ec:42:64:9f:c9:07:6f:97:77:d6:79:
2a:71:f3:02:99:72:56:ed:10:c6:31:cc:0f:99:2f:d4:d7:e4:
3b:ce:52:0b:91:e5:25:43:4a:33:45:89:05:e8:58:f2:87:b7:
39:42:8b:03:22:f6:75:e3:10:65:96:67:57:a0:ef:eb:b7:3c:
75:09:8d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:12 2024 by rpki-client on console-fra.rpki-client.org