Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/6a_953KYU7YjUDzo1p17L-_vvjc.roa
File: 6a_953KYU7YjUDzo1p17L-_vvjc.roa (raw, json)
Hash identifier: 5S2sToXvtK8gTRQoe6cEnros9lZmHBgMFVkvQBMHG1c=
Subject key identifier: E9:AF:FD:E7:72:98:53:B6:23:50:3C:E8:D6:9D:7B:2F:EF:EF:BE:37
Certificate issuer: /CN=a3742347c73e7b3d500f60fb650b82a01c21f749
Certificate serial: 0C3085A0
Authority key identifier: A3:74:23:47:C7:3E:7B:3D:50:0F:60:FB:65:0B:82:A0:1C:21:F7:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/6a_953KYU7YjUDzo1p17L-_vvjc.roa
Signing time: Sat 01 Jan 2022 08:01:23 +0000
ROA not before: Sat 01 Jan 2022 08:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205376
IP address blocks: 194.45.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 204506528 (0xc3085a0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3742347c73e7b3d500f60fb650b82a01c21f749
Validity
Not Before: Jan 1 08:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9affde7729853b623503ce8d69d7b2fefefbe37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d8:32:ae:6f:db:d1:ad:14:2c:eb:a5:ce:8b:
ed:ac:b4:7c:cc:04:8f:54:d2:76:03:ea:86:a4:cd:
8b:4a:1b:41:1f:47:99:cb:92:72:d7:5b:c5:f1:46:
0f:d0:a3:f0:2d:31:f4:0b:b5:a8:40:33:11:08:2b:
43:bf:38:cc:ec:e9:5f:c8:72:3d:50:57:40:c7:36:
d5:34:fc:5f:4f:8e:2a:10:4c:b7:75:2d:41:e4:38:
7b:75:5e:3f:98:62:3d:46:37:2e:8a:52:cf:d3:ed:
4e:f0:cc:ec:a8:a8:19:92:b7:69:13:a0:f1:63:ad:
b5:9f:f9:70:0a:3f:2d:77:66:41:f4:c9:c5:15:80:
ef:bd:06:44:92:67:60:c4:a6:da:36:23:f4:05:33:
4f:ca:62:7e:03:74:c8:cf:09:eb:84:10:06:b0:6c:
f5:6e:9c:1b:a2:19:87:f2:fe:d0:c8:2c:82:bf:e7:
0b:46:16:75:b6:88:02:08:c1:b9:ef:7b:6e:75:1c:
36:53:fc:10:69:a3:05:7e:21:78:95:1c:89:de:aa:
27:31:28:50:43:06:22:b7:ac:a7:22:2a:3b:87:2a:
5e:a6:04:41:cd:a7:93:04:11:05:0f:ea:3d:4a:a0:
c0:95:44:5a:d6:64:a2:eb:7c:14:ca:ab:d7:bd:fd:
00:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:AF:FD:E7:72:98:53:B6:23:50:3C:E8:D6:9D:7B:2F:EF:EF:BE:37
X509v3 Authority Key Identifier:
keyid:A3:74:23:47:C7:3E:7B:3D:50:0F:60:FB:65:0B:82:A0:1C:21:F7:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o3QjR8c-ez1QD2D7ZQuCoBwh90k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/6a_953KYU7YjUDzo1p17L-_vvjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/5e9df7-1c88-4449-93da-b6427395d29f/1/o3QjR8c-ez1QD2D7ZQuCoBwh90k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.45.71.0/24
Signature Algorithm: sha256WithRSAEncryption
52:ed:26:5b:d9:46:8a:93:81:1c:a0:4d:11:62:9f:7a:bb:36:
64:e1:d7:7c:0e:5f:20:83:82:a4:e8:f2:c6:0e:31:cb:0a:fe:
b0:e0:b4:cd:43:6c:f3:7c:6a:df:fe:f5:7d:33:cf:a4:bb:4f:
df:a4:9e:8c:f1:42:ab:24:d5:11:90:82:ff:b0:39:ee:ed:6a:
a9:3d:38:41:a8:55:dd:a1:39:37:d4:08:85:2f:3b:55:38:1e:
27:20:d7:81:8f:bf:c5:1e:d5:08:3b:60:fd:56:cd:1d:ea:e7:
c6:ca:68:ff:d0:07:72:b4:28:63:a4:28:cd:56:59:74:12:ad:
17:60:85:21:89:6b:fc:c3:93:ca:af:47:5a:4d:73:cb:41:80:
2d:ea:df:4a:69:69:b9:9f:e2:9d:81:08:71:f1:12:d0:7a:ec:
2d:f1:4c:ca:e1:96:26:91:35:cb:4d:8a:93:80:d4:00:a2:f1:
ab:3c:6d:9c:bc:56:9f:72:e7:e1:f1:92:d5:4e:87:6c:72:99:
bc:09:03:d7:46:81:f6:f5:ac:2b:8f:43:7b:3b:e3:70:29:54:
35:86:1b:2e:29:e7:92:f6:08:e2:d3:28:4c:a1:5b:38:28:ff:
08:38:18:b2:d1:dc:b3:da:b9:e5:04:44:5c:da:6d:81:75:41:
2c:84:5e:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:44 2024 by rpki-client on console-ams.rpki-client.org