Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/f231e4-67a6-4c55-91f5-934b4439092d/1/tsjNWe3KHIAcJ2Ev0tT011FLic0.roa
File: tsjNWe3KHIAcJ2Ev0tT011FLic0.roa (raw, json)
Hash identifier: vt3FcF7l3iy3HtdcinagPXEmiKrRlZ7YtuUIU+E1KUY=
Subject key identifier: B6:C8:CD:59:ED:CA:1C:80:1C:27:61:2F:D2:D4:F4:D7:51:4B:89:CD
Certificate issuer: /CN=e8c89b3dcdfa2697b48721308c76b67372a13b15
Certificate serial: 025097
Authority key identifier: E8:C8:9B:3D:CD:FA:26:97:B4:87:21:30:8C:76:B6:73:72:A1:3B:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6MibPc36Jpe0hyEwjHa2c3KhOxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/f231e4-67a6-4c55-91f5-934b4439092d/1/tsjNWe3KHIAcJ2Ev0tT011FLic0.roa
Signing time: Fri 04 Feb 2022 11:04:52 +0000
ROA not before: Fri 04 Feb 2022 11:04:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 194.53.214.0/23 maxlen: 23
194.53.128.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151703 (0x25097)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8c89b3dcdfa2697b48721308c76b67372a13b15
Validity
Not Before: Feb 4 11:04:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6c8cd59edca1c801c27612fd2d4f4d7514b89cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bb:4d:01:77:e1:a8:f6:43:27:a2:16:25:f0:
e2:b7:99:c9:15:17:a6:2e:ed:84:8b:ae:ff:25:6a:
5c:7d:30:9a:aa:b2:1f:29:84:44:96:53:e5:3f:f0:
6d:ab:11:81:a3:2c:d5:79:4b:32:e7:aa:4b:b2:cc:
99:f3:45:f6:2f:85:03:09:2a:0e:e1:3e:3c:62:5b:
69:69:e7:e4:aa:73:e6:99:a0:b2:ab:b2:31:e6:c0:
c9:27:cb:7e:c9:b1:54:ec:c9:ac:a0:ed:b4:87:78:
94:f4:67:0d:66:c0:0f:a4:e6:ea:da:f8:b9:a5:d6:
5b:e4:99:f2:6d:41:4c:06:9d:68:0a:76:58:70:ac:
12:08:aa:c5:f1:f1:05:1e:c7:a9:a4:49:f7:5d:65:
24:ad:70:14:b3:ff:64:27:86:42:ac:bd:d0:2d:01:
3b:70:d2:65:b8:28:0a:ac:62:0c:8b:17:07:1a:66:
ab:be:50:4f:5d:c0:71:7d:12:2a:b2:b7:c1:c6:b3:
e5:ec:8a:4a:2b:3f:b6:4f:59:5d:0b:a2:cd:96:28:
be:11:9f:a0:12:59:ae:7b:27:44:27:a0:7c:39:98:
f0:d1:fb:c6:4c:a9:12:92:73:15:ae:ee:e6:77:ff:
82:f2:d5:68:b3:b9:91:2c:f3:4b:6f:1d:05:7d:06:
ad:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:C8:CD:59:ED:CA:1C:80:1C:27:61:2F:D2:D4:F4:D7:51:4B:89:CD
X509v3 Authority Key Identifier:
keyid:E8:C8:9B:3D:CD:FA:26:97:B4:87:21:30:8C:76:B6:73:72:A1:3B:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6MibPc36Jpe0hyEwjHa2c3KhOxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f231e4-67a6-4c55-91f5-934b4439092d/1/tsjNWe3KHIAcJ2Ev0tT011FLic0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/f231e4-67a6-4c55-91f5-934b4439092d/1/6MibPc36Jpe0hyEwjHa2c3KhOxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.128.0/23
194.53.214.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:e0:66:da:a3:ad:40:87:5e:70:dd:90:a1:50:bb:32:d9:96:
4a:64:f3:25:65:33:c7:47:dc:67:f5:0b:e5:2e:ef:fb:a7:ac:
46:30:83:89:38:9f:d7:be:03:e0:25:8b:31:59:d7:d6:5f:49:
8b:f2:ba:62:8d:7b:03:26:0e:dc:23:80:20:33:d8:19:5a:39:
95:46:25:70:70:a9:11:3e:60:91:60:f2:a0:47:6c:b3:61:2f:
52:61:40:e2:66:2a:37:fa:8c:27:d2:3c:9e:3d:26:7d:44:e8:
a4:f3:b5:9c:f2:59:bb:dc:cb:48:ea:9d:02:36:df:c9:2f:cd:
d8:1e:4e:5c:4b:18:c6:2a:2d:3a:fb:df:95:11:96:3d:21:7b:
47:32:05:1c:33:31:82:4a:c1:d0:c9:af:fa:c6:70:23:52:a7:
e1:b7:81:d8:ec:0b:66:54:b1:32:20:e3:7c:ec:4c:2a:10:f8:
a9:c0:ef:6d:b3:a3:1e:f7:6a:71:86:b2:67:53:4e:42:a8:06:
a7:5e:38:49:0b:47:7d:d5:01:8a:a4:24:02:1d:75:d9:57:ce:
71:f3:24:86:3d:4d:9a:dd:2e:95:e7:b9:12:02:c3:3d:52:a0:
7b:3e:5e:e3:4c:9e:66:01:70:43:46:86:da:17:c3:15:80:7b:
54:15:af:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org