Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/7Gl60I_fE1-cpqCKOHzcXeiluyU.roa
File: 7Gl60I_fE1-cpqCKOHzcXeiluyU.roa (raw, json)
Hash identifier: MvlzBcOfFDUTOM2uH/J2Pk4mOY4W3doh0CnutsYyeTg=
Subject key identifier: EC:69:7A:D0:8F:DF:13:5F:9C:A6:A0:8A:38:7C:DC:5D:E8:A5:BB:25
Certificate issuer: /CN=a78c03f45908df4c45c3f07d2a4b2c40245d5132
Certificate serial: 078A0F5D
Authority key identifier: A7:8C:03:F4:59:08:DF:4C:45:C3:F0:7D:2A:4B:2C:40:24:5D:51:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p4wD9FkI30xFw_B9KkssQCRdUTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/7Gl60I_fE1-cpqCKOHzcXeiluyU.roa
Signing time: Sat 01 Jan 2022 04:56:02 +0000
ROA not before: Sat 01 Jan 2022 04:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33910
IP address blocks: 194.126.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126488413 (0x78a0f5d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a78c03f45908df4c45c3f07d2a4b2c40245d5132
Validity
Not Before: Jan 1 04:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ec697ad08fdf135f9ca6a08a387cdc5de8a5bb25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:45:99:36:ac:43:ad:01:f3:40:67:2f:9d:df:
dc:9d:47:47:c8:a8:32:1c:f9:a7:40:fd:c0:56:c6:
5c:30:16:f9:d6:d5:39:0a:30:81:59:c5:8f:8f:bd:
82:42:b9:c3:16:89:18:a8:e6:ce:d5:78:fa:54:19:
a7:7f:e7:fa:09:f2:37:10:24:22:70:21:39:b4:7f:
eb:88:27:8e:3c:48:07:86:34:2c:7f:99:39:57:c3:
20:e0:96:f9:ab:7b:12:20:30:e8:17:72:69:ed:e6:
c0:e0:81:84:1b:6d:be:1d:71:e9:9a:21:12:e9:7f:
ff:11:0f:41:3b:5f:74:37:6a:6b:a9:3a:b7:e7:e6:
28:32:4f:34:08:8d:85:ec:f4:91:03:ee:77:3a:5e:
c4:85:6e:31:69:fa:78:e4:79:bb:88:56:0f:7c:cb:
cc:c7:d4:bf:d1:3d:8a:5c:df:b6:fa:fa:e0:78:8a:
cc:2d:e4:11:e6:bf:8e:60:aa:31:1b:6a:3a:d4:7d:
5a:8c:4b:71:8f:72:65:62:4d:cc:95:89:da:d9:70:
d8:1b:26:14:bc:1a:a7:8f:77:6e:3e:ca:04:42:32:
a8:7f:3c:68:d5:7e:0e:77:b3:be:77:b2:b4:62:2f:
ad:68:3c:65:0f:09:26:fb:52:97:66:9e:02:75:4b:
c4:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:69:7A:D0:8F:DF:13:5F:9C:A6:A0:8A:38:7C:DC:5D:E8:A5:BB:25
X509v3 Authority Key Identifier:
keyid:A7:8C:03:F4:59:08:DF:4C:45:C3:F0:7D:2A:4B:2C:40:24:5D:51:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p4wD9FkI30xFw_B9KkssQCRdUTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/7Gl60I_fE1-cpqCKOHzcXeiluyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/e5c697-cc93-4d71-b940-9ba85be3bf09/1/p4wD9FkI30xFw_B9KkssQCRdUTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.230.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b9:83:7f:54:87:25:c1:8b:21:72:7e:4c:ce:fa:06:71:c9:
d9:22:66:d4:77:6d:1e:4b:cd:cd:12:31:51:ab:ef:de:b3:90:
3e:44:a4:6d:96:be:73:7c:9e:7e:4d:df:ec:93:b6:95:d6:ed:
31:06:bb:05:ed:49:63:cb:16:c9:f8:ce:d3:f4:7f:7b:61:6a:
09:e4:e1:a5:a2:45:1b:e3:7b:d7:f2:60:a5:ce:62:32:88:68:
e4:e4:dd:29:7b:fa:65:0e:7c:9a:f8:4b:05:e5:65:af:34:2d:
b6:a0:e9:66:7e:79:6a:26:9c:1f:ea:f6:7c:fe:a0:1d:d0:a3:
6e:1c:ee:58:15:72:3b:73:4d:b4:8b:8f:6b:e3:f5:ab:0f:de:
1a:ba:5d:78:20:29:14:cd:fc:29:30:10:c8:4c:9a:23:e5:af:
20:05:51:43:ec:43:12:f6:cf:40:fd:3d:73:a9:d6:36:d6:e1:
cd:1f:58:6f:b3:4d:95:cd:48:16:a4:f3:92:ec:fe:8a:5b:14:
af:b0:5b:44:a6:d7:d5:1d:0c:1b:68:f6:20:14:d1:ee:a8:8a:
27:b2:ba:d6:61:37:3f:ba:be:bb:b0:cf:c7:0c:c5:fa:9c:a8:
56:74:d4:12:8c:37:12:3b:c3:62:5b:07:40:e3:6b:69:de:86:
ed:35:77:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:04 2024 by rpki-client on console-fra.rpki-client.org