Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/67cbrXb0n6Bbq9fkrk9XDuhpXxM.roa
File: 67cbrXb0n6Bbq9fkrk9XDuhpXxM.roa (raw, json)
Hash identifier: XYohrJfaAr5SlhyVhOZsNl+T0bGgXzHpPDVE7KJbZP4=
Subject key identifier: EB:B7:1B:AD:76:F4:9F:A0:5B:AB:D7:E4:AE:4F:57:0E:E8:69:5F:13
Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61
Certificate serial: ABEC
Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/67cbrXb0n6Bbq9fkrk9XDuhpXxM.roa
Signing time: Thu 28 Apr 2022 12:34:40 +0000
ROA not before: Thu 28 Apr 2022 12:34:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.56.64.0/21 maxlen: 24
194.56.0.0/18 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44012 (0xabec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61
Validity
Not Before: Apr 28 12:34:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ebb71bad76f49fa05babd7e4ae4f570ee8695f13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:75:41:3c:56:de:a1:7e:c2:d4:3d:5b:bb:04:
62:b9:a9:1b:0d:06:ca:3b:c2:31:1c:fb:ed:61:58:
1d:eb:ca:b9:f8:71:33:37:23:d2:01:d1:9c:e6:ac:
54:0f:f4:e5:fa:fe:12:e8:40:3b:7b:6f:1b:79:08:
b4:57:e6:c3:09:7d:70:30:7f:ee:24:f9:58:7a:72:
68:6c:26:26:f0:8b:9c:62:98:f9:13:6f:5a:01:ff:
a9:54:fb:af:5e:91:85:83:00:91:26:25:7a:b2:e2:
64:9f:b8:f5:e2:3d:9f:5b:2f:bc:f0:d6:e8:d8:38:
33:a9:94:3e:ca:c6:39:f1:aa:46:fc:88:d8:ab:5e:
53:a4:08:27:49:62:52:69:8e:21:87:aa:0c:60:d8:
7a:17:83:12:8e:5e:45:91:eb:9d:32:69:44:93:b1:
6f:7d:63:2d:6c:26:39:95:7a:46:42:3c:78:07:ca:
f8:cb:b8:28:23:4f:a0:9f:6a:c5:97:32:a3:ac:0c:
27:dd:92:a5:e6:f8:89:e3:0d:58:fb:9d:9d:44:5d:
eb:30:f5:50:a4:fb:d6:e2:7c:6a:3c:f2:f4:e9:79:
e5:40:f7:ed:94:0c:ea:06:49:38:45:89:1d:47:c2:
b4:14:14:22:92:82:2f:2a:89:b3:09:d3:c4:ef:de:
b4:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B7:1B:AD:76:F4:9F:A0:5B:AB:D7:E4:AE:4F:57:0E:E8:69:5F:13
X509v3 Authority Key Identifier:
keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/67cbrXb0n6Bbq9fkrk9XDuhpXxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.0.0-194.56.71.255
Signature Algorithm: sha256WithRSAEncryption
a4:1d:77:e8:31:2c:68:28:fb:b0:ab:c7:d8:e8:44:44:ac:e6:
df:34:7d:c2:ed:c9:af:71:4c:89:9e:c5:77:f2:59:9e:d0:3b:
8b:52:7a:9f:9c:a3:47:1a:71:26:f2:40:51:41:de:71:03:3e:
4e:67:fe:78:d0:94:10:61:f7:c8:42:c7:48:82:30:e9:f7:62:
8e:cc:43:a7:63:99:79:8d:ba:b7:3e:f1:7f:8a:4d:74:5e:a4:
7d:eb:d3:95:07:91:97:a7:de:e3:8e:ac:61:8e:bc:0b:e6:c8:
d8:93:95:1d:66:20:32:fe:8e:11:b2:16:e2:78:28:f4:35:e9:
3c:e9:41:2a:b1:fc:12:19:7c:09:2c:ab:4b:56:0f:d5:79:fb:
77:d9:7c:39:0a:49:48:ec:f0:63:f1:9f:00:c6:a7:77:7e:13:
d7:aa:c2:6c:1c:34:45:6e:d6:81:6f:cf:72:e0:33:45:26:fc:
be:fb:ea:31:1b:c3:39:b6:2c:d3:ec:99:e6:ad:13:dc:1b:3c:
d5:06:a6:5c:91:f4:0b:0f:78:e1:84:5b:69:a4:68:7c:67:c6:
1b:ca:2a:5d:7a:e4:ed:10:bf:85:e9:e8:c6:69:1b:27:ab:9e:
cc:f6:fd:ed:85:14:6f:ba:bb:6e:27:51:cb:91:3d:a8:29:ad:
44:26:21:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:59 2024 by rpki-client on console-fra.rpki-client.org