Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/5aa284-2414-4558-beb6-7d4be068c9a5/1/6LeNffURTnHFQ8WMFJqZaMqhxN0.roa
File: 6LeNffURTnHFQ8WMFJqZaMqhxN0.roa (raw, json)
Hash identifier: Dy57sKPUXE4BmTto89HRbYlsd7ICTV/baHsKUazEzhQ=
Subject key identifier: E8:B7:8D:7D:F5:11:4E:71:C5:43:C5:8C:14:9A:99:68:CA:A1:C4:DD
Certificate issuer: /CN=03a5e95abb91d64d73b9148c0aaf59b3af3f4e6a
Certificate serial: 14D49F68
Authority key identifier: 03:A5:E9:5A:BB:91:D6:4D:73:B9:14:8C:0A:AF:59:B3:AF:3F:4E:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A6XpWruR1k1zuRSMCq9Zs68_Tmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/5aa284-2414-4558-beb6-7d4be068c9a5/1/6LeNffURTnHFQ8WMFJqZaMqhxN0.roa
Signing time: Sat 01 Jan 2022 10:56:10 +0000
ROA not before: Sat 01 Jan 2022 10:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1930
IP address blocks: 192.138.86.0/24 maxlen: 24
192.26.236.0/24 maxlen: 24
192.195.195.0/24 maxlen: 24
192.68.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349478760 (0x14d49f68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03a5e95abb91d64d73b9148c0aaf59b3af3f4e6a
Validity
Not Before: Jan 1 10:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8b78d7df5114e71c543c58c149a9968caa1c4dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3c:a8:71:f2:cc:42:e7:81:91:02:a5:05:12:
de:74:61:e0:1a:01:56:b5:d6:9c:de:59:3f:f2:f2:
90:d2:78:4e:45:1c:8b:ac:6c:db:c3:6c:25:d2:a6:
ef:a8:8a:7d:c8:6b:a9:72:b9:92:c2:0b:74:fe:e3:
16:3b:42:3c:20:88:42:38:28:f5:69:40:60:ea:43:
3a:c4:55:22:ee:de:21:a7:41:c4:fd:52:62:78:f3:
35:f2:9c:02:25:fe:7b:2b:84:3e:fc:3a:52:70:bb:
f1:ba:de:c7:be:b8:05:24:ed:78:f5:5b:d8:19:e9:
08:48:db:f1:de:d6:93:4b:6c:e0:bf:f8:aa:a3:20:
a7:3e:51:da:f5:db:82:e4:aa:ec:79:13:5f:8d:a8:
51:9e:a1:ee:dc:01:03:fc:fe:aa:1c:65:da:fd:f8:
04:68:51:89:c2:43:d1:3f:74:0f:ca:ef:3e:9b:51:
a7:a4:41:49:99:f6:8e:11:98:82:12:e3:eb:9c:f3:
b3:1d:0b:9d:96:16:fe:b8:ed:ce:85:ac:9a:c9:75:
d3:46:5e:2b:7e:52:f8:51:7e:13:ea:d8:90:e1:ab:
ba:16:e5:4c:a0:e9:1d:11:f4:f6:5f:5a:23:0d:a8:
79:e9:29:f5:df:6d:c3:71:35:7c:13:78:68:cd:d9:
73:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B7:8D:7D:F5:11:4E:71:C5:43:C5:8C:14:9A:99:68:CA:A1:C4:DD
X509v3 Authority Key Identifier:
keyid:03:A5:E9:5A:BB:91:D6:4D:73:B9:14:8C:0A:AF:59:B3:AF:3F:4E:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A6XpWruR1k1zuRSMCq9Zs68_Tmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5aa284-2414-4558-beb6-7d4be068c9a5/1/6LeNffURTnHFQ8WMFJqZaMqhxN0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/5aa284-2414-4558-beb6-7d4be068c9a5/1/A6XpWruR1k1zuRSMCq9Zs68_Tmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.26.236.0/24
192.68.186.0/24
192.138.86.0/24
192.195.195.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:08:4c:93:b1:10:80:1a:2f:05:cf:a9:30:d8:49:b1:5c:71:
ac:4b:0f:1f:a1:bb:2f:d6:4c:31:98:6c:14:9d:b7:dd:18:15:
6c:44:eb:36:1d:38:4c:f3:17:d3:31:84:e2:7f:0a:27:95:89:
a8:5d:d9:1d:43:78:42:47:4e:fb:56:8b:2e:10:3e:70:98:1d:
28:90:76:a9:29:5d:97:03:f0:4a:c3:0d:10:2c:99:57:96:65:
fd:34:20:3e:ab:5c:0f:21:7e:07:5e:ee:ca:25:8a:c1:84:da:
24:00:77:da:68:aa:d3:d2:bd:3b:2f:77:bb:e6:02:a5:a0:2c:
c1:c3:93:64:17:d8:6c:24:1f:c3:4d:e3:d6:9e:d4:a3:88:69:
e8:23:84:30:ad:91:13:b7:16:9e:7e:bf:04:23:2a:b2:3f:d6:
d9:7e:17:cc:b8:cd:c2:d4:6d:95:7f:93:d3:b2:9d:b5:f9:1c:
8a:eb:27:be:8e:18:c7:aa:fa:17:da:e7:6f:df:f4:8f:e9:d0:
57:70:bd:35:e5:3c:cc:c9:53:87:f3:af:c4:b5:d6:b4:ce:84:
d1:19:a2:46:28:1c:e7:76:62:ba:bc:a1:1a:5a:f4:d9:08:95:
b1:31:de:18:14:9f:c2:87:ce:69:0e:ae:f4:f4:83:43:85:0e:
3a:31:28:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:28 2024 by rpki-client on console-ams.rpki-client.org