Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/3bad52-9246-4709-a617-bd942371c86a/1/iAIqjYLu6Oall7EnCvU1dN-MJoI.roa
File: iAIqjYLu6Oall7EnCvU1dN-MJoI.roa (raw, json)
Hash identifier: 2qKy5ku8aczfGDdIySsRVAaqQ8zxNGzih1QwpXviHb0=
Subject key identifier: 88:02:2A:8D:82:EE:E8:E6:A5:97:B1:27:0A:F5:35:74:DF:8C:26:82
Certificate issuer: /CN=613789e73c75cab6d83ab69da328fc2dffbc9082
Certificate serial: 03A9E45E
Authority key identifier: 61:37:89:E7:3C:75:CA:B6:D8:3A:B6:9D:A3:28:FC:2D:FF:BC:90:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YTeJ5zx1yrbYOradoyj8Lf-8kII.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/3bad52-9246-4709-a617-bd942371c86a/1/iAIqjYLu6Oall7EnCvU1dN-MJoI.roa
Signing time: Sat 01 Jan 2022 02:59:49 +0000
ROA not before: Sat 01 Jan 2022 02:59:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44478
IP address blocks: 194.48.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61465694 (0x3a9e45e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=613789e73c75cab6d83ab69da328fc2dffbc9082
Validity
Not Before: Jan 1 02:59:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88022a8d82eee8e6a597b1270af53574df8c2682
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c5:59:b1:4f:4a:e1:e4:68:de:4e:c2:98:cf:
84:64:66:6e:3c:cf:f7:13:83:c8:7f:c5:64:79:cd:
a7:a7:6d:d9:2d:33:0c:8e:1a:69:b2:13:31:23:af:
a0:4c:45:07:36:3c:e3:ea:cf:99:a0:0b:55:f8:f4:
8d:82:da:b3:66:52:10:e0:12:05:a0:92:0b:c7:43:
aa:d1:14:d3:af:43:46:d2:1d:37:2c:9d:b0:1d:47:
ef:89:7e:c7:fb:cf:74:f1:f3:78:88:21:34:5c:1a:
b4:61:08:c3:98:e4:ca:33:ab:d2:a0:5d:6e:17:46:
b5:f4:87:1d:c4:07:ad:78:89:a5:12:47:e5:e8:47:
a1:3d:f3:79:cc:7a:9a:5d:4c:21:45:86:d0:cf:b5:
2d:40:fa:87:88:bc:c5:5d:22:67:48:80:e0:1f:58:
7a:0d:3a:ed:10:e7:64:f8:aa:d3:5e:64:2b:f1:90:
7e:9d:c9:c3:e7:c0:ce:e5:f4:03:3b:ce:45:e2:b3:
2c:4b:24:08:30:70:ba:c2:e4:31:28:35:2e:7d:d0:
50:f5:37:4b:41:7a:cb:c0:ae:03:b7:a1:96:76:04:
70:61:fd:f8:8c:7b:96:1a:a2:b6:6c:7c:e5:10:16:
d3:50:57:96:cb:56:d6:97:ed:ee:30:b2:13:8d:fb:
be:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:02:2A:8D:82:EE:E8:E6:A5:97:B1:27:0A:F5:35:74:DF:8C:26:82
X509v3 Authority Key Identifier:
keyid:61:37:89:E7:3C:75:CA:B6:D8:3A:B6:9D:A3:28:FC:2D:FF:BC:90:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YTeJ5zx1yrbYOradoyj8Lf-8kII.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3bad52-9246-4709-a617-bd942371c86a/1/iAIqjYLu6Oall7EnCvU1dN-MJoI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/3bad52-9246-4709-a617-bd942371c86a/1/YTeJ5zx1yrbYOradoyj8Lf-8kII.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.218.0/24
Signature Algorithm: sha256WithRSAEncryption
04:e8:d2:7e:6a:f4:59:a9:1d:b9:3f:1e:7c:14:90:4c:2c:73:
fd:c1:95:f9:59:4d:f9:75:00:4a:e1:1d:a9:26:64:7a:7e:fd:
c5:ff:23:a7:f8:39:70:59:38:6b:46:d8:73:30:03:70:cd:c4:
85:3e:54:a8:16:16:1b:a7:fd:a9:f2:b4:3b:c2:35:39:07:9c:
fb:77:f8:47:0b:48:10:e5:16:fe:fb:1e:50:ee:dc:9f:c0:d0:
d3:66:92:84:17:d8:50:41:68:e0:23:2b:4b:57:84:9e:55:6c:
f3:d6:05:f0:55:fb:c3:fb:82:e9:cc:e2:96:ab:33:67:c5:62:
f8:ec:14:7b:fb:79:37:7c:af:06:d4:95:c4:5a:bb:d3:d3:b5:
2b:7e:13:c5:75:ac:28:89:a8:46:43:f0:df:a4:1f:f9:be:37:
7d:88:3e:8d:0b:65:da:1f:d7:67:a0:41:fc:c9:3b:65:be:aa:
e6:12:68:c2:71:fc:cd:81:ef:43:d6:d3:b6:7d:2b:f7:4c:ff:
66:7a:81:8b:5f:6b:22:b5:b3:9c:69:81:39:c3:b2:19:24:d9:
cc:d5:c7:d0:cd:9b:bd:3a:cb:41:16:4e:ff:15:f1:90:98:8e:
c5:58:bf:09:b3:a2:78:a9:bb:a0:70:b9:32:0e:02:78:e9:e7:
31:c9:fa:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:05 2024 by rpki-client on console-fra.rpki-client.org