Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0MX8bXtnhOM_gCwn3Ka2UjYvTNk.roa
File: 0MX8bXtnhOM_gCwn3Ka2UjYvTNk.roa (raw, json)
Hash identifier: WMYbBwDgoTbCK2kGHCvkTeCKR07Eeng3Sq6GVxfng8E=
Subject key identifier: D0:C5:FC:6D:7B:67:84:E3:3F:80:2C:27:DC:A6:B6:52:36:2F:4C:D9
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0183458B3B9C6625029F42922E631C0CCAB1
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0MX8bXtnhOM_gCwn3Ka2UjYvTNk.roa
Signing time: Fri 16 Sep 2022 09:04:56 +0000
ROA not before: Fri 16 Sep 2022 09:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.135.119.0/24 maxlen: 24
212.192.221.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:45:8b:3b:9c:66:25:02:9f:42:92:2e:63:1c:0c:ca:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Sep 16 09:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0c5fc6d7b6784e33f802c27dca6b652362f4cd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:9c:2c:da:38:65:f2:f9:58:70:c2:c3:55:92:
a6:fa:b5:18:c6:c6:c1:5b:07:3a:33:01:f1:12:08:
2f:37:02:15:f9:90:be:09:a9:2b:b5:ea:5e:1a:1f:
d6:05:62:5a:95:5f:31:1c:b7:85:90:19:cf:5b:76:
d5:e6:7b:ea:1f:0b:cb:8f:f4:a9:6f:28:d0:bf:b0:
e4:aa:02:1a:c1:0f:a8:e3:fe:9c:22:07:7f:86:af:
5a:01:8a:0e:b6:c6:6f:da:81:f5:2e:cd:6b:b7:2f:
7e:e0:0a:df:34:52:78:bc:2d:e6:5c:86:b8:51:bd:
92:44:48:ed:9c:b8:ca:64:d9:8c:2c:a0:65:a8:03:
be:3d:7e:91:f3:a2:35:62:1d:d9:e4:3e:3d:43:48:
09:79:64:e4:43:7a:61:74:e1:a2:67:01:5d:94:8d:
b6:2f:a9:e0:4d:45:9f:04:10:eb:92:70:dd:40:65:
f8:91:a1:a9:a0:4e:92:66:17:69:85:8d:f7:27:4b:
9d:e8:42:e8:60:d1:e6:ac:86:53:15:5a:1b:2c:f1:
e3:ad:13:7f:e0:3f:c7:ab:9b:98:24:9a:f0:d4:8c:
14:af:0e:d6:18:56:30:db:1a:92:67:13:ab:0d:8b:
3d:aa:0e:59:2a:59:08:69:4a:76:6f:05:3c:73:2e:
d2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C5:FC:6D:7B:67:84:E3:3F:80:2C:27:DC:A6:B6:52:36:2F:4C:D9
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/0MX8bXtnhOM_gCwn3Ka2UjYvTNk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.119.0/24
212.192.221.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:7b:d1:61:e7:9e:48:5a:57:b2:a9:3a:e5:1a:57:9f:c5:37:
6c:01:d9:48:3c:c2:48:77:f6:29:9e:33:c6:5d:29:40:48:e3:
da:40:79:d2:60:46:4f:53:5d:4e:d1:bd:df:9e:3e:5b:91:b5:
01:73:88:5a:4b:10:d1:17:72:2e:f9:97:03:ee:3a:be:52:b8:
cd:0d:b1:63:5d:f1:bc:34:78:30:4a:1f:0a:d2:bd:6c:bc:49:
05:4a:55:63:bb:48:ee:41:62:29:7e:fd:bd:b3:65:cf:30:54:
f6:2d:99:f6:e0:aa:70:81:7e:3b:fc:3a:b3:4a:16:a2:6d:66:
02:79:25:8e:48:b9:31:c1:88:d1:db:4d:b5:82:e1:43:2d:15:
d5:58:d0:30:30:85:1d:87:f9:76:33:13:82:10:b4:8d:f5:dd:
53:ee:ad:5b:dd:83:e7:60:cf:1e:ab:73:89:32:f1:00:83:b9:
fb:69:b1:d5:5b:1a:ab:22:99:90:e8:12:3b:0b:fe:53:f0:21:
e6:89:a0:41:2b:db:6d:7a:05:25:a6:aa:e1:de:2a:e8:1c:6d:
9d:5e:4c:2a:2c:d0:1d:72:f5:82:e4:26:80:be:eb:50:b8:51:
fd:c9:12:13:78:7e:81:7b:b5:31:d9:be:b2:13:57:1d:4c:01:
20:04:0d:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:41:53 2023 by rpki-client on console-fra.rpki-client.org