Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-BFJ1HrZkJOivsa5ne6OEFDrjQE.roa
File: 1-BFJ1HrZkJOivsa5ne6OEFDrjQE.roa (raw, json)
Hash identifier: 1B+fSIBufhJmi8aYwQL0Jsn0JkClHq+RoX+PQAbL4/4=
Subject key identifier: F8:11:49:D4:7A:D9:90:93:A2:BE:C6:B9:9D:EE:8E:10:50:EB:8D:01
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0182AB8FB50CF18CDFDF09DD5A90A7565E6D
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-BFJ1HrZkJOivsa5ne6OEFDrjQE.roa
Signing time: Wed 17 Aug 2022 11:28:18 +0000
ROA not before: Wed 17 Aug 2022 11:28:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210773
IP address blocks: 194.87.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:8f:b5:0c:f1:8c:df:df:09:dd:5a:90:a7:56:5e:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Aug 17 11:28:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f81149d47ad99093a2bec6b99dee8e1050eb8d01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:93:80:ad:1c:f4:d6:11:50:27:df:b6:28:24:
94:cf:f7:d2:f7:27:13:1d:e5:17:82:43:d1:7b:32:
0c:0a:39:6f:f1:24:17:46:cf:d1:b3:8f:e3:1c:89:
ad:33:7a:cf:2d:77:ff:99:aa:1c:8f:47:0b:b0:f2:
aa:a1:88:0e:2c:ac:5c:7c:d7:3c:d0:78:fd:db:50:
1e:5f:ea:79:21:67:fb:4b:35:46:69:5e:98:ff:e5:
2c:23:f7:c2:61:c1:03:13:61:f3:03:82:dd:8c:8b:
49:36:48:df:94:65:b3:1d:84:08:9d:f8:bd:cf:67:
56:b7:90:0b:15:cd:65:1d:72:41:10:97:5f:29:e0:
df:9f:36:b5:20:74:13:84:a3:2d:27:19:8d:c3:ba:
7e:68:a2:20:43:df:28:03:0d:b0:2f:82:bf:86:31:
ff:16:1c:aa:de:d2:1c:c5:1b:22:4b:c0:c6:29:64:
86:1f:f7:19:58:fe:97:a7:0c:97:ac:3e:71:be:57:
05:04:60:4f:21:e8:16:f4:b7:77:3d:9b:f5:15:2b:
62:d0:d5:a9:c5:bb:94:b2:9e:a9:a2:87:e1:b0:56:
cd:45:06:37:59:1e:24:c1:70:3c:1f:6e:1a:fe:f8:
67:98:d1:8c:ba:5f:79:3b:9b:86:05:d2:43:00:52:
49:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:11:49:D4:7A:D9:90:93:A2:BE:C6:B9:9D:EE:8E:10:50:EB:8D:01
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1-BFJ1HrZkJOivsa5ne6OEFDrjQE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.230.0/24
Signature Algorithm: sha256WithRSAEncryption
99:fb:41:06:87:20:37:a4:47:64:1b:89:10:1e:e2:b9:f6:70:
44:65:2c:f0:c6:36:96:b3:ae:7b:3b:8c:0c:32:1d:1c:04:13:
e1:42:28:87:c6:29:ff:ee:e3:6c:82:58:e7:86:0b:75:48:b4:
61:45:e3:52:d6:86:c2:cd:8d:0b:3d:86:12:42:16:d7:fc:7a:
bd:41:92:65:34:37:70:43:4a:4c:57:5c:72:f7:f3:d4:42:8d:
c0:c8:ee:de:7b:4e:fe:3b:da:c8:82:a1:48:06:65:29:97:6f:
5b:b0:88:d1:82:d7:a1:86:b3:e2:a3:38:4e:30:25:26:84:8f:
9c:3f:7b:06:1f:92:70:02:b7:01:15:ad:87:0d:cc:27:dc:f3:
84:fa:3a:e9:22:1e:0d:64:4d:80:92:bc:0e:23:81:88:f4:cb:
6e:5d:fe:d8:7c:41:b7:05:34:cf:d8:33:f8:5f:8f:b8:00:b9:
d6:83:b1:9f:54:5d:a6:ec:c0:49:bc:10:34:f8:bc:7e:6b:89:
b1:19:b3:dd:ff:33:5c:db:8d:f7:7b:e6:8f:48:83:34:03:24:
6f:bb:a3:29:f8:ad:cd:0e:48:3c:61:f1:89:fc:d7:04:52:27:
4e:e3:8c:59:b1:69:f8:96:ff:5c:85:0d:ac:9e:79:f4:e6:7f:
35:f2:6b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:48 2023 by rpki-client on console-ams.rpki-client.org