Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1fXn9gJwBCRwa2nbSPps6xZUp0Y.roa
File: 1fXn9gJwBCRwa2nbSPps6xZUp0Y.roa (raw, json)
Hash identifier: 7MYlZ/HttsCD6hJ5qw1yicpw3pczAKPfsx6tpTiJjjA=
Subject key identifier: D5:F5:E7:F6:02:70:04:24:70:6B:69:DB:48:FA:6C:EB:16:54:A7:46
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01852F16DF0E95303CCEEAF42C95F50CE5CA
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1fXn9gJwBCRwa2nbSPps6xZUp0Y.roa
Signing time: Tue 20 Dec 2022 10:31:46 +0000
ROA not before: Tue 20 Dec 2022 10:31:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 194.87.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:16:df:0e:95:30:3c:ce:ea:f4:2c:95:f5:0c:e5:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 20 10:31:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5f5e7f602700424706b69db48fa6ceb1654a746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a4:d6:f4:b2:75:e4:e4:87:e9:3c:30:2d:94:
7b:ed:1f:f9:96:72:cd:f5:cc:ee:bb:e2:60:49:b2:
39:2d:03:be:8e:06:98:6f:48:93:5c:d4:c9:43:e8:
1b:2c:a3:5d:dc:60:d9:e4:b5:68:53:ae:ac:30:52:
ce:d7:e5:ec:8a:75:fb:b7:43:e5:e7:9d:14:66:45:
3d:88:42:ba:1f:a4:49:e3:db:3c:19:93:fe:26:f3:
72:da:23:2f:b4:61:1d:0d:63:4e:a3:63:4b:0b:89:
1b:02:59:f5:ed:82:26:27:67:5c:c8:50:77:2c:a8:
f6:21:7c:06:d8:51:6b:86:ee:27:f9:c7:c2:80:ea:
3c:16:20:d0:29:87:73:b2:f7:e5:b5:5e:8a:c0:f3:
1f:72:f6:13:c7:e7:55:83:ed:fe:e2:52:e1:3c:22:
8a:89:b4:93:a9:4f:a1:37:3e:56:aa:e8:d4:3d:b6:
1e:07:96:2b:43:8e:bd:4d:2b:7f:4d:5b:d4:8f:df:
ec:2d:7b:d6:4f:69:95:2e:43:40:f1:c0:89:f0:27:
52:82:21:fa:ea:8a:f2:fb:9c:2d:43:d4:10:22:88:
91:43:a9:7d:9c:3a:b2:8a:7c:30:5c:70:c6:51:a4:
60:97:b5:91:fd:08:ae:46:7d:49:de:af:4a:3f:b5:
d8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F5:E7:F6:02:70:04:24:70:6B:69:DB:48:FA:6C:EB:16:54:A7:46
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/1fXn9gJwBCRwa2nbSPps6xZUp0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.224.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:94:c8:79:5e:05:11:e7:63:25:41:c9:ed:71:c6:a2:96:10:
f5:6c:53:b6:65:a4:1b:39:f2:12:00:3b:75:87:c4:63:9c:63:
62:fb:89:08:c9:5f:09:62:b8:14:65:97:af:0f:36:8f:57:99:
c0:09:37:a1:70:b0:7b:15:01:28:c2:d1:a0:74:91:2c:d5:2f:
8c:14:c6:23:4f:96:40:4d:73:0c:cd:b3:3e:6b:c4:93:e1:5b:
1a:35:07:11:45:e2:57:71:eb:53:cb:a0:bf:32:6c:58:8c:e5:
07:bb:8b:55:ee:c0:40:f3:4a:3e:01:6b:5b:ca:94:51:b1:fa:
e6:d3:a3:66:53:47:b9:ce:c1:2b:d1:d2:00:27:5c:82:1b:67:
59:4b:d8:34:50:99:5a:18:92:8d:83:db:8f:93:a9:f8:be:9b:
f8:f7:23:a4:59:9f:01:17:fc:75:6e:9b:dc:a2:74:4d:b7:de:
c4:c8:41:05:78:95:b5:fc:6f:84:76:77:ea:ca:e9:f9:77:32:
d4:d2:69:eb:68:25:d6:ee:d5:a9:d4:09:2c:b9:63:f5:2b:9f:
ea:0a:be:37:76:2c:9e:ac:d4:1f:13:b4:6b:55:3a:89:82:a3:
de:b0:8e:fb:71:21:60:b7:3d:8f:f3:7c:b6:8d:94:d0:58:80:
a7:0f:5e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-ams.rpki-client.org