Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/4AVtNbeW7FHtb7SP8HMLjCFGNjg.roa
File: 4AVtNbeW7FHtb7SP8HMLjCFGNjg.roa (raw, json)
Hash identifier: jxBkHfU+AvfHyT400/tQBIYqUqmOhzVtHxlQx6A46Y8=
Subject key identifier: E0:05:6D:35:B7:96:EC:51:ED:6F:B4:8F:F0:73:0B:8C:21:46:36:38
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0F0AEC15
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/4AVtNbeW7FHtb7SP8HMLjCFGNjg.roa
Signing time: Wed 09 Mar 2022 17:56:42 +0000
ROA not before: Wed 09 Mar 2022 17:56:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210654
IP address blocks: 194.87.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 252374037 (0xf0aec15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Mar 9 17:56:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0056d35b796ec51ed6fb48ff0730b8c21463638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:a2:5c:f1:64:d2:76:ed:3a:65:8d:14:f0:e2:
26:18:72:1d:f8:30:45:26:bc:3e:a9:ae:1e:65:f0:
10:66:aa:70:ce:3d:32:3c:a1:fe:e8:f7:c5:d1:54:
36:e6:ba:1a:47:2d:25:6d:25:a0:80:21:a6:51:10:
e9:18:01:02:fd:c1:6e:60:23:26:9d:91:ec:9d:10:
d3:bc:7c:49:2b:5a:25:38:0e:62:96:30:28:c9:5a:
e6:59:d3:20:24:3f:b4:1d:cc:ae:ff:a2:81:d4:c5:
08:55:6f:6b:ec:df:52:0b:07:9d:3a:87:bd:22:24:
53:2d:81:d7:2a:b1:dd:c4:e7:64:f0:8a:8c:46:08:
1c:47:c9:65:f2:1b:2e:85:55:77:3c:4f:3c:25:dd:
47:21:ff:cb:47:59:dd:67:c0:03:ba:72:83:d5:48:
a3:05:f3:d6:9c:46:a4:27:23:c8:84:6c:5b:09:aa:
45:32:7a:99:26:d6:1f:90:41:6b:8d:cf:f9:8f:74:
18:3f:75:11:b8:62:75:97:25:ec:d4:58:0b:fd:a2:
c5:af:7a:44:44:70:08:b4:d6:29:53:9f:d7:03:28:
df:92:54:5e:a6:99:30:09:f8:b2:59:e8:87:e9:8a:
03:d0:81:c4:b6:28:85:b5:cd:7c:f5:02:3d:af:58:
db:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:05:6D:35:B7:96:EC:51:ED:6F:B4:8F:F0:73:0B:8C:21:46:36:38
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/4AVtNbeW7FHtb7SP8HMLjCFGNjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.132.0/22
Signature Algorithm: sha256WithRSAEncryption
03:a4:d8:69:34:ea:a6:73:a8:46:f8:46:de:df:c4:30:3e:6a:
96:d6:f1:84:8f:93:55:b7:89:39:ea:ff:ca:81:9f:94:df:81:
98:fb:ef:dd:e3:08:46:d9:de:98:f8:04:31:c4:1d:8e:5f:97:
26:49:55:da:63:6e:19:86:19:65:69:f6:05:dd:66:44:74:d6:
7d:c9:92:06:ad:b3:1f:a3:30:e8:08:89:95:3e:11:2b:c7:47:
75:95:d8:69:aa:7e:da:3f:2e:da:dd:46:7d:54:4b:9e:e0:00:
1e:61:4c:87:6a:db:3e:b1:7b:21:33:1a:b3:7a:0b:f9:18:82:
00:3f:29:df:70:5d:34:d4:53:c8:f7:b3:e2:5a:7b:ce:fb:f5:
3d:29:d9:94:e5:11:6e:bf:69:ce:29:72:d0:2c:5b:70:23:74:
a8:e0:a5:89:39:5d:d4:28:46:c6:99:ea:3e:da:b5:33:ab:a3:
9a:0e:3c:42:95:a9:d1:7f:2d:ea:93:3f:4c:b2:d5:b4:8f:08:
f4:88:ba:bb:03:ab:1e:3d:0b:60:69:81:0b:14:d0:1f:0a:a3:
10:83:c9:a8:71:f0:d6:5b:01:bd:da:cc:e1:cc:6b:23:34:41:
18:09:59:0e:64:cc:54:df:9d:6e:ba:1c:7f:19:2e:7e:77:63:
cd:a8:6b:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:05 2024 by rpki-client on console-fra.rpki-client.org