Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9dlpe07pS7TvvfYR9GNOD8rc_Rs.roa
File: 9dlpe07pS7TvvfYR9GNOD8rc_Rs.roa (raw, json)
Hash identifier: Gz3/dRKUKTkCLF9hgczpPkIkI10/zL0ufzAA2XSre0E=
Subject key identifier: F5:D9:69:7B:4E:E9:4B:B4:EF:BD:F6:11:F4:63:4E:0F:CA:DC:FD:1B
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0183C27128690F2EA2F14173B095524431A0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9dlpe07pS7TvvfYR9GNOD8rc_Rs.roa
Signing time: Mon 10 Oct 2022 15:08:59 +0000
ROA not before: Mon 10 Oct 2022 15:08:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138687
IP address blocks: 194.87.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c2:71:28:69:0f:2e:a2:f1:41:73:b0:95:52:44:31:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 10 15:08:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5d9697b4ee94bb4efbdf611f4634e0fcadcfd1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:16:1c:ba:b5:89:31:26:17:19:99:3c:f6:ce:
5a:f5:14:86:4c:82:2e:92:e0:31:14:61:03:9b:c7:
25:41:b6:eb:4d:87:55:3c:36:f2:7c:bb:52:42:3f:
b7:6a:a8:86:82:b0:2e:13:06:b2:09:71:58:a2:ea:
d5:2f:d7:15:66:88:8f:4a:19:0e:90:08:99:ac:d8:
e6:ef:14:c0:ec:ee:d0:37:31:1c:b8:a8:4a:f4:3b:
09:16:fc:e5:a5:8c:0c:bf:00:e7:e8:8b:d5:7e:f4:
c5:a5:d8:41:6c:d7:98:95:b0:01:c4:a6:3a:0f:c9:
83:fd:6a:db:c3:36:46:39:47:b5:08:1f:9d:81:f9:
10:03:79:aa:1a:3a:8e:aa:8b:1c:16:9f:78:a3:9f:
eb:98:f0:bf:b8:2e:f0:e8:4a:6e:b0:20:be:6e:b2:
65:f4:42:61:ab:17:7f:0e:cd:f5:2d:a3:47:87:42:
82:21:bd:16:e7:f0:1f:c6:e9:d5:d5:f7:79:26:aa:
9d:ff:23:1d:b2:ff:f2:87:54:da:25:85:96:b6:4e:
47:22:08:79:b9:2a:4d:10:b8:0e:33:a8:d6:85:fb:
4c:f9:cb:9b:67:b4:37:e1:b2:3c:b1:6c:09:12:8c:
3f:0b:c4:eb:28:84:e1:77:9a:89:f4:89:50:9f:91:
d3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D9:69:7B:4E:E9:4B:B4:EF:BD:F6:11:F4:63:4E:0F:CA:DC:FD:1B
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/9dlpe07pS7TvvfYR9GNOD8rc_Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.180.0/24
Signature Algorithm: sha256WithRSAEncryption
23:e3:25:81:7c:76:26:6f:e7:73:f1:b0:5e:80:8e:60:df:43:
82:7e:f6:88:e6:c1:35:99:f0:79:10:46:c7:7e:97:f8:40:3d:
59:21:a4:8c:50:51:77:6d:48:18:88:f6:14:4d:8b:45:03:75:
c8:14:2a:ea:ec:6f:f2:ef:80:c3:68:7a:44:9b:ba:c6:60:b6:
5a:c3:5a:1f:51:06:eb:6f:16:37:d2:dc:30:c3:e3:5f:91:31:
45:5c:29:ee:d1:a2:8f:50:f2:d3:50:8c:22:e1:8f:03:83:a0:
6c:2e:e5:fd:8d:cd:90:25:d2:8d:5b:64:17:71:a8:bc:06:7b:
da:fb:12:8f:3d:68:c9:65:be:26:b0:9b:02:0c:37:dc:ed:36:
46:79:2a:c6:fc:49:3e:0a:64:61:1d:ba:e6:93:a9:2b:af:a6:
99:b3:f0:fb:9f:0a:26:75:f4:3e:5b:cd:8a:1d:a2:96:e4:4b:
b3:46:be:e4:50:93:b4:b0:38:61:05:17:a3:24:93:e5:4c:d7:
d7:b2:3f:80:87:da:c0:46:63:77:af:55:53:d1:45:7f:d8:71:
e8:a5:2f:88:5c:51:d4:c8:f4:6f:33:25:70:3b:89:aa:7f:98:
a4:57:6a:17:5e:77:e9:ce:03:b0:86:26:12:46:9c:8a:71:64:
01:5a:59:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:51 2023 by rpki-client on console-ams.rpki-client.org