Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FD4953Y-Ch3mOPqlSs_n8v6BdVQ.roa
File: FD4953Y-Ch3mOPqlSs_n8v6BdVQ.roa (raw, json)
Hash identifier: XQ9knairsaX8QfVqVzb05utSbsrw2NDE9tF3HsO4u2Y=
Subject key identifier: 14:3E:3D:E7:76:3E:0A:1D:E6:38:FA:A5:4A:CF:E7:F2:FE:81:75:54
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E240A74
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FD4953Y-Ch3mOPqlSs_n8v6BdVQ.roa
Signing time: Sat 01 Jan 2022 01:58:22 +0000
ROA not before: Sat 01 Jan 2022 01:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210839
IP address blocks: 194.87.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237242996 (0xe240a74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=143e3de7763e0a1de638faa54acfe7f2fe817554
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:f5:9f:35:65:6d:a6:c2:e6:80:28:4a:df:22:
52:6e:f0:eb:7b:d0:a7:11:ac:ff:e5:2d:5b:6f:7b:
ac:ab:8c:cb:1c:17:9c:80:39:ed:4c:16:fb:aa:5e:
6d:e9:13:9c:72:8d:a9:ec:ad:b1:be:79:fa:e7:9c:
fb:61:3e:3a:e8:f0:1f:bb:e0:50:cf:62:c5:1e:16:
b7:da:cc:17:31:d1:ad:36:4d:e0:bb:f9:34:9e:c7:
bb:0b:46:a3:5c:fb:30:69:e9:de:fe:8b:20:9e:d8:
df:9d:3e:c2:4a:20:cc:d6:b5:0b:b3:b1:91:2d:74:
77:2e:66:d5:3a:7e:d5:cb:cb:f5:77:85:67:51:5e:
02:38:71:a1:6b:44:56:3a:7c:80:50:4c:6f:83:15:
ae:3f:bd:4b:a4:77:9a:3d:38:89:23:8e:46:8c:e4:
6f:b5:d1:b9:d7:f5:7b:13:62:15:08:a6:b1:22:26:
4c:46:60:b6:b5:c7:5b:61:6f:9f:aa:82:0e:12:80:
1b:fc:ac:4a:93:4f:10:5c:68:aa:ed:f4:e1:9c:b8:
90:b9:c5:c9:4d:b0:e3:aa:3a:e3:f8:c4:a5:27:83:
4b:b5:e4:93:76:02:39:34:23:ff:41:97:ed:35:fd:
26:3d:75:f5:c7:6a:79:d1:cd:8d:3c:f6:63:4f:f5:
19:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:3E:3D:E7:76:3E:0A:1D:E6:38:FA:A5:4A:CF:E7:F2:FE:81:75:54
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/FD4953Y-Ch3mOPqlSs_n8v6BdVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.150.0/24
Signature Algorithm: sha256WithRSAEncryption
18:2e:a6:ae:c0:b7:2f:c2:73:d1:a9:cf:f8:e4:f0:52:b8:c5:
56:ec:83:65:9d:de:f1:97:a6:d5:28:73:df:cd:ac:83:c4:57:
07:3b:39:a2:85:8e:53:69:cf:61:9a:bc:1c:98:dd:30:d7:32:
4f:7e:a7:a7:7b:c6:a1:49:ab:c4:83:6a:ce:55:38:f4:b9:4e:
0f:fa:23:0d:7b:f2:fc:c9:a8:48:fe:6f:b6:27:42:80:03:5b:
75:67:55:74:27:ed:65:4a:65:f1:45:c3:be:e6:c7:bd:aa:1b:
31:88:0c:9d:7b:4b:bc:e8:f7:f2:ce:45:b5:48:65:7a:ed:5b:
40:4d:bf:01:94:db:7c:af:27:87:56:cd:d9:04:66:3e:6c:ca:
bb:24:14:4f:cc:42:36:89:84:6f:24:9e:ca:bc:85:c7:8d:73:
77:16:6d:d1:ff:a9:82:17:7b:ce:a0:0e:b6:90:68:11:62:88:
47:fa:e2:43:d0:89:2f:e5:bc:87:a0:af:9b:a6:55:cf:a0:62:
01:18:7c:3b:8e:e0:0e:fa:39:d9:73:6a:84:3b:9a:04:10:ad:
ce:14:76:f4:e8:48:76:3a:13:0a:e9:58:6e:52:17:fd:69:4a:
77:bb:45:73:f7:4c:95:e1:e0:ca:c3:bb:65:81:ec:00:e0:5f:
a1:70:e0:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:53 2023 by rpki-client on console-ams.rpki-client.org