Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IXLIQsL7xIJ1Y26yr3tODwSwfK4.roa
File: IXLIQsL7xIJ1Y26yr3tODwSwfK4.roa (raw, json)
Hash identifier: 7JgWCEVYbxAKuoBAHLEozSzwTe3NizGzhYTOtHxmRH8=
Subject key identifier: 21:72:C8:42:C2:FB:C4:82:75:63:6E:B2:AF:7B:4E:0F:04:B0:7C:AE
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01853045EB9CEEDD8AAB8EB35D7DD8797AAD
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IXLIQsL7xIJ1Y26yr3tODwSwfK4.roa
Signing time: Tue 20 Dec 2022 16:02:46 +0000
ROA not before: Tue 20 Dec 2022 16:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 194.87.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:30:45:eb:9c:ee:dd:8a:ab:8e:b3:5d:7d:d8:79:7a:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Dec 20 16:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2172c842c2fbc48275636eb2af7b4e0f04b07cae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6a:c8:a1:bc:c9:dd:19:02:a1:a8:83:e2:af:
91:6a:24:af:c8:5b:c8:59:26:bb:34:79:75:dc:68:
01:69:03:68:7e:66:a7:98:83:b3:73:15:1f:99:f3:
41:04:e6:48:bf:b4:53:f4:8e:6b:03:91:14:61:ef:
95:d9:4d:b6:1d:8a:cd:41:9b:c6:67:0d:e4:b9:5b:
25:99:50:dd:56:cb:eb:d2:47:d8:11:5e:5d:79:95:
78:ed:a9:2f:55:94:3b:3a:11:d5:24:a9:b1:18:fb:
a6:a7:92:70:a2:ef:a4:f8:8b:62:2a:67:64:e6:aa:
ca:a2:22:dd:9e:47:14:b2:db:1b:de:6c:38:76:3b:
36:8b:d0:eb:7a:22:b1:94:fe:c5:59:59:ca:e0:0f:
7f:b1:c4:fb:4e:c0:e5:41:ed:1a:60:6a:52:5b:52:
a7:e1:84:63:28:05:f8:08:22:13:9c:1d:04:48:e8:
67:d3:1a:36:e0:15:01:81:25:b1:6c:c3:b2:cb:b1:
35:26:30:0f:5f:0f:86:bf:83:85:11:c3:93:a2:48:
a5:66:04:21:88:6a:ed:b4:53:7a:51:d6:1a:17:9d:
29:b4:e7:2e:e0:2e:b0:d0:7f:da:15:d4:ac:73:34:
a0:68:23:64:2c:8e:29:d1:e6:07:47:37:53:a2:ac:
c6:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:72:C8:42:C2:FB:C4:82:75:63:6E:B2:AF:7B:4E:0F:04:B0:7C:AE
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/IXLIQsL7xIJ1Y26yr3tODwSwfK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.34.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:84:03:8c:a3:57:4b:7f:78:e8:d7:f3:fa:60:9c:af:c4:4d:
b8:67:ad:11:90:74:be:72:b3:de:15:24:85:60:47:f7:f3:58:
0e:c6:da:f6:ba:e7:2c:b9:3d:4f:6a:59:3e:d6:00:08:2d:10:
4f:4c:d3:c7:15:32:aa:d8:46:dd:2f:68:22:c1:ed:83:11:3f:
26:b4:1a:e0:5d:4a:17:02:c2:85:1e:72:a5:44:65:cf:64:87:
da:63:cc:d4:50:2a:0a:cd:03:bf:d2:a8:09:68:92:e0:e0:c2:
06:bc:4d:9c:65:25:c3:b8:51:4b:6c:9c:a1:c7:c7:4f:83:a5:
ac:45:5f:c4:cc:f2:cf:b2:d6:df:16:ac:52:aa:12:2e:16:47:
23:c5:8d:6a:46:4c:c3:f4:0c:05:42:50:09:61:11:aa:6e:44:
d4:91:49:aa:24:6e:e6:3c:5d:7f:13:d2:e3:d8:46:e7:4b:13:
1a:01:3c:5c:df:c3:c8:80:b1:09:8c:b2:03:af:7b:52:d0:6d:
d1:b5:0c:be:cd:3a:83:94:8c:14:0a:a3:70:e2:e3:06:56:94:
80:46:0a:34:8d:89:8d:9d:45:b2:11:7f:8e:02:24:85:df:c7:
3b:4c:5f:66:e5:56:d7:d3:9a:4d:70:b6:fc:e9:e7:72:db:02:
74:95:72:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:54 2023 by rpki-client on console-ams.rpki-client.org