Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jq2KdjsRUdy6QxvaZLiTjO6GrQQ.roa
File: Jq2KdjsRUdy6QxvaZLiTjO6GrQQ.roa (raw, json)
Hash identifier: 7l7iirrdFSayV8V6JhBbhh5WDsixMTg6ddaMBEADZoU=
Subject key identifier: 26:AD:8A:76:3B:11:51:DC:BA:43:1B:DA:64:B8:93:8C:EE:86:AD:04
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0F6C5E47
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jq2KdjsRUdy6QxvaZLiTjO6GrQQ.roa
Signing time: Tue 12 Apr 2022 11:24:03 +0000
ROA not before: Tue 12 Apr 2022 11:24:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 194.87.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 258760263 (0xf6c5e47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Apr 12 11:24:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=26ad8a763b1151dcba431bda64b8938cee86ad04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:58:89:06:88:73:f5:b6:46:89:cd:fc:7d:7c:
ee:9e:f9:ad:9b:f3:01:e0:15:b1:1b:84:80:cb:bf:
0e:24:6b:96:43:fb:89:dd:07:32:5f:6a:a2:0d:44:
d7:24:3a:a3:9b:32:f3:af:b8:d9:2b:e8:f9:4b:98:
91:86:1e:b9:07:96:45:c5:25:e9:5e:08:1e:78:f3:
15:9d:1a:2a:33:e8:98:40:00:98:17:05:69:a0:a1:
74:7d:8d:0f:08:bb:e0:6d:b4:38:9e:ef:4f:57:75:
c0:31:39:94:15:a2:c9:65:eb:b3:31:c2:e7:44:19:
59:52:aa:58:b3:f4:f1:4c:f0:ab:cb:c1:bd:83:f5:
41:44:ff:62:7a:8b:6f:4b:02:55:61:28:71:97:eb:
40:90:b0:8d:a1:c7:45:53:6d:72:6a:e5:15:57:3c:
30:d6:d1:d9:e1:31:aa:07:41:f0:ce:af:2a:bf:06:
1c:08:24:32:bd:20:31:6d:15:78:18:db:47:80:7d:
47:b2:52:21:8d:3c:7e:57:84:d3:41:06:6b:a5:39:
81:b4:6d:17:e4:8d:ac:cb:3c:53:e5:62:0c:11:7d:
46:a4:24:82:48:73:4f:3e:65:29:e7:6e:16:d7:e3:
5f:68:08:04:a4:68:6e:49:5d:b5:83:df:d6:38:56:
7d:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:AD:8A:76:3B:11:51:DC:BA:43:1B:DA:64:B8:93:8C:EE:86:AD:04
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/Jq2KdjsRUdy6QxvaZLiTjO6GrQQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.188.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:93:ef:11:54:97:e3:57:a4:ef:f8:1f:96:ec:91:55:bc:8b:
8e:23:22:e1:10:56:dd:c5:4f:b2:0e:79:a0:8c:01:aa:7c:56:
4a:e9:23:5a:2f:77:e9:cf:6f:c9:62:e4:52:1a:f9:53:4c:fb:
b4:12:7b:bc:6f:b3:31:3b:14:f0:1c:d5:3a:42:d6:c8:2c:fb:
c7:85:e9:93:cf:8c:ed:95:f9:a2:44:9c:dd:e1:70:f5:12:40:
a5:19:3e:9d:8b:03:93:6d:07:a7:58:2e:40:30:6c:04:16:7f:
09:60:bb:cd:8a:1d:a1:a0:8f:b7:a0:65:63:c7:93:1f:f5:51:
df:54:ea:20:20:dc:89:ba:de:de:d8:3b:66:73:0d:7e:17:bc:
29:08:65:f8:07:ab:3c:85:74:43:55:ad:d8:b7:12:6d:65:28:
6c:6b:8e:0d:7f:f7:b0:43:61:7c:16:bc:3e:16:27:6c:70:25:
c9:c0:6f:5e:1c:d9:13:84:34:5c:1c:94:bd:7e:58:f9:c7:0f:
92:77:41:7c:c5:0d:6c:6e:ca:f3:bf:ee:3a:9f:6d:df:19:39:
b7:b2:44:57:68:1c:4f:f4:24:82:14:34:1b:2a:06:21:83:82:
d9:dd:ae:e3:17:34:a7:00:8e:d0:c6:e8:60:e6:d8:68:b2:7e:
00:ec:3b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:12 2024 by rpki-client on console-fra.rpki-client.org