Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MsVSaL9MQ9inLW_0SDjMlLJ_Lsc.roa
File: MsVSaL9MQ9inLW_0SDjMlLJ_Lsc.roa (raw, json)
Hash identifier: jx1hJsq3UDd8Mq8/IR5/GoUHOGVzKsJBpLYRjvY7cKg=
Subject key identifier: 32:C5:52:68:BF:4C:43:D8:A7:2D:6F:F4:48:38:CC:94:B2:7F:2E:C7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E176845
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MsVSaL9MQ9inLW_0SDjMlLJ_Lsc.roa
Signing time: Sat 01 Jan 2022 01:58:14 +0000
ROA not before: Sat 01 Jan 2022 01:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47810
IP address blocks: 194.135.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236415045 (0xe176845)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32c55268bf4c43d8a72d6ff44838cc94b27f2ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cf:bd:2d:5f:35:cc:d7:e7:a7:49:8f:a2:f7:
f0:70:ea:67:5e:32:80:2a:83:61:64:63:7d:a2:1b:
c0:8c:ff:42:db:a7:b6:2a:24:78:26:2f:c9:28:46:
34:d4:80:a2:58:5d:2e:50:69:a4:10:10:96:c7:1e:
9a:0d:77:02:08:0d:ac:de:a2:57:5d:38:b5:14:53:
96:d9:7c:18:9a:26:6e:fb:23:09:b7:51:ca:e4:9a:
c7:64:0a:00:62:06:cf:b1:f5:23:68:ea:47:1a:76:
99:f5:f1:a1:72:27:1e:cd:35:85:d5:da:27:ba:5d:
40:19:1d:ed:50:f3:ca:bd:b5:18:2b:57:d6:fc:b4:
08:63:80:6a:91:7f:f4:0f:01:6d:9e:e0:24:c4:6d:
91:e3:88:29:35:77:3a:3b:b9:e4:02:5e:d6:db:45:
ac:18:5a:19:d3:b8:b0:5b:48:2f:33:5b:a9:6f:69:
14:65:05:8a:91:d1:59:98:77:db:f0:f0:6d:63:1f:
b7:84:6b:3c:4c:65:97:bd:c3:4d:78:90:f5:71:e7:
95:43:17:a0:2a:74:bf:58:04:e3:a7:65:e3:64:12:
f1:ee:b8:2e:03:55:36:1d:19:38:c2:84:7a:a2:a0:
7e:45:c9:44:c0:f6:7c:8b:85:85:6d:1c:c7:90:2d:
ef:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:C5:52:68:BF:4C:43:D8:A7:2D:6F:F4:48:38:CC:94:B2:7F:2E:C7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/MsVSaL9MQ9inLW_0SDjMlLJ_Lsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.119.0/24
Signature Algorithm: sha256WithRSAEncryption
52:7a:5d:35:9a:ec:3b:89:02:18:b2:08:7c:30:46:95:4e:73:
c1:84:c3:f5:dc:10:30:09:81:cb:13:1e:3b:ac:52:13:b2:db:
75:1a:50:c0:8f:96:78:c9:c9:7b:35:e0:95:64:b2:cb:cc:b8:
15:9e:77:6f:74:d8:f8:f2:6d:e7:d8:80:cf:e8:96:0d:42:f6:
d5:16:59:64:48:39:52:3d:00:53:92:32:7e:5d:f6:0e:85:d1:
f9:75:88:7f:f5:c4:3c:af:1c:58:13:f7:41:41:ab:77:d0:79:
fc:d6:ab:77:b6:a1:50:ab:f6:9e:34:a0:17:2b:4b:68:d5:5a:
f7:74:89:82:4c:db:8e:a2:47:5c:82:b8:74:e5:91:36:da:e1:
c0:c7:30:5b:c6:d3:5c:70:01:7a:0d:4b:50:77:33:95:ce:a8:
1f:31:fb:ee:f3:4e:22:ac:b7:b4:ff:01:0c:48:98:49:51:94:
72:ad:9f:e8:ef:3c:30:10:47:7a:29:d2:89:08:94:03:dd:67:
1c:8f:f6:a9:d8:e5:d7:02:1d:5e:21:be:d0:df:be:76:12:f9:
a8:c8:ef:6e:76:94:16:20:5c:b6:93:f4:f4:a0:ab:d6:2f:dd:
78:6c:79:89:e6:dc:26:37:f3:ec:2f:d0:ef:29:87:e2:f6:ff:
ee:93:19:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:01 2023 by rpki-client on console-fra.rpki-client.org