Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bpYyZ0Gy1q-cThgwvrf2Jnu6f4E.roa
File: bpYyZ0Gy1q-cThgwvrf2Jnu6f4E.roa (raw, json)
Hash identifier: kXUzsn0+PhUCq2Q1546chu6U6ul7r5Gm5N4L6GCjZAM=
Subject key identifier: 6E:96:32:67:41:B2:D6:AF:9C:4E:18:30:BE:B7:F6:26:7B:BA:7F:81
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0181FC30DF6CA4654AACCC21FE3B53D3755B
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bpYyZ0Gy1q-cThgwvrf2Jnu6f4E.roa
Signing time: Thu 14 Jul 2022 10:11:10 +0000
ROA not before: Thu 14 Jul 2022 10:11:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136923
IP address blocks: 194.87.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fc:30:df:6c:a4:65:4a:ac:cc:21:fe:3b:53:d3:75:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 14 10:11:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e96326741b2d6af9c4e1830beb7f6267bba7f81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:d2:b2:2b:70:24:9b:2b:44:a8:50:17:52:c2:
08:d2:d6:ae:27:cc:ff:30:a7:bc:6c:5a:71:ad:91:
78:93:b4:28:c8:28:d1:21:8f:63:4f:04:8f:69:0a:
3b:b9:34:94:84:5e:ad:d6:c3:c2:f5:0a:ad:b0:8f:
10:db:78:a3:fc:dd:d8:42:51:28:9f:a6:48:23:7f:
72:39:1c:a6:98:54:4f:45:f6:f0:18:94:60:51:0a:
4c:c1:2b:70:c6:1e:0c:d3:ee:f2:38:a8:31:72:49:
c4:07:38:ab:36:70:42:08:aa:ac:cb:25:d2:d5:4d:
43:e2:18:37:f0:1d:9e:52:01:26:51:dc:31:9c:dc:
27:5f:10:b3:20:e4:5b:71:43:5b:72:01:d2:74:ed:
27:6d:f5:f4:b9:1f:5e:af:d7:fa:6d:6b:fc:42:d3:
58:c6:84:9a:fd:a7:2b:51:de:b3:20:09:a4:d0:3d:
85:16:15:fe:09:88:d0:a0:5d:24:a6:22:2f:bb:49:
4f:f5:8e:20:c1:f9:c6:ec:ac:96:87:b5:14:75:a8:
66:0d:4f:9a:4b:91:0f:d5:7b:50:c8:83:b7:87:4b:
e5:1a:bd:0b:57:60:d8:00:7e:3f:a5:a6:70:4d:0b:
b5:eb:a2:f1:fb:ec:6c:82:ce:23:95:3f:00:43:3f:
9f:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:96:32:67:41:B2:D6:AF:9C:4E:18:30:BE:B7:F6:26:7B:BA:7F:81
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/bpYyZ0Gy1q-cThgwvrf2Jnu6f4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.7.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:19:88:35:7a:6a:b9:d8:89:87:c2:65:e2:47:fc:87:0d:fd:
98:43:4a:f0:15:ee:c5:17:8c:5d:12:a0:0b:60:5b:63:1c:e6:
15:4e:43:43:c9:9e:f9:c9:a4:2d:ec:71:64:1a:e6:94:48:d7:
e9:69:82:ba:c6:85:1b:25:e2:7b:dc:2c:47:ac:70:57:91:80:
07:0b:41:e4:08:52:9d:ab:4d:f1:8b:e1:70:19:41:17:f6:a9:
2b:9f:eb:98:e0:e7:38:9e:15:54:5c:eb:ab:03:6d:50:19:9a:
72:75:3a:0e:43:11:ce:d0:28:e8:1b:4c:1c:73:22:6e:65:25:
55:a2:2c:6a:21:8e:99:f3:3b:54:ba:70:c2:36:d8:29:46:a1:
d4:2d:ef:d7:b2:7a:5a:84:fb:a8:6d:be:83:6b:86:8e:08:5e:
6b:80:60:34:71:fd:34:b5:7a:8f:a8:07:e5:ef:6f:0a:41:ec:
09:dd:86:76:2c:5c:ab:af:6b:8a:41:47:40:2f:1a:0b:db:49:
12:98:b4:8a:8b:a0:25:ae:56:ee:d3:83:dd:01:a6:44:70:12:
92:e8:a0:e0:71:35:b9:bb:2d:9c:a3:24:c3:26:be:3f:1e:ed:
db:96:aa:e1:30:88:ae:60:97:d4:94:98:f1:00:d2:dc:b8:cb:
9e:67:48:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:02 2023 by rpki-client on console-ams.rpki-client.org