Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jdPJcmKXKxNYsxbMb6Bi6tGCVOQ.roa
File: jdPJcmKXKxNYsxbMb6Bi6tGCVOQ.roa (raw, json)
Hash identifier: xIAqe/NM+tHnOfPoRpbjfwOLumZVLEqlof1WOqTrIpg=
Subject key identifier: 8D:D3:C9:72:62:97:2B:13:58:B3:16:CC:6F:A0:62:EA:D1:82:54:E4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 105C3E84
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jdPJcmKXKxNYsxbMb6Bi6tGCVOQ.roa
Signing time: Mon 13 Jun 2022 16:58:44 +0000
ROA not before: Mon 13 Jun 2022 16:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 194.135.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274480772 (0x105c3e84)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jun 13 16:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8dd3c97262972b1358b316cc6fa062ead18254e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b9:0e:19:80:d9:13:95:94:5d:1c:b1:43:48:
09:5c:fe:61:fb:d0:db:6e:18:60:37:36:37:74:20:
85:13:75:f9:87:65:db:4d:7c:47:79:ec:fa:33:f3:
e7:90:40:09:93:f5:c3:fd:f8:8f:de:08:5c:41:a1:
31:78:ab:5b:d8:1c:90:84:3e:29:43:7a:4f:38:04:
34:74:c3:97:01:59:51:e1:c4:a0:11:25:08:7d:11:
b2:c9:fa:7c:a4:c5:f4:d4:14:02:ae:2a:b6:38:80:
f3:8e:4d:5a:ae:6c:49:0c:12:29:5a:33:ef:75:b3:
37:7c:35:d9:c5:3f:5a:22:88:9d:da:d2:1c:24:c9:
63:ae:aa:60:a1:9b:7a:44:88:9f:6a:4a:44:bf:97:
5c:f8:eb:2a:b3:06:2c:0b:46:99:59:44:74:b4:2b:
6a:5a:d4:c1:d3:b6:40:d8:12:f7:9d:79:3a:e1:ee:
f0:d8:98:70:08:97:14:43:e0:f1:42:fe:6e:40:25:
cd:4b:91:6b:8b:cd:7c:b1:71:41:db:50:71:07:79:
84:5f:d5:dd:01:09:f6:79:b8:c7:57:c8:cb:3a:5a:
c9:37:72:e0:46:69:9c:f2:00:a6:f8:56:27:a2:b3:
c7:83:bb:a3:14:22:30:08:2d:da:42:08:ec:94:6d:
2d:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D3:C9:72:62:97:2B:13:58:B3:16:CC:6F:A0:62:EA:D1:82:54:E4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/jdPJcmKXKxNYsxbMb6Bi6tGCVOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.135.23.0/24
Signature Algorithm: sha256WithRSAEncryption
77:08:24:a4:f7:d8:16:c0:63:3d:d4:dd:23:c4:db:80:6a:f3:
fc:66:73:93:b4:28:49:99:ae:72:45:67:22:de:31:19:0d:79:
70:b6:d4:eb:40:2a:02:9e:e5:f8:26:2d:5c:63:7c:56:16:20:
12:24:e7:f4:8c:43:20:21:7c:d6:7e:e4:5f:db:07:2d:bb:9c:
ad:28:07:1c:6c:99:0e:91:82:8c:37:ec:ab:94:4c:ec:7d:28:
c4:76:de:cb:35:05:bf:c7:b8:44:2f:31:61:ee:e2:e9:fe:8e:
9f:ab:a3:8e:dd:ca:e7:2e:92:f8:cd:cb:e7:79:68:7b:e0:36:
80:2c:64:8a:30:ce:c2:4e:54:2e:a9:85:11:33:54:59:27:7a:
dc:80:8b:29:b1:00:26:ea:0f:c8:45:7b:da:87:d0:97:aa:9f:
43:b6:69:13:0c:90:a2:0c:38:0f:ea:d5:f7:fc:57:36:af:9c:
91:f5:74:ff:14:21:94:8b:06:f1:88:81:ca:7a:3b:d3:35:d3:
4e:60:30:1b:8d:de:c3:df:21:76:25:1e:9b:fb:e8:97:aa:cf:
a4:8c:50:1c:f4:5d:20:2c:99:17:52:e0:71:f7:ee:3a:d8:e7:
7a:75:c7:52:bd:bd:a4:59:71:12:b5:51:8d:ba:f3:db:0c:73:
9b:52:07:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:24 2024 by rpki-client on console-fra.rpki-client.org