Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/p70QsYSSnduGXZBUMRXHfFn0ybQ.roa
File: p70QsYSSnduGXZBUMRXHfFn0ybQ.roa (raw, json)
Hash identifier: /UskuJcVTL88cZEXto1V4CV0FGUoFMojUGfpvj8egQ0=
Subject key identifier: A7:BD:10:B1:84:92:9D:DB:86:5D:90:54:31:15:C7:7C:59:F4:C9:B4
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0E152E9C
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/p70QsYSSnduGXZBUMRXHfFn0ybQ.roa
Signing time: Sat 01 Jan 2022 01:58:14 +0000
ROA not before: Sat 01 Jan 2022 01:58:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43444
IP address blocks: 194.87.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 236269212 (0xe152e9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jan 1 01:58:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7bd10b184929ddb865d90543115c77c59f4c9b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:19:5b:12:33:f6:32:d8:01:8d:ca:1e:34:1e:
d8:78:c2:87:bf:0d:87:91:0c:6d:12:c5:63:e0:48:
ad:aa:81:e1:b8:b3:99:e5:ca:24:18:6c:b0:14:3c:
22:74:06:f7:14:1f:5f:67:15:ce:99:3c:fb:8c:22:
84:fe:05:c4:06:d4:e7:09:49:dc:88:46:32:dc:7e:
3b:19:3e:96:00:df:22:e8:75:b1:74:88:a8:19:d6:
ce:a2:a2:65:be:8d:fd:9f:06:8d:2c:6b:48:aa:32:
82:a2:2e:70:9f:e6:ff:22:6e:26:49:49:e7:99:79:
12:2f:cf:5f:44:bb:9e:8a:e2:59:2f:26:75:08:31:
6d:18:e7:4c:15:1d:ca:66:60:c2:a9:32:1d:2e:bf:
d6:28:7c:ac:d8:2f:10:fb:c9:5d:b8:b7:53:fc:ac:
86:82:ed:67:60:2a:e3:b6:d7:2c:d9:b1:85:62:7f:
da:50:f1:5a:eb:94:de:c5:5e:8d:dc:cc:84:ba:f9:
af:43:b4:23:81:47:83:40:b3:fe:28:b6:58:7d:0c:
a4:b6:3f:be:84:40:c5:64:6b:de:9f:bd:e7:25:d2:
13:44:19:f3:b2:74:b6:d2:fd:df:39:91:24:66:b8:
78:47:20:86:25:5e:ed:4a:18:10:68:47:15:ae:0e:
f5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:BD:10:B1:84:92:9D:DB:86:5D:90:54:31:15:C7:7C:59:F4:C9:B4
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/p70QsYSSnduGXZBUMRXHfFn0ybQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.53.0/24
Signature Algorithm: sha256WithRSAEncryption
18:62:07:04:aa:57:28:6d:d8:28:74:8d:b3:34:9e:bd:6b:62:
fa:08:88:2f:52:ea:6b:7f:42:ff:94:39:c7:73:d7:ed:6e:a5:
6b:70:66:5b:44:c6:13:77:3a:98:df:41:84:03:ae:22:a2:a8:
b7:d2:ee:44:c9:cc:e6:cb:4c:d2:92:97:90:3f:79:bd:75:23:
c3:5b:1c:8a:75:11:60:6d:bf:d3:7b:60:e4:89:8e:e4:4b:91:
7b:e8:e2:37:f5:e8:2b:15:a9:d4:68:5e:21:f2:bc:0d:a4:8e:
2e:45:cb:b4:2e:d2:d6:d0:74:57:69:e7:d2:c6:86:44:d9:1e:
32:67:eb:c5:55:d0:91:46:f7:02:99:79:84:9b:92:bc:ff:8d:
46:ab:fa:4d:90:19:e5:bc:3a:0e:10:23:e3:79:f4:ea:f7:b5:
36:aa:d7:3a:9a:bf:6f:7e:68:16:bc:32:80:e5:13:23:15:76:
d8:c4:1c:75:b2:45:72:97:cb:f4:1c:ff:75:d1:0c:55:d3:16:
a6:ad:9b:49:a2:cf:e2:4d:84:5c:3c:c9:12:f6:c3:72:15:38:
ff:ee:f8:32:f8:3a:f4:2b:3f:dc:af:d4:44:30:a3:79:20:5b:
1e:4c:1e:98:db:2f:37:9c:d4:9e:a5:28:7f:7a:5d:93:46:5b:
61:61:f6:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:11 2023 by rpki-client on console-fra.rpki-client.org