Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tFSGkdoCeZd6Mvh2kTLG8rjCl3A.roa
File: tFSGkdoCeZd6Mvh2kTLG8rjCl3A.roa (raw, json)
Hash identifier: kHZBcso2B7ayrVevxgZ4q8jWjRVSjXuFAqyhNhBwfPY=
Subject key identifier: B4:54:86:91:DA:02:79:97:7A:32:F8:76:91:32:C6:F2:B8:C2:97:70
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 01847C949849AEC2F60242DD3CBA143A9983
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tFSGkdoCeZd6Mvh2kTLG8rjCl3A.roa
Signing time: Tue 15 Nov 2022 18:37:03 +0000
ROA not before: Tue 15 Nov 2022 18:37:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141718
IP address blocks: 194.87.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7c:94:98:49:ae:c2:f6:02:42:dd:3c:ba:14:3a:99:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 15 18:37:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4548691da0279977a32f8769132c6f2b8c29770
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9e:2f:ce:6c:01:85:93:42:36:f8:e3:6a:10:
e0:e9:df:61:7c:c2:56:75:23:d4:c1:30:7f:4e:1c:
94:14:64:89:20:f3:e4:0a:1a:63:1a:d5:10:71:c5:
e1:0e:2e:ec:41:b3:fd:3f:80:60:14:16:ae:04:a7:
d5:5a:bc:42:69:ae:ee:62:c4:b3:a7:cd:bc:f0:a3:
22:0e:51:ef:0a:72:0b:15:89:d2:af:07:d2:94:87:
25:60:fb:97:d5:5c:a0:6f:8c:c7:92:9a:58:f7:c7:
78:94:55:0e:10:49:0e:d5:64:71:99:eb:86:e6:59:
3b:43:e4:dd:be:5e:dc:a7:e0:ee:2a:fe:78:29:c6:
19:9c:3a:be:fa:cb:9a:1b:d2:20:f6:bf:0b:7b:ab:
1b:53:7c:64:01:38:94:c6:9d:60:5a:94:35:13:d1:
f5:11:26:3d:de:54:a9:47:b0:5a:e9:f4:6a:dd:dc:
0b:2c:d1:61:5d:26:cc:c2:5b:cd:8d:c5:97:b7:a5:
f1:c8:27:05:a0:84:4e:71:4f:61:75:6e:28:57:c1:
fd:74:2d:94:09:c5:1d:bc:50:74:7a:78:9d:98:77:
4c:13:79:e5:5c:ca:fe:cb:96:48:22:b4:39:ac:40:
94:14:f2:a9:f7:9d:f6:8f:1f:60:9b:4a:16:32:9a:
5d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:54:86:91:DA:02:79:97:7A:32:F8:76:91:32:C6:F2:B8:C2:97:70
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/tFSGkdoCeZd6Mvh2kTLG8rjCl3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.231.0/24
Signature Algorithm: sha256WithRSAEncryption
08:42:fb:c3:c6:e5:54:e4:ce:67:61:7f:ac:94:bf:09:15:09:
f4:e5:f0:5f:d4:ca:45:0f:fc:7f:ab:9a:9a:d5:e4:de:a8:fb:
9c:c1:12:b4:e1:cc:ab:1d:d9:c0:3c:ad:e8:cf:35:0b:dd:b1:
c9:65:b7:43:a5:24:ed:db:0c:11:29:2c:28:8c:2d:b9:0c:1a:
f8:46:e8:39:49:25:47:28:46:25:5a:50:be:72:bd:ab:55:ba:
95:de:6e:fe:a2:14:f1:9e:b6:ab:9a:ec:8c:5a:d0:40:c6:7c:
45:34:54:eb:4b:ed:d1:e7:21:88:79:52:83:be:de:e7:4d:49:
cf:08:87:69:7d:db:e7:69:1c:56:de:2f:3f:d6:d7:6c:a3:48:
1a:eb:77:ac:d1:10:6f:29:e8:07:4f:b1:f3:11:46:89:d5:b7:
a0:8d:6a:01:04:3c:4d:c8:7c:d3:4a:a5:93:31:c4:88:8a:9e:
5d:ed:70:a3:39:05:18:a3:1a:9f:1d:c0:61:84:f8:9d:e5:f4:
85:fb:ff:f7:05:3d:96:2d:51:97:a3:70:d6:6b:2b:1d:db:50:
52:ad:8d:b8:01:66:ba:46:c3:58:55:26:06:8c:82:29:83:11:
95:c1:d3:25:ee:5e:2b:a0:b8:88:9e:07:7c:ab:d7:b5:ef:71:
fc:67:c5:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:48 2024 by rpki-client on console-ams.rpki-client.org