Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/t_apLumQm3-J-V1eoNziDdFhNPc.roa
File: t_apLumQm3-J-V1eoNziDdFhNPc.roa (raw, json)
Hash identifier: ry8U4Ck6x1Kq+exmroHkGSn7o7fZqHGehuuUAEWLn0I=
Subject key identifier: B7:F6:A9:2E:E9:90:9B:7F:89:F9:5D:5E:A0:DC:E2:0D:D1:61:34:F7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018216F30F83F9B24EA0131FC7DD0EE71922
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/t_apLumQm3-J-V1eoNziDdFhNPc.roa
Signing time: Tue 19 Jul 2022 14:53:24 +0000
ROA not before: Tue 19 Jul 2022 14:53:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136923
IP address blocks: 194.87.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:f3:0f:83:f9:b2:4e:a0:13:1f:c7:dd:0e:e7:19:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Jul 19 14:53:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7f6a92ee9909b7f89f95d5ea0dce20dd16134f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:e2:47:dd:54:a8:99:97:45:fa:1f:49:a4:e8:
2c:67:75:d9:bf:c4:74:51:22:2b:35:2c:cc:7b:d9:
9e:1d:15:59:cd:92:fe:64:9f:72:27:3b:1b:30:e7:
3a:f1:c6:f6:3f:12:8a:7f:80:66:5f:a5:db:c0:32:
76:ac:db:44:23:e9:1c:8d:8d:ba:b9:63:4c:27:17:
c7:68:19:b4:c9:b3:5c:e5:4c:34:93:e7:4f:7f:74:
fa:db:6c:94:be:3d:bd:2d:ee:b7:13:ad:bc:33:29:
fb:2c:a0:2e:e5:9d:ec:76:3c:cf:49:35:11:dc:fa:
2d:60:4a:8e:b8:e9:7f:4c:2a:2d:80:4e:07:07:69:
81:17:ed:52:40:44:14:38:64:5e:a5:99:24:1c:24:
5b:37:97:34:a0:85:db:0c:9f:a8:aa:40:e3:5d:0f:
ad:70:47:74:b5:13:c0:47:91:fb:35:29:4b:d2:fb:
a8:0c:61:05:78:7c:9a:7f:61:3f:b7:a3:73:7a:27:
46:3d:60:64:dc:71:71:a6:78:aa:61:9d:07:d1:90:
ba:25:0c:d3:96:15:4d:29:2d:d3:a0:4f:0b:70:a8:
6e:e2:38:62:34:0d:70:58:e5:da:a1:dd:68:12:97:
81:ea:9e:82:57:0d:cc:32:54:98:69:39:ae:ed:41:
a4:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F6:A9:2E:E9:90:9B:7F:89:F9:5D:5E:A0:DC:E2:0D:D1:61:34:F7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/t_apLumQm3-J-V1eoNziDdFhNPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.7.0/24
Signature Algorithm: sha256WithRSAEncryption
30:43:93:d3:66:dd:b8:8c:b4:4e:ca:12:70:4b:fa:6d:0a:94:
92:0a:96:ec:3f:88:d7:f8:26:bf:ae:58:e4:a9:fe:71:61:14:
f0:95:63:ae:d3:c8:ca:c4:c6:41:1c:4b:24:40:62:62:e6:09:
0c:2b:10:e7:bc:21:57:f0:d6:f6:a9:a4:96:18:ec:de:e1:64:
1c:7c:ae:dc:c5:a6:c6:e2:80:09:bb:26:27:f5:eb:74:8a:75:
e9:99:cc:8f:03:82:13:40:8e:ae:ba:a4:94:fc:6d:46:c0:3f:
4b:35:aa:f0:ac:31:c4:2b:03:ed:b7:86:05:cf:2f:72:fd:a3:
d6:40:b0:a7:26:96:2a:12:ed:3f:49:9f:d8:53:83:04:18:d3:
b0:92:cc:fe:8f:63:44:cb:0a:55:77:30:a5:f1:48:33:c5:54:
27:b3:ef:a8:3c:20:4c:b7:ca:a1:33:5b:c7:aa:e8:8e:32:63:
56:63:04:ce:62:9f:7e:24:fe:d6:fb:69:bd:6a:ac:8a:90:8c:
eb:bb:f7:bc:14:d0:83:8f:26:a8:fe:7f:d8:d0:36:0b:08:42:
58:32:16:22:ee:ec:a7:43:41:f7:27:86:4f:e2:44:32:2e:f6:
d6:e0:f8:41:49:e0:b3:cb:d5:70:70:80:17:1c:d3:94:6e:8b:
80:06:a6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:28 2024 by rpki-client on console-fra.rpki-client.org