Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uhoiIyJxYFAhV_bT8RBeMzi8760.roa
File: uhoiIyJxYFAhV_bT8RBeMzi8760.roa (raw, json)
Hash identifier: RaP/SQS32nEu8rKoLCROo7FhmwbjsRIyKrJLveKuMj0=
Subject key identifier: BA:1A:22:23:22:71:60:50:21:57:F6:D3:F1:10:5E:33:38:BC:EF:AD
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 0183EA9D2BDD4E66B71BEE5A3CCC42F90EF0
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uhoiIyJxYFAhV_bT8RBeMzi8760.roa
Signing time: Tue 18 Oct 2022 10:21:52 +0000
ROA not before: Tue 18 Oct 2022 10:21:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136923
IP address blocks: 194.87.7.0/24 maxlen: 24
194.87.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:9d:2b:dd:4e:66:b7:1b:ee:5a:3c:cc:42:f9:0e:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Oct 18 10:21:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba1a2223227160502157f6d3f1105e3338bcefad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8d:ba:fa:97:e2:ea:14:14:de:b2:00:36:10:
9d:2c:cc:6e:c6:bc:86:e6:dc:de:59:30:bb:24:9b:
cc:ed:a3:ef:6a:1d:45:61:4c:14:7a:9b:97:65:fd:
3e:60:7b:40:e4:3b:91:5f:a3:2c:b4:54:73:65:91:
8e:2d:69:a2:03:7c:2e:5d:62:f3:c2:80:ab:cb:44:
fe:13:0e:62:7f:3c:bd:64:be:83:08:2e:c4:70:5f:
a1:33:5e:87:ef:df:80:e8:94:d2:61:53:a8:c3:c1:
b2:78:d4:e3:5f:88:71:54:23:a5:53:e5:57:a3:d4:
7f:00:c1:98:48:47:9e:34:c1:f3:91:9b:ca:13:5d:
34:ba:8b:7b:a9:f6:c6:71:7d:25:02:a9:cc:88:1e:
db:57:7a:1d:45:75:dc:66:e7:88:6b:69:0e:04:f6:
2e:8c:82:00:ff:ab:69:08:c5:6c:66:47:06:38:f2:
39:70:4e:d8:36:4e:4c:94:7c:97:84:5d:b3:84:0a:
46:b0:a1:e3:68:11:67:4e:0f:5c:14:29:22:94:e3:
9a:7f:f7:69:d3:70:e3:db:50:78:25:96:91:71:85:
d2:22:81:cc:e5:bc:7d:58:87:bf:0c:8f:18:16:08:
81:c5:5d:3f:82:f2:53:4d:ad:fe:e8:d9:b4:cb:a0:
16:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:1A:22:23:22:71:60:50:21:57:F6:D3:F1:10:5E:33:38:BC:EF:AD
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/uhoiIyJxYFAhV_bT8RBeMzi8760.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.7.0/24
194.87.117.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:aa:01:9b:1a:c6:b5:c3:44:f6:8d:40:55:62:80:cd:90:c5:
44:6b:58:a5:0b:c4:61:c3:18:31:0f:51:a0:8f:a0:e0:75:e1:
1c:f5:f7:c6:17:d9:3b:dc:fa:bc:0a:64:ad:fb:7c:4a:06:7f:
f5:0d:50:6b:7f:b9:fe:49:bb:08:b7:37:de:bb:6d:2b:12:d6:
dd:4a:4c:77:7e:0d:cf:09:e2:12:9b:ca:ec:1b:76:0b:29:6b:
92:59:72:8d:57:46:cb:a6:7d:ec:41:e2:cc:ec:ee:86:19:bf:
c2:63:12:a0:91:f7:32:7c:cc:47:ff:65:59:cb:62:c3:70:04:
05:3f:a6:91:9d:c9:21:b8:6f:ad:ba:4f:65:45:74:06:5e:64:
fb:a3:ed:e1:41:ad:65:5b:52:b0:3d:2f:a9:c6:52:d0:57:90:
59:68:d0:5e:a3:d9:b8:64:49:26:da:e1:19:61:95:a9:c8:d1:
da:c1:e7:b6:31:5c:4c:b5:57:ee:50:58:f6:4f:5c:76:c8:eb:
77:a2:4a:2f:38:fd:c1:a1:91:cc:cd:cd:6c:10:d9:47:c1:9f:
0d:c2:e0:ee:fb:8e:ad:81:2a:fb:e2:c7:e2:1c:82:7a:b3:d7:
2a:da:be:0c:0e:b7:e0:ba:0f:09:5d:0b:42:7b:3e:93:98:4d:
16:f9:a4:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:49 2024 by rpki-client on console-ams.rpki-client.org