Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2d0dae-d2bc-49d1-8115-34cb9d5c9432/1/RHGWMDJ4Km8BfRh6NI9eDt_N_WQ.roa
File: RHGWMDJ4Km8BfRh6NI9eDt_N_WQ.roa (raw, json)
Hash identifier: qaA9kCqlmQzQVPQ6sAHkvywzxWu3ntcUMmJYybJpG/M=
Subject key identifier: 44:71:96:30:32:78:2A:6F:01:7D:18:7A:34:8F:5E:0E:DF:CD:FD:64
Certificate issuer: /CN=1151a4811148f7d0598f5ff021dadd3a10e5f29c
Certificate serial: 0607D240
Authority key identifier: 11:51:A4:81:11:48:F7:D0:59:8F:5F:F0:21:DA:DD:3A:10:E5:F2:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EVGkgRFI99BZj1_wIdrdOhDl8pw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2d0dae-d2bc-49d1-8115-34cb9d5c9432/1/RHGWMDJ4Km8BfRh6NI9eDt_N_WQ.roa
Signing time: Sat 01 Jan 2022 16:05:42 +0000
ROA not before: Sat 01 Jan 2022 16:05:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207593
IP address blocks: 194.36.120.0/24 maxlen: 24
194.36.19.0/24 maxlen: 24
194.35.187.0/24 maxlen: 24
194.36.83.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101175872 (0x607d240)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1151a4811148f7d0598f5ff021dadd3a10e5f29c
Validity
Not Before: Jan 1 16:05:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4471963032782a6f017d187a348f5e0edfcdfd64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:63:4f:07:a9:0f:0f:fb:2d:4c:74:9f:4f:68:
37:86:52:92:5e:4d:8b:4d:3b:21:ae:1e:75:ed:24:
cb:d4:85:b2:60:5c:65:8a:f4:de:17:31:ab:a8:c7:
61:76:8e:d3:f6:27:15:4e:9d:3c:09:ad:a7:06:98:
b8:f2:b4:fb:92:18:72:d7:40:66:34:1a:47:7d:7a:
c2:04:fc:2f:3d:7e:94:8e:2d:52:6d:a8:39:c3:ae:
cc:97:92:d5:6e:d4:9f:4b:df:bc:66:41:b1:9c:03:
34:81:52:af:51:1f:43:d1:b4:11:4b:01:cd:55:f9:
d1:13:a3:9d:1c:e6:15:69:c9:c7:8d:96:01:e8:3d:
f7:47:0a:ce:43:bc:7f:0d:7a:66:bc:15:9e:dc:c9:
1e:49:ad:87:e4:44:a7:fa:b2:71:b5:fb:9d:a7:ba:
12:34:3b:0b:c0:75:c1:89:9a:e6:04:88:30:0e:db:
5b:fd:53:6d:d5:7d:91:1c:cb:fd:ea:4a:e6:c7:01:
dc:bb:41:08:aa:90:5c:37:f8:28:8d:c2:86:f4:b8:
2d:73:66:b7:9d:e1:17:b0:d8:94:d7:ed:f8:c1:a8:
58:7e:29:1c:b6:ea:d7:51:b9:2c:b6:d5:69:8c:06:
87:cf:e8:46:25:7d:9a:2e:f9:d1:29:05:86:ab:25:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:71:96:30:32:78:2A:6F:01:7D:18:7A:34:8F:5E:0E:DF:CD:FD:64
X509v3 Authority Key Identifier:
keyid:11:51:A4:81:11:48:F7:D0:59:8F:5F:F0:21:DA:DD:3A:10:E5:F2:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EVGkgRFI99BZj1_wIdrdOhDl8pw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2d0dae-d2bc-49d1-8115-34cb9d5c9432/1/RHGWMDJ4Km8BfRh6NI9eDt_N_WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2d0dae-d2bc-49d1-8115-34cb9d5c9432/1/EVGkgRFI99BZj1_wIdrdOhDl8pw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.187.0/24
194.36.19.0/24
194.36.83.0/24
194.36.120.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:b9:0c:da:b7:06:37:c0:27:3d:4a:57:00:21:ac:fb:5f:37:
55:09:c9:a3:a2:f8:21:7e:f4:97:0b:0f:7b:d9:b6:3b:50:a5:
bd:30:d9:1e:3f:27:12:26:6b:72:78:98:37:29:59:f0:b8:b3:
e7:5d:2e:87:cf:85:4c:d6:66:82:b2:cd:3d:bf:87:b9:e3:52:
17:47:60:54:a0:64:20:53:8e:0a:4c:fa:b2:dd:e5:d3:e0:09:
52:5e:fb:f2:e0:04:77:84:2a:a3:35:68:c3:5a:96:24:61:dc:
f9:1c:19:3b:c5:ce:a2:ad:eb:6a:31:84:b5:f0:a6:60:48:c1:
ae:bc:12:bb:78:a2:87:3c:6c:4b:1c:df:73:aa:8d:2b:68:e8:
b9:da:e6:24:85:4e:3f:c5:d7:8f:f3:cf:26:42:53:62:1d:fb:
b1:ea:a2:bb:f4:38:40:72:5f:34:66:18:c7:1f:f7:1f:2e:f9:
ec:05:3f:1b:ce:b8:87:c3:38:41:90:2d:58:7e:9c:bc:2e:32:
71:cd:b3:49:ce:19:0d:41:17:2c:d3:27:00:9a:8d:7b:66:3c:
4e:bb:4f:c3:ba:ea:9a:df:9f:25:03:b2:df:e9:ca:f4:1d:f4:
25:d0:0d:de:a8:85:ed:0d:8c:6e:62:71:30:35:b1:70:16:3b:
b5:de:8a:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:46 2023 by rpki-client on console-ams.rpki-client.org