Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/L1bIXjY9hQdyC4tYOrLINsJ6p38.roa
File: L1bIXjY9hQdyC4tYOrLINsJ6p38.roa (raw, json)
Hash identifier: Q8Z2csbVqXQXkevRLS40aLTbnwJfB92mhR6CTZmzzmQ=
Subject key identifier: 2F:56:C8:5E:36:3D:85:07:72:0B:8B:58:3A:B2:C8:36:C2:7A:A7:7F
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01823F6F6A21AA966BDB9A723AD11F442672
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/L1bIXjY9hQdyC4tYOrLINsJ6p38.roa
Signing time: Wed 27 Jul 2022 11:34:02 +0000
ROA not before: Wed 27 Jul 2022 11:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29802
IP address blocks: 194.39.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3f:6f:6a:21:aa:96:6b:db:9a:72:3a:d1:1f:44:26:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jul 27 11:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f56c85e363d8507720b8b583ab2c836c27aa77f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:85:19:3a:2d:60:bf:c3:97:a7:b7:c0:eb:5f:
dd:25:c3:0a:11:d2:29:28:c1:d0:5d:43:38:b4:e9:
0d:f3:ee:d4:0d:f1:ee:50:4a:d9:0f:6f:31:78:e3:
9b:77:e6:14:b6:ce:2b:ad:5b:d8:f2:ac:9b:58:e8:
f7:50:d0:8f:72:c3:b8:3b:aa:58:ec:99:36:a8:d1:
7d:0f:df:26:cb:76:eb:1f:67:bd:66:9a:80:43:7c:
a9:02:b8:75:2a:b4:ff:de:47:87:5d:1e:79:9a:67:
80:9c:dc:bc:c5:d1:ea:9d:cc:b2:ef:dd:6e:6b:e2:
b5:95:aa:57:fd:f5:a9:72:68:2a:05:f9:7a:0a:ac:
6e:0c:ad:4f:0d:82:99:20:1c:1e:79:3f:b6:91:6c:
5c:20:60:b5:a6:49:fe:fa:8c:09:04:31:9d:d1:37:
dd:ed:8c:15:42:e9:b4:ac:d5:57:83:f1:8d:22:e4:
a8:69:b7:b2:d2:82:4d:fa:c2:3f:1c:bf:f3:d6:13:
fa:66:3d:0e:55:56:c1:f3:44:09:07:0d:d2:a7:2c:
49:95:18:86:48:c1:c2:51:41:7f:41:8d:27:c8:93:
b9:ae:63:da:0e:4f:ef:cf:ec:a9:2c:d2:d6:10:d4:
e6:6a:9d:7b:e5:97:d6:de:c7:1f:81:b7:40:25:f7:
ba:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:56:C8:5E:36:3D:85:07:72:0B:8B:58:3A:B2:C8:36:C2:7A:A7:7F
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/L1bIXjY9hQdyC4tYOrLINsJ6p38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.216.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:79:bd:49:b0:99:da:88:71:a2:9c:25:c7:00:d1:41:4e:88:
82:96:ea:52:84:b7:0c:08:f4:8e:c8:5f:e8:7e:8c:f1:aa:f5:
85:27:60:b7:db:6f:1d:9f:be:cc:c1:85:b1:dc:a8:c4:2f:55:
a7:bf:c0:93:b1:e5:6b:5a:28:d6:ac:b2:10:84:9c:2a:68:90:
bf:dc:68:28:fc:fd:12:9c:c6:ae:63:15:83:c8:53:5d:bf:93:
d7:b2:7a:75:1f:5e:a7:4c:6c:4c:b0:32:c0:8b:c4:e8:7f:b2:
6d:43:49:9d:65:f5:56:32:ee:e9:94:31:11:51:0f:4d:3f:b8:
ce:0e:d0:e0:d6:f8:7b:fe:67:74:98:6c:46:67:cd:dc:b6:b3:
3b:91:84:1f:ec:74:0c:07:cb:5e:97:a2:9b:94:25:3f:55:f1:
66:26:55:69:60:5b:b6:89:27:c4:91:ce:e1:41:9b:58:90:34:
60:b9:f3:0e:30:4a:6d:16:d6:ec:d8:51:ef:62:47:a2:71:9b:
d1:2f:4e:44:49:11:29:f7:de:79:34:d9:36:18:a0:78:e8:63:
de:06:78:90:fd:64:1a:de:2a:07:61:8d:5b:a8:1a:db:25:59:
43:3b:9b:43:f3:0f:dc:19:46:c1:0b:c4:ff:02:4f:d2:8e:47:
e0:4c:1c:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org