Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/7TrBfMHDwNDITec6j8RTxYuVHu8.roa
File: 7TrBfMHDwNDITec6j8RTxYuVHu8.roa (raw, json)
Hash identifier: 9cTZaZ2vSHlkAs5SGzl1BYNIvyxL8rKcMR/y5wa8gRQ=
Subject key identifier: ED:3A:C1:7C:C1:C3:C0:D0:C8:4D:E7:3A:8F:C4:53:C5:8B:95:1E:EF
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 01BAFA0C
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/7TrBfMHDwNDITec6j8RTxYuVHu8.roa
Signing time: Sat 01 Jan 2022 09:55:04 +0000
ROA not before: Sat 01 Jan 2022 09:55:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6461
IP address blocks: 194.5.0.0/22 maxlen: 24
141.98.240.0/24 maxlen: 24
141.98.241.0/24 maxlen: 24
193.31.72.0/24 maxlen: 24
193.31.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29030924 (0x1bafa0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 1 09:55:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed3ac17cc1c3c0d0c84de73a8fc453c58b951eef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d2:f6:1c:54:62:d7:f6:09:12:f9:03:83:f7:
d1:3f:33:c3:fd:db:ec:ff:54:a9:11:2b:0d:ab:18:
dd:a5:36:f8:6f:0e:b8:bd:28:41:3f:b9:b7:44:69:
6e:b2:bf:f1:d6:49:a6:38:25:82:43:12:d7:24:c1:
ac:fc:1e:46:5e:61:9b:6b:dc:76:3e:4b:25:dd:f9:
38:1f:63:f5:dd:fd:4b:ca:92:12:9e:8a:6f:be:40:
dd:13:9e:31:63:60:7b:77:5d:bb:dc:ac:cf:db:b8:
66:21:1c:ea:78:21:8b:4c:58:47:f2:c2:e8:a2:85:
8f:07:a0:1b:ec:9f:de:c5:d2:cf:33:e5:f7:8e:47:
f8:d7:1e:b5:72:c0:61:93:51:53:1d:61:49:d2:3c:
ef:91:53:b3:cc:dc:2f:c8:f6:5c:41:90:c9:02:ba:
29:3e:c5:47:e9:29:7e:7a:6e:e1:04:cc:9b:60:bf:
09:0e:33:95:71:c9:8f:86:2f:30:63:e3:4e:2b:d1:
d7:f1:c8:03:24:82:72:c0:93:b1:3c:cc:b2:a6:79:
15:e8:bf:76:37:6b:f5:b6:67:16:e9:c1:2a:cc:67:
b0:88:fd:83:6b:df:ed:2e:e0:8f:f1:91:42:fc:54:
5b:56:0f:bc:fc:56:99:47:ed:0c:c4:71:0d:bd:64:
93:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:3A:C1:7C:C1:C3:C0:D0:C8:4D:E7:3A:8F:C4:53:C5:8B:95:1E:EF
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/7TrBfMHDwNDITec6j8RTxYuVHu8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.98.240.0/23
193.31.72.0/23
194.5.0.0/22
Signature Algorithm: sha256WithRSAEncryption
97:9b:51:6e:47:60:61:a6:21:26:81:60:73:14:2b:b6:2f:a3:
bd:e2:54:79:66:2c:a1:67:ff:0e:06:ba:4c:52:a5:de:29:7a:
bc:7f:6f:f0:cc:28:de:d3:a2:a1:9c:9d:2c:1d:ef:3a:2b:00:
79:a1:91:ee:82:00:b0:98:68:4c:40:6d:52:8a:b7:3d:7f:42:
bb:ad:88:89:22:af:88:a9:90:af:c7:d5:c8:24:31:6a:39:43:
6b:c0:38:8e:38:8f:c2:a2:46:fb:be:6b:85:c7:55:24:09:c5:
6d:34:6a:91:ab:e1:88:5b:8d:57:f2:68:b2:ce:8f:7d:f3:87:
fd:75:c8:47:f7:38:00:45:6a:36:5d:f6:0d:1c:23:87:3b:08:
17:ae:42:03:42:4d:45:0a:ca:5f:45:be:b5:ce:ec:8d:a5:4a:
de:87:ec:91:f8:86:d8:c6:76:cc:9d:3f:3b:98:0a:31:8f:ad:
5c:6b:42:36:02:9e:06:69:e7:33:02:53:de:c0:d0:84:96:3f:
67:9e:ab:af:3c:af:ae:94:7f:8f:ca:ba:bc:97:ba:f8:d4:8d:
74:ab:4f:60:95:a5:8b:bc:50:40:1f:0a:a3:29:0f:c8:24:3f:
f7:01:a0:04:17:ef:f7:87:15:4f:b3:6b:90:56:0a:63:84:35:
b2:bf:58:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:20 2024 by rpki-client on console-ams.rpki-client.org