Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/aSVAT0Xliwt0ByckZ86MaPiMcW0.roa
File: aSVAT0Xliwt0ByckZ86MaPiMcW0.roa (raw, json)
Hash identifier: yf161c6mwckOh+R0XeJTGS2zC0428M4Ft1oqDtw5SUg=
Subject key identifier: 69:25:40:4F:45:E5:8B:0B:74:07:27:24:67:CE:8C:68:F8:8C:71:6D
Certificate issuer: /CN=29edf2a4f20ac08235c40180de74ebc3935cfc22
Certificate serial: 09D45955
Authority key identifier: 29:ED:F2:A4:F2:0A:C0:82:35:C4:01:80:DE:74:EB:C3:93:5C:FC:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/aSVAT0Xliwt0ByckZ86MaPiMcW0.roa
Signing time: Sat 01 Jan 2022 16:11:28 +0000
ROA not before: Sat 01 Jan 2022 16:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1213
IP address blocks: 134.226.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 164911445 (0x9d45955)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29edf2a4f20ac08235c40180de74ebc3935cfc22
Validity
Not Before: Jan 1 16:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6925404f45e58b0b7407272467ce8c68f88c716d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:46:df:85:e7:04:26:4f:29:f0:22:c4:61:c5:
6e:75:ca:40:91:71:0e:87:1c:62:60:13:08:5a:bd:
f7:68:15:39:be:40:32:33:9e:24:1d:b0:96:6c:40:
52:b2:11:31:60:d6:30:49:b9:ab:c3:93:51:11:2b:
af:2e:1f:00:00:1b:55:5e:bd:25:2b:0e:50:2d:fd:
03:6a:44:4c:10:53:53:f1:d0:9d:8c:6b:74:cb:fe:
d9:21:cc:27:76:27:6e:da:9e:45:b8:27:e0:7a:2c:
91:ee:ba:f7:f1:91:f0:a7:28:5f:b5:a9:fc:fc:7e:
fa:99:98:99:2b:dc:64:a9:30:c9:fb:0f:f1:f4:7a:
08:d1:2f:7b:66:13:d4:73:4b:d7:38:61:2d:54:b1:
2b:36:bf:fe:25:17:da:7a:95:88:49:ec:c6:35:1e:
e0:2b:25:1f:78:41:51:46:e8:af:8b:37:7a:cd:48:
3e:97:3f:fe:c0:44:d0:55:af:a9:35:01:b4:02:3d:
7d:d5:ec:ab:ce:ed:76:9c:7d:65:9c:ca:1d:5e:80:
ea:86:f0:90:ac:56:e5:3d:a8:6b:fe:2a:77:a1:f5:
4d:ce:30:9f:01:99:48:ed:47:57:11:6b:6b:54:53:
71:d0:09:64:c8:b3:fb:d2:45:6f:53:44:7e:1b:2d:
43:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:25:40:4F:45:E5:8B:0B:74:07:27:24:67:CE:8C:68:F8:8C:71:6D
X509v3 Authority Key Identifier:
keyid:29:ED:F2:A4:F2:0A:C0:82:35:C4:01:80:DE:74:EB:C3:93:5C:FC:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/aSVAT0Xliwt0ByckZ86MaPiMcW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8cb1e6-e5f8-4fa0-97fe-924c29cf77c4/1/Ke3ypPIKwII1xAGA3nTrw5Nc_CI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
134.226.0.0/16
Signature Algorithm: sha256WithRSAEncryption
ab:4c:bb:c7:61:56:e2:4b:d2:af:2a:6c:3f:58:f8:b5:08:7f:
ee:1a:62:3e:74:29:02:6c:56:d8:c4:e7:9e:28:7a:c7:68:c2:
4a:df:0a:2f:5b:ac:8b:16:1e:b5:31:c2:9b:df:41:a2:17:65:
4d:ae:b8:19:dd:b9:22:e8:1e:e2:05:48:50:ae:73:44:8b:bc:
4f:54:21:e0:ce:4d:e3:71:a7:31:c9:ce:55:19:c7:5c:64:45:
c7:94:16:e1:ab:9a:f5:0a:ba:3d:fe:2a:bc:03:69:90:aa:cc:
bd:0c:85:b5:b4:6d:66:09:87:d5:52:4f:f3:24:23:ae:db:0a:
4a:0b:58:de:f9:93:e4:44:fe:87:1d:75:41:07:29:49:63:cb:
01:f7:9d:60:e7:fd:8f:60:2d:98:01:22:f8:3f:41:8d:12:42:
4c:a2:45:f3:ec:c7:93:4a:f6:e7:9e:3c:ca:b0:96:6b:18:df:
2e:f8:13:8f:9f:b9:24:48:bf:8a:50:c2:75:00:83:86:d7:be:
6d:d5:59:4a:2d:96:82:bd:95:32:e7:3c:0e:96:68:bf:8b:88:
e2:02:5f:aa:a4:fd:59:7c:e1:e6:bc:6f:5a:1a:f8:5d:e4:1d:
1d:90:fd:4a:c6:85:51:8e:6a:0a:a0:08:7d:56:33:ea:2f:05:
11:4a:f5:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:34 2024 by rpki-client on console-fra.rpki-client.org