Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ca2cb5-b25b-435c-bacb-0ae696bd368a/1/tzJ00I7KkEduyarfHLq_lK1bwrA.roa
File: tzJ00I7KkEduyarfHLq_lK1bwrA.roa (raw, json)
Hash identifier: RyFwhmhnkM9KlrglS4pCo8+E426pN4j79OK54uZpLfQ=
Subject key identifier: B7:32:74:D0:8E:CA:90:47:6E:C9:AA:DF:1C:BA:BF:94:AD:5B:C2:B0
Certificate issuer: /CN=8cd0b6547548802ea59814672547bcc836d70fcf
Certificate serial: 02F81556
Authority key identifier: 8C:D0:B6:54:75:48:80:2E:A5:98:14:67:25:47:BC:C8:36:D7:0F:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jNC2VHVIgC6lmBRnJUe8yDbXD88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ca2cb5-b25b-435c-bacb-0ae696bd368a/1/tzJ00I7KkEduyarfHLq_lK1bwrA.roa
Signing time: Sat 01 Jan 2022 09:54:28 +0000
ROA not before: Sat 01 Jan 2022 09:54:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.56.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49812822 (0x2f81556)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cd0b6547548802ea59814672547bcc836d70fcf
Validity
Not Before: Jan 1 09:54:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b73274d08eca90476ec9aadf1cbabf94ad5bc2b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:45:6d:2f:21:eb:14:08:a5:e2:31:14:f3:88:
7a:71:d0:4f:1c:16:f4:bd:b0:45:ae:5b:97:c6:09:
f7:97:fe:26:d2:19:37:e7:54:07:9c:47:0b:45:98:
c8:e1:b0:27:9a:eb:20:63:47:02:17:fd:0e:0d:ba:
a5:b1:40:07:36:d4:49:21:fb:d2:21:8d:80:f0:b3:
5e:a0:5a:e9:f9:2b:53:0e:9f:52:cc:14:07:22:ba:
07:e3:b9:be:82:76:09:d3:e4:8f:7a:2a:72:57:06:
67:b6:50:68:e7:66:be:22:8d:10:04:4a:53:75:68:
7b:82:83:53:05:12:53:8f:e9:62:99:4e:0b:fd:b5:
f3:3d:25:1f:e9:1d:66:4f:09:dc:bd:2d:7f:05:ba:
d5:90:19:97:2b:68:2d:65:24:a2:81:be:30:cf:1d:
94:27:9e:eb:07:86:0d:86:ee:d2:5d:fd:40:7f:94:
26:70:f4:02:ed:57:36:37:ef:05:c9:0f:f2:76:8f:
21:b6:62:b9:28:90:60:84:29:1b:09:08:60:a5:39:
67:86:9b:b1:19:ec:f6:39:d3:af:99:b8:c8:e7:b3:
7f:be:ef:a4:72:a6:14:e1:22:a3:66:6c:f9:e4:fa:
e1:74:d0:59:15:ec:e0:1a:ab:2c:6f:f0:32:fb:7d:
06:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:32:74:D0:8E:CA:90:47:6E:C9:AA:DF:1C:BA:BF:94:AD:5B:C2:B0
X509v3 Authority Key Identifier:
keyid:8C:D0:B6:54:75:48:80:2E:A5:98:14:67:25:47:BC:C8:36:D7:0F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jNC2VHVIgC6lmBRnJUe8yDbXD88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ca2cb5-b25b-435c-bacb-0ae696bd368a/1/tzJ00I7KkEduyarfHLq_lK1bwrA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ca2cb5-b25b-435c-bacb-0ae696bd368a/1/jNC2VHVIgC6lmBRnJUe8yDbXD88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.234.0/24
Signature Algorithm: sha256WithRSAEncryption
71:06:ac:7f:47:f3:d5:9c:dd:49:06:42:f5:3f:cb:3a:e8:aa:
77:89:a9:73:cc:ef:25:22:14:41:fb:9d:f8:4b:fa:9a:b9:88:
03:59:2e:c6:2c:02:0e:07:44:40:39:32:e6:23:8b:67:b3:ff:
6d:e2:5c:79:05:86:52:83:0e:ac:1a:55:03:69:82:b2:34:1e:
b4:66:2d:c5:27:17:ae:9d:6b:fe:14:8b:9b:35:bd:35:0c:19:
2b:9b:6f:71:f3:b1:8a:b0:22:11:a2:55:5b:a9:42:f4:75:be:
5d:d7:44:70:b3:b2:24:d2:66:f5:ab:1f:b3:d6:ba:c6:e4:be:
5b:63:ab:ca:5c:04:96:3a:1b:b0:87:0b:9f:a9:66:01:5c:4d:
41:ba:c4:d8:69:5d:19:c5:d5:29:63:18:1b:56:85:4b:9c:a7:
99:c3:d3:60:fa:82:f7:5c:79:7c:49:89:e1:83:ce:cf:f2:ea:
9b:25:4c:12:ab:ed:5f:35:81:e1:60:1d:f7:5a:aa:2f:cd:ea:
29:f0:5a:76:1c:26:af:ef:26:1e:45:27:5c:6f:38:1c:a0:2d:
17:78:f8:5e:4b:0e:36:8c:4a:f4:7e:fd:8c:aa:f5:83:5e:e3:
d1:37:a4:b4:42:e1:9a:66:a3:2c:d1:a0:cf:d8:47:a9:7f:80:
5d:2d:53:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:19 2024 by rpki-client on console-fra.rpki-client.org