Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/1-7YtA8Vw_CB0KZSCgdfrUbhcmoM.roa
File: 1-7YtA8Vw_CB0KZSCgdfrUbhcmoM.roa (raw, json)
Hash identifier: 5ObWhJdrIYu1BW1fQ7iCDgcZf+Jq4qo9SeVVftnZREg=
Subject key identifier: FB:B6:2D:03:C5:70:FC:20:74:29:94:82:81:D7:EB:51:B8:5C:9A:83
Certificate issuer: /CN=1b1b9bc8c7e0fc47bf8b0a572d1a572d6a696bb7
Certificate serial: 01747B52
Authority key identifier: 1B:1B:9B:C8:C7:E0:FC:47:BF:8B:0A:57:2D:1A:57:2D:6A:69:6B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxubyMfg_Ee_iwpXLRpXLWppa7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/1-7YtA8Vw_CB0KZSCgdfrUbhcmoM.roa
Signing time: Fri 24 Jun 2022 06:13:18 +0000
ROA not before: Fri 24 Jun 2022 06:13:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207655
IP address blocks: 194.36.0.0/24 maxlen: 24
2a12:3840::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24410962 (0x1747b52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b1b9bc8c7e0fc47bf8b0a572d1a572d6a696bb7
Validity
Not Before: Jun 24 06:13:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fbb62d03c570fc207429948281d7eb51b85c9a83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:28:4e:2f:4a:ae:49:38:45:34:b0:91:4e:c4:
b0:fa:ed:4d:59:a7:dd:f9:2f:4c:cd:6e:ed:94:fd:
b0:ad:ea:21:d2:44:cc:ac:56:90:51:35:4e:51:d9:
4b:60:fb:84:55:75:b3:88:aa:f5:a7:45:13:47:d3:
89:ba:d2:ce:ba:4b:85:97:39:bc:ad:36:d9:0f:69:
f2:56:4c:37:8b:90:bb:3b:47:03:1d:16:63:d6:df:
35:96:df:d2:60:91:d8:c6:45:3f:05:52:c0:9b:28:
07:53:5c:ae:bc:80:fc:49:60:ad:0c:59:52:3e:96:
97:28:21:23:ef:95:d2:3b:f6:85:7e:6f:b9:c7:af:
1c:ff:a1:26:97:c7:54:37:54:38:31:b9:e5:54:7b:
45:6b:f6:ca:ca:c6:9d:dd:0c:c1:b2:de:64:0e:1e:
1d:fc:63:1c:ff:cd:b6:33:63:96:1b:34:ca:ff:38:
35:99:f4:b9:6f:4b:57:64:d3:62:00:c4:1b:72:57:
a8:9d:10:6a:e9:28:d8:12:d5:5d:49:24:2a:d5:42:
64:cf:fe:89:88:4c:3e:65:ad:a3:ae:12:5b:49:1f:
1c:7c:26:22:35:86:2f:e0:29:55:8b:06:1e:8f:d0:
38:73:4a:ea:9c:46:75:ca:31:fd:f1:d9:07:bd:1d:
65:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:B6:2D:03:C5:70:FC:20:74:29:94:82:81:D7:EB:51:B8:5C:9A:83
X509v3 Authority Key Identifier:
keyid:1B:1B:9B:C8:C7:E0:FC:47:BF:8B:0A:57:2D:1A:57:2D:6A:69:6B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxubyMfg_Ee_iwpXLRpXLWppa7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/1-7YtA8Vw_CB0KZSCgdfrUbhcmoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/GxubyMfg_Ee_iwpXLRpXLWppa7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.0.0/24
IPv6:
2a12:3840::/29
Signature Algorithm: sha256WithRSAEncryption
4d:23:33:21:af:15:ff:3d:2b:58:a2:bd:9d:bb:9f:24:18:37:
96:34:2a:b5:87:7f:7e:f4:91:31:79:9f:fa:d3:8c:4a:34:1f:
23:b5:22:ac:a7:09:2d:af:3a:c3:59:6b:88:71:08:7c:fa:28:
ba:8d:5d:8d:b0:b7:cf:52:3a:1d:40:c3:08:df:cf:9e:e7:77:
63:d5:8c:90:b3:c6:cf:fd:1c:cb:db:1c:ba:dc:78:09:62:09:
c9:84:2c:82:c8:49:8a:74:20:b1:3a:68:28:8e:3f:73:de:63:
b3:8d:7c:87:2c:eb:76:65:42:35:b0:7e:b2:4b:a5:b1:46:27:
5d:d6:a0:9c:11:b8:7a:47:b9:eb:b8:a5:97:6d:c2:89:64:4f:
cf:b3:25:b6:6a:05:2d:c4:10:2b:7f:51:b4:6d:07:b1:2a:5f:
ea:0c:ab:a1:1f:00:a8:ee:1e:58:9e:10:a6:03:b5:21:6c:af:
f3:f3:8d:e2:73:99:66:10:ab:74:5a:f3:3b:13:7a:51:c3:58:
df:e6:8d:e6:d3:f5:dc:2e:cc:c7:69:24:a8:95:ed:6f:e3:79:
af:51:b9:44:65:cf:c3:99:41:db:1a:a8:51:6f:8c:9f:ab:37:
0a:73:14:9a:27:25:ef:97:d5:5e:80:a9:3f:e9:86:3d:e8:c1:
9f:d1:07:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:08 2023 by rpki-client on console-fra.rpki-client.org