Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/6GsaiJutGcW_jNLgW6oiMV2mq_U.roa
File: 6GsaiJutGcW_jNLgW6oiMV2mq_U.roa (raw, json)
Hash identifier: NndCf5b5ShJneNIQDqYcijFw8lJbcQZHG69bK/Vq9KA=
Subject key identifier: E8:6B:1A:88:9B:AD:19:C5:BF:8C:D2:E0:5B:AA:22:31:5D:A6:AB:F5
Certificate issuer: /CN=1b1b9bc8c7e0fc47bf8b0a572d1a572d6a696bb7
Certificate serial: 015EF8CB
Authority key identifier: 1B:1B:9B:C8:C7:E0:FC:47:BF:8B:0A:57:2D:1A:57:2D:6A:69:6B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxubyMfg_Ee_iwpXLRpXLWppa7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/6GsaiJutGcW_jNLgW6oiMV2mq_U.roa
Signing time: Fri 17 Jun 2022 08:39:44 +0000
ROA not before: Fri 17 Jun 2022 08:39:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207655
IP address blocks: 194.36.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23001291 (0x15ef8cb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b1b9bc8c7e0fc47bf8b0a572d1a572d6a696bb7
Validity
Not Before: Jun 17 08:39:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e86b1a889bad19c5bf8cd2e05baa22315da6abf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:e9:a9:18:13:b8:1d:75:fc:fe:82:5c:2f:
c9:87:5c:b0:2a:8c:e8:6a:75:56:a6:dc:73:a6:c4:
13:5f:22:a5:84:99:0d:a8:da:32:c5:f6:ef:2f:73:
63:c9:4b:12:1e:7e:1a:75:d1:0a:92:12:5e:09:64:
2e:29:c3:85:8f:b7:e2:7d:d5:c2:ba:68:48:88:1f:
98:1b:9c:cc:61:aa:25:98:38:05:fb:37:54:4f:c5:
9c:41:56:c9:d2:08:4e:69:60:e6:c1:1c:f2:6c:7b:
c0:33:0e:70:ef:cf:ba:cd:40:eb:5d:27:76:64:9f:
14:4e:b0:4a:14:5f:e0:c7:07:c4:8e:e0:98:91:c4:
2a:25:e9:88:fd:6f:13:25:f0:32:db:1c:0b:78:37:
38:26:55:8e:81:c0:5d:89:4a:d8:a7:7f:d4:98:56:
e3:67:41:61:48:4a:1b:61:ce:94:cd:62:32:42:a8:
83:48:40:0e:3e:36:d5:5a:4c:42:ff:bf:b9:bb:c0:
3d:0b:f4:d0:d9:68:e7:03:1d:7e:1c:7f:20:93:75:
11:96:f9:f2:3b:a8:ce:8c:96:89:49:00:3c:02:28:
03:ab:a4:f5:2d:3a:72:38:d5:9e:08:e6:15:ab:52:
2a:45:1b:fe:c9:d5:0d:d5:e6:61:69:42:51:b2:46:
c8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:6B:1A:88:9B:AD:19:C5:BF:8C:D2:E0:5B:AA:22:31:5D:A6:AB:F5
X509v3 Authority Key Identifier:
keyid:1B:1B:9B:C8:C7:E0:FC:47:BF:8B:0A:57:2D:1A:57:2D:6A:69:6B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxubyMfg_Ee_iwpXLRpXLWppa7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/6GsaiJutGcW_jNLgW6oiMV2mq_U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/GxubyMfg_Ee_iwpXLRpXLWppa7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.0.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:8a:35:86:fe:a4:c0:b6:fc:be:df:bd:52:d5:32:00:a4:f6:
2e:ef:cb:03:de:6b:ea:d7:8a:62:0c:a5:47:5b:35:6e:c4:05:
f1:9c:6a:6a:9f:5a:db:c2:d1:91:56:14:c9:a9:51:a9:08:d9:
7f:d7:17:44:dc:91:4d:14:30:63:c0:98:de:72:63:ee:21:33:
24:f1:fb:73:c3:12:e4:28:4a:2a:50:8a:95:63:65:6d:e7:c9:
58:b1:86:b0:22:bc:1f:41:87:fc:24:1e:9a:6e:4d:56:0b:c2:
fd:df:90:23:1c:3d:ed:b6:9c:5d:60:c9:d4:5f:d0:e4:48:6f:
b4:91:5c:4b:68:83:23:65:87:24:4a:21:6c:25:4e:9c:69:fd:
fc:6b:4b:31:48:9b:0e:4f:64:6e:5c:97:bb:ff:7a:cb:de:b2:
e4:a7:bf:48:b4:8b:ad:d7:1b:50:63:83:e3:8b:ff:20:42:79:
03:43:79:5b:4e:82:0b:99:2b:8a:2b:fa:41:5e:9f:4e:f6:86:
3d:94:9d:ec:7c:a8:fa:2a:92:29:a2:3f:68:c3:8c:9c:89:2c:
dc:b5:91:de:6b:c0:cf:4e:db:a6:d4:24:09:51:6d:95:f8:ec:
98:6b:83:d0:dd:61:8e:0f:20:d7:2e:b3:8e:6c:e1:a0:60:4b:
11:3e:85:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:55 2023 by rpki-client on console-ams.rpki-client.org