Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/C28v7HkDcoeKgxCjoOCsO2MEwEs.roa
File: C28v7HkDcoeKgxCjoOCsO2MEwEs.roa (raw, json)
Hash identifier: 1bm8XPzRIvxpS47cGd/alpok/DyiUVXQRQHX/Hn4PRY=
Subject key identifier: 0B:6F:2F:EC:79:03:72:87:8A:83:10:A3:A0:E0:AC:3B:63:04:C0:4B
Certificate issuer: /CN=1b1b9bc8c7e0fc47bf8b0a572d1a572d6a696bb7
Certificate serial: 016B4266
Authority key identifier: 1B:1B:9B:C8:C7:E0:FC:47:BF:8B:0A:57:2D:1A:57:2D:6A:69:6B:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GxubyMfg_Ee_iwpXLRpXLWppa7c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/C28v7HkDcoeKgxCjoOCsO2MEwEs.roa
Signing time: Tue 21 Jun 2022 11:59:44 +0000
ROA not before: Tue 21 Jun 2022 11:59:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207655
IP address blocks: 194.36.0.0/24 maxlen: 24
2a12:3840::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23806566 (0x16b4266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b1b9bc8c7e0fc47bf8b0a572d1a572d6a696bb7
Validity
Not Before: Jun 21 11:59:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b6f2fec790372878a8310a3a0e0ac3b6304c04b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:71:2b:38:2e:48:33:fb:38:62:30:ae:f8:2e:
06:4d:6b:b0:e4:15:1e:30:02:da:6c:24:0c:3f:5f:
41:75:3d:2e:9c:e6:e9:93:f4:ba:c8:79:7d:98:0e:
4b:f9:a8:f7:44:98:6e:5f:73:8f:9e:4b:66:65:58:
c9:19:67:64:77:bd:cb:15:2f:6f:ea:bd:75:7c:02:
f2:40:12:f9:ed:4d:63:6c:71:9b:b7:ec:a2:1a:32:
58:4f:97:cd:b9:bd:36:f8:d8:68:aa:a3:bb:7f:26:
61:ba:12:2c:86:33:57:76:0d:32:4d:04:e9:cb:8c:
12:23:67:65:5f:7d:f5:fd:d3:fe:11:39:c9:0a:26:
8c:38:38:09:a6:72:1b:b2:65:b0:e2:dc:75:8b:0c:
ec:39:41:38:d3:2f:d8:c6:cc:8f:0e:57:e9:ca:57:
79:c6:36:c0:04:c5:08:7c:f9:2a:d9:20:67:80:91:
27:18:f3:3d:36:ee:84:bd:cb:7f:b2:50:11:99:83:
3d:ab:fc:af:2d:f8:62:aa:4d:b5:38:b2:fa:c2:57:
07:bb:92:c9:75:42:20:b3:60:56:a0:93:b7:c7:d4:
9d:e7:6f:6d:49:cf:05:bc:4b:86:56:19:a3:38:d6:
b9:f9:2d:f2:44:8c:a5:11:71:78:1b:23:e0:71:bf:
a1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6F:2F:EC:79:03:72:87:8A:83:10:A3:A0:E0:AC:3B:63:04:C0:4B
X509v3 Authority Key Identifier:
keyid:1B:1B:9B:C8:C7:E0:FC:47:BF:8B:0A:57:2D:1A:57:2D:6A:69:6B:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GxubyMfg_Ee_iwpXLRpXLWppa7c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/C28v7HkDcoeKgxCjoOCsO2MEwEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/4d2a9f-6f78-4cc6-9ad6-0f6b8468c79d/1/GxubyMfg_Ee_iwpXLRpXLWppa7c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.0.0/24
IPv6:
2a12:3840::/32
Signature Algorithm: sha256WithRSAEncryption
74:90:58:df:42:c8:f9:c7:bb:78:47:84:93:f6:6c:dd:51:ce:
4d:40:a5:3b:be:e7:90:53:7e:25:75:45:3d:3e:26:31:06:63:
72:9d:84:64:a4:f9:7f:f9:65:76:ea:14:dd:9a:09:37:cb:7b:
47:5c:b0:19:f0:f6:ff:06:fc:f9:72:a2:6b:06:13:27:7f:83:
d9:51:48:4e:a2:01:78:8d:8e:d0:f0:f2:44:cc:e2:c7:f7:e2:
73:e0:0d:1e:22:6d:09:b5:64:14:5d:70:7e:51:d3:4f:03:e2:
cc:91:27:80:45:8d:a6:73:dd:3d:ca:58:b5:dc:c7:22:b3:4e:
52:17:84:15:7c:e7:be:b8:df:f2:05:bf:40:e4:0c:d0:b8:91:
ee:2e:b6:7b:86:37:22:ab:8e:7d:52:ba:b6:99:fb:7c:27:98:
90:05:b6:42:f0:a4:b2:c2:d9:d4:8b:38:88:79:26:94:a0:41:
1c:93:33:a4:b8:01:de:e4:a0:b8:27:2d:ce:74:39:b2:3d:3f:
38:ed:a7:78:f7:06:f1:14:f5:c6:90:2a:8b:58:12:54:af:6f:
b6:cd:d1:3d:59:78:4d:31:5d:48:c0:6f:27:a7:00:90:6c:1e:
1c:fe:a4:1a:ac:2e:bd:21:b4:cb:a0:ae:fe:30:fd:be:47:15:
93:4c:a4:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:08 2023 by rpki-client on console-fra.rpki-client.org