Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/F4EyqeKzC-zCY_i9b259ez55Jwc.roa
File: F4EyqeKzC-zCY_i9b259ez55Jwc.roa (raw, json)
Hash identifier: 588ANHOjSLUhPQzBCyIddElBYgAVebdG5k793LQa0Vw=
Subject key identifier: 17:81:32:A9:E2:B3:0B:EC:C2:63:F8:BD:6F:6E:7D:7B:3E:79:27:07
Certificate issuer: /CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Certificate serial: 08EE5BB0
Authority key identifier: 42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/F4EyqeKzC-zCY_i9b259ez55Jwc.roa
Signing time: Sat 01 Jan 2022 11:59:40 +0000
ROA not before: Sat 01 Jan 2022 11:59:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 194.53.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149838768 (0x8ee5bb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42ce759320195b9cc18ccfcb1b532aea949258f1
Validity
Not Before: Jan 1 11:59:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=178132a9e2b30becc263f8bd6f6e7d7b3e792707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a1:20:de:49:a5:2e:7a:c4:b3:7c:65:7c:96:
d9:dd:95:47:02:03:c3:fe:65:b7:44:97:9d:5e:40:
72:cf:63:4b:96:fe:00:ef:32:d8:6d:4f:96:4c:f1:
92:f4:27:63:af:4f:d4:13:3f:10:45:77:9d:48:b9:
10:5d:4a:9e:4d:77:2d:c1:49:27:fd:91:80:d8:a4:
f5:d2:c0:93:dc:32:92:ff:16:de:20:6b:cb:9f:5c:
e3:8d:cd:b8:f1:72:ec:27:e9:a0:bb:87:86:24:e2:
b5:be:3b:26:49:e7:4a:77:03:27:03:1e:8f:93:10:
97:f0:d8:6c:54:99:c5:05:3b:9f:93:78:e9:f1:66:
08:0d:81:6b:80:5d:39:d1:21:6f:a3:6a:a1:8d:36:
65:da:30:0f:01:87:18:fb:5d:df:13:4d:9f:75:76:
fb:bb:ea:3a:dd:93:72:ac:4c:69:06:fd:2c:a1:43:
d9:18:52:42:d8:a5:32:da:d2:66:d2:39:42:c3:11:
e3:da:ca:56:04:e8:5a:25:20:7f:42:73:3c:d5:3f:
61:6f:e9:12:4d:b6:04:b2:1a:3c:d9:d3:d7:92:fc:
de:c6:d4:28:69:31:d4:b5:ef:3b:b4:8b:ed:d7:e5:
c7:70:c2:ba:9d:be:0d:06:40:9f:c2:13:a7:e2:c0:
a9:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:81:32:A9:E2:B3:0B:EC:C2:63:F8:BD:6F:6E:7D:7B:3E:79:27:07
X509v3 Authority Key Identifier:
keyid:42:CE:75:93:20:19:5B:9C:C1:8C:CF:CB:1B:53:2A:EA:94:92:58:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/F4EyqeKzC-zCY_i9b259ez55Jwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a52048-12ca-4a03-95be-697948ea71f5/1/Qs51kyAZW5zBjM_LG1Mq6pSSWPE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.200.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:a0:be:54:9b:4d:7c:82:72:3f:41:9d:d0:44:42:a6:c5:a7:
a2:1f:b3:9e:7f:b1:5f:dc:53:1f:7a:b9:99:1a:24:6a:b3:ed:
1f:7a:77:e3:61:5c:3f:84:6e:ab:39:dc:f6:05:e9:25:67:d5:
9a:10:50:d2:b0:a5:9e:01:b9:b3:0f:c5:7c:91:97:a6:0a:8b:
28:42:2d:50:94:55:64:8c:e2:cd:44:93:c1:70:c3:ee:f3:38:
23:b3:a6:b5:6b:9b:c6:de:4a:56:49:ab:50:88:6e:6e:02:43:
c5:9d:4d:6a:f0:a0:97:15:1f:2c:13:56:35:79:cc:ad:02:d0:
eb:0d:65:3a:b6:8c:2f:14:98:3b:9c:cd:27:75:c7:a8:db:e5:
a1:86:f1:e2:a5:e8:8a:a9:6a:ef:12:b5:30:4d:c5:96:7e:e5:
e5:d1:58:03:d1:47:86:0a:9b:63:bc:a6:af:51:d3:ce:ea:9a:
1b:34:99:c4:75:69:f2:a1:be:23:4d:63:0a:be:85:9f:20:31:
d1:98:52:5a:4b:4d:52:93:a8:5c:07:32:e2:02:a0:21:a7:84:
1b:d2:88:d3:01:ff:45:a9:22:3e:0c:34:0e:44:8d:94:d0:e7:
bc:3d:69:a6:ae:29:fa:b0:e1:31:8e:91:24:03:0f:22:1c:a0:
8e:f7:f8:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:28 2024 by rpki-client on console-ams.rpki-client.org