Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/czY0H8ZJtroVMNA6w08jM1G4aiY.roa
File: czY0H8ZJtroVMNA6w08jM1G4aiY.roa (raw, json)
Hash identifier: 0x50+sWEMRzn7bKgsv7h8NQWhTjDLdjyeMB0MHOR+tw=
Subject key identifier: 73:36:34:1F:C6:49:B6:BA:15:30:D0:3A:C3:4F:23:33:51:B8:6A:26
Certificate issuer: /CN=102282537eb00130b79651f408000edca56450ea
Certificate serial: 8277B7
Authority key identifier: 10:22:82:53:7E:B0:01:30:B7:96:51:F4:08:00:0E:DC:A5:64:50:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECKCU36wATC3llH0CAAO3KVkUOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/czY0H8ZJtroVMNA6w08jM1G4aiY.roa
Signing time: Sat 01 Jan 2022 03:53:49 +0000
ROA not before: Sat 01 Jan 2022 03:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5617
IP address blocks: 194.127.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8550327 (0x8277b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=102282537eb00130b79651f408000edca56450ea
Validity
Not Before: Jan 1 03:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7336341fc649b6ba1530d03ac34f233351b86a26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:93:59:41:f6:25:1f:1e:3c:12:5c:d7:b1:1c:
b7:32:62:0e:1f:33:53:95:70:bd:ca:7d:09:a1:f4:
8c:d2:29:b6:d6:2b:57:04:40:03:f0:f1:44:69:60:
0d:c4:85:93:22:15:e1:dc:eb:86:64:d3:be:a3:64:
6c:0e:fb:2f:58:29:22:b5:7f:8d:1f:77:e2:60:0c:
5c:bc:f3:1a:52:c4:4d:a7:4a:0d:cf:5e:0a:5f:17:
12:c4:55:4c:0a:c7:ac:d1:b7:13:d4:96:2d:c1:9b:
34:ad:7a:fe:da:a1:ae:8f:77:fc:cd:1a:b1:1e:2e:
79:1c:29:2e:85:28:b1:7d:c4:52:4e:b3:16:4d:d8:
ca:f7:d6:f7:7f:06:ee:31:c1:cd:94:6a:16:d3:88:
2a:13:62:a5:da:72:bd:29:1d:e2:63:a3:90:e6:e5:
d4:f3:e1:d5:5f:fc:f8:12:46:28:91:2e:ff:c3:d6:
ed:42:1c:c6:2c:2c:23:0c:bd:b9:77:ac:90:47:3e:
8d:44:c0:39:23:db:c3:05:59:04:d9:f8:2c:8a:e3:
71:9a:59:9b:48:46:cc:cd:d2:04:4c:05:ef:c2:4c:
64:82:d4:e9:ce:05:3d:20:94:21:b0:22:b3:75:da:
02:ec:58:76:5a:09:c8:72:ea:e4:d9:9f:73:81:6a:
ab:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:36:34:1F:C6:49:B6:BA:15:30:D0:3A:C3:4F:23:33:51:B8:6A:26
X509v3 Authority Key Identifier:
keyid:10:22:82:53:7E:B0:01:30:B7:96:51:F4:08:00:0E:DC:A5:64:50:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECKCU36wATC3llH0CAAO3KVkUOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/czY0H8ZJtroVMNA6w08jM1G4aiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/4ef2c3-06d8-4f11-84b7-338196935050/1/ECKCU36wATC3llH0CAAO3KVkUOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.127.136.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:fb:6c:ef:01:fe:d2:1a:0f:c1:1a:f9:cf:30:8b:c9:bd:86:
00:a9:f8:94:bd:63:d9:5a:8d:3e:f9:a5:a4:70:3c:36:ea:d5:
ec:e4:26:76:62:60:38:d2:8b:b5:db:3d:24:02:b3:8c:bd:2e:
99:fe:66:87:05:0a:42:8c:ba:01:e7:29:a4:45:5d:ec:c2:7b:
10:fa:85:c0:47:5e:8f:1c:27:3a:0f:75:20:72:53:3c:a3:1f:
8d:9b:cb:cb:98:ff:04:0a:e5:c9:45:2d:bb:a0:5e:c7:71:7a:
7f:08:15:a0:3b:16:3b:a5:90:57:b9:3a:3f:7c:32:3d:e0:f1:
6d:90:91:cc:f5:a2:c2:f1:87:2d:bb:30:60:1e:d8:f2:ab:51:
43:bd:b7:a8:b3:18:a6:b0:08:63:7a:e2:e6:a8:88:a0:53:03:
4a:45:c4:31:3e:f8:1b:57:5a:0e:6d:78:ec:e9:6d:5d:a9:93:
79:c8:1d:16:8b:48:ba:db:57:3c:83:9b:cd:d1:06:e4:1a:aa:
d4:10:0d:e2:c9:bf:6e:5c:af:73:eb:e3:db:ca:66:39:15:da:
9e:1a:dd:92:ee:86:a7:a8:4c:88:d5:9a:ac:7c:75:fe:91:82:
51:ef:86:fe:2b:3f:f4:37:33:d7:10:77:7c:cc:18:77:8a:25:
8e:fe:e5:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:48 2024 by rpki-client on console-ams.rpki-client.org