Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/kn5PoubvnnkJFc_SE0st6JBtrHg.roa
File: kn5PoubvnnkJFc_SE0st6JBtrHg.roa (raw, json)
Hash identifier: fV1y2fIwzZ1QMQ+/IbGkWsSTz+6BgbOMsHM2WzcdOJA=
Subject key identifier: 92:7E:4F:A2:E6:EF:9E:79:09:15:CF:D2:13:4B:2D:E8:90:6D:AC:78
Certificate issuer: /CN=9a085e06f2e2a2e304256f88135ff13de72d0736
Certificate serial: 014B71
Authority key identifier: 9A:08:5E:06:F2:E2:A2:E3:04:25:6F:88:13:5F:F1:3D:E7:2D:07:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mgheBvLiouMEJW-IE1_xPectBzY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/kn5PoubvnnkJFc_SE0st6JBtrHg.roa
Signing time: Fri 29 Apr 2022 08:41:54 +0000
ROA not before: Fri 29 Apr 2022 08:41:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42568
IP address blocks: 194.0.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84849 (0x14b71)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a085e06f2e2a2e304256f88135ff13de72d0736
Validity
Not Before: Apr 29 08:41:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=927e4fa2e6ef9e790915cfd2134b2de8906dac78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:6e:7b:ad:26:37:09:6e:31:1b:a6:35:3b:59:
5e:9e:ec:c9:9a:e1:cd:d1:35:f1:7b:64:6f:39:81:
a4:01:50:f5:ff:7e:2e:30:f3:97:48:57:a7:5c:33:
a0:2b:f7:6c:1c:c8:8e:70:96:5c:ff:c0:be:d3:9e:
7f:58:6c:00:04:06:02:ae:df:06:fe:ed:3f:f3:c3:
64:68:48:ea:41:18:58:62:06:a5:4c:12:da:80:00:
09:ac:68:96:65:be:34:d2:4e:f3:0b:09:e4:92:25:
f0:e6:4a:4b:01:56:67:e3:34:a3:5f:81:c7:c9:ea:
26:89:fa:09:29:d2:f2:d9:e4:2e:b6:31:d3:59:80:
a6:f3:ab:37:6b:90:a3:89:fd:98:1f:02:75:44:af:
1f:de:0f:a6:f1:70:85:47:b2:25:d9:3d:94:e3:7c:
89:b7:44:28:6b:60:64:cb:9d:63:d6:19:07:d7:81:
23:b4:15:6a:a9:90:fc:b6:23:85:00:56:18:17:c0:
04:2c:51:74:a1:61:da:80:0b:7a:ae:44:58:2f:cc:
ac:b5:f2:71:ed:19:10:27:1d:63:57:72:07:f2:98:
a7:26:8c:0c:1b:98:36:89:e4:2b:99:fb:84:ce:dd:
d3:86:26:c9:7e:b3:dd:bb:9b:03:06:9f:47:15:9e:
1f:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:7E:4F:A2:E6:EF:9E:79:09:15:CF:D2:13:4B:2D:E8:90:6D:AC:78
X509v3 Authority Key Identifier:
keyid:9A:08:5E:06:F2:E2:A2:E3:04:25:6F:88:13:5F:F1:3D:E7:2D:07:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mgheBvLiouMEJW-IE1_xPectBzY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/kn5PoubvnnkJFc_SE0st6JBtrHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/10fce0-ee47-4ed4-a03d-0d4542920bcb/1/mgheBvLiouMEJW-IE1_xPectBzY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.253.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:2b:d6:24:83:1f:dd:fc:a9:20:14:98:56:3d:37:3b:60:38:
4f:f3:b8:e3:df:34:2b:0b:2f:8b:ca:2b:85:6a:3d:22:84:d0:
6d:75:3a:f1:2a:97:59:99:b2:ca:de:0e:ae:00:64:ec:00:7e:
1d:af:9d:09:b2:53:65:50:14:7c:43:7d:3f:24:36:9f:58:2f:
7f:72:3f:fa:31:db:75:da:b3:97:a7:5d:54:44:a6:81:2a:3a:
13:40:fa:7d:24:74:a9:76:a2:7c:64:84:8e:0c:86:2e:f7:a7:
da:1f:36:f2:8a:d9:6b:ee:66:3c:f2:c2:92:56:d0:b7:13:00:
42:33:57:8f:ed:11:ed:d8:d0:f3:1a:fe:e3:d9:18:cc:d9:7e:
76:be:08:b3:18:a3:f0:bd:a0:cf:0b:8c:5b:99:3d:ed:d2:81:
6c:8c:d6:24:65:d1:13:6b:b3:8b:c4:0b:7f:69:89:08:55:e4:
87:64:3b:d9:a4:1f:82:22:c9:69:ee:fe:d8:f5:76:63:17:49:
de:ae:fe:37:84:cf:31:dd:fc:1e:29:43:fd:06:53:7a:e2:a5:
56:41:85:c2:85:e3:e7:e8:a2:f8:9b:b8:e9:b2:3b:2c:a7:13:
15:a8:71:98:9f:5e:0d:05:55:0e:2c:87:a2:2b:e8:ee:c8:0a:
8e:d6:21:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:04 2024 by rpki-client on console-fra.rpki-client.org