Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/10d8RXXvFt8qqSku77iCmXPc8aM.roa
File: 10d8RXXvFt8qqSku77iCmXPc8aM.roa (raw, json)
Hash identifier: rrXUI+twUfuHN9AKk0+VwXdlApVfieF/5NWXhrR8My8=
Subject key identifier: D7:47:7C:45:75:EF:16:DF:2A:A9:29:2E:EF:B8:82:99:73:DC:F1:A3
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1470345F
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/10d8RXXvFt8qqSku77iCmXPc8aM.roa
Signing time: Thu 24 Mar 2022 19:33:06 +0000
ROA not before: Thu 24 Mar 2022 19:33:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206654
IP address blocks: 194.213.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342897759 (0x1470345f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 24 19:33:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7477c4575ef16df2aa9292eefb8829973dcf1a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:20:0e:c2:c1:aa:fe:7b:84:79:3a:ba:f7:e5:
01:f8:4e:2e:92:92:54:4d:f6:47:71:a6:fe:b1:d7:
43:38:59:af:c9:c1:0c:c9:89:3a:16:ba:0f:ca:66:
62:a4:49:e6:18:8b:0c:04:10:a5:6c:34:3f:c7:1a:
00:50:25:32:08:a7:9c:9a:01:50:0f:27:a1:bd:d9:
9c:a9:d1:ef:97:00:87:b0:3a:70:10:b9:f1:15:b2:
64:0b:d2:31:7f:88:21:57:d9:33:6a:01:ff:4e:80:
02:40:42:10:aa:e9:07:79:fa:7c:e4:38:b0:d9:6c:
57:73:40:43:6b:1d:3e:2e:96:75:22:f8:79:32:57:
44:b3:71:51:60:90:2d:d3:49:0a:0a:e4:be:ae:fc:
49:2c:01:26:ae:48:4d:b9:e5:7a:fd:d9:27:74:ef:
e8:a9:f8:9a:ee:78:8a:5e:d0:0c:b5:de:92:51:b9:
ea:40:18:05:94:90:52:d3:81:85:8e:11:cb:12:7e:
13:86:b6:e0:a8:c7:ef:49:53:47:64:c9:5e:7a:1b:
ba:91:61:5d:31:57:ee:b2:3d:ae:95:d3:ae:a6:82:
69:a0:fa:26:70:9d:d4:51:40:ce:40:fa:9e:9b:53:
97:bf:89:60:86:15:f0:49:77:a6:23:a1:6c:3e:c9:
d1:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:47:7C:45:75:EF:16:DF:2A:A9:29:2E:EF:B8:82:99:73:DC:F1:A3
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/10d8RXXvFt8qqSku77iCmXPc8aM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.213.10.0/24
Signature Algorithm: sha256WithRSAEncryption
37:bb:8d:45:d2:a0:bb:de:d2:1d:56:b3:9a:53:29:22:f8:43:
74:76:b6:5e:b4:dc:da:53:6c:c0:ab:bc:f4:76:06:b2:96:96:
23:2c:8f:11:0b:d3:c3:90:80:4f:01:c3:8f:d9:84:bd:b8:cc:
c7:05:a7:f6:8c:5e:29:a3:c5:d8:11:2a:07:20:df:36:45:47:
5e:c2:2e:8d:88:49:1b:96:d8:11:5e:99:3c:26:5a:da:24:54:
74:03:97:11:5e:5b:05:a0:81:82:4c:91:d8:b8:29:82:bf:c7:
b2:e4:2c:32:5b:9e:99:66:31:dd:1d:42:82:b4:29:7e:20:6c:
d1:bd:a4:a1:6d:96:c2:88:d3:44:f7:fe:bc:9f:5c:e1:b0:f0:
6e:78:06:1e:be:a4:8f:23:c2:0b:04:3b:6d:fd:b2:e5:ac:57:
54:f6:47:9f:99:14:2e:0d:89:34:3a:b1:a3:7b:fb:8c:02:f8:
93:e8:88:4a:32:1b:4d:99:2f:1f:ad:f3:2d:b6:8e:8b:d9:b6:
e2:93:e4:37:33:c1:28:44:f7:bb:23:62:d8:33:ce:84:c9:73:
24:f5:c8:0d:5f:ea:07:77:54:45:7c:58:f5:ce:6b:d5:aa:34:
8c:ab:c0:90:0c:e1:09:36:57:bb:a6:0b:86:53:a5:38:3f:fc:
b8:50:bf:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:35 2023 by rpki-client on console-ams.rpki-client.org