Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/eTHq5t3isyArm9yhd_x2iZI1XO8.roa
File: eTHq5t3isyArm9yhd_x2iZI1XO8.roa (raw, json)
Hash identifier: O+eDMlL1tCHU5aaaUAWbRYAx/Kr7wAtDoIFlkfsboTc=
Subject key identifier: 79:31:EA:E6:DD:E2:B3:20:2B:9B:DC:A1:77:FC:76:89:92:35:5C:EF
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 01837A22E20AF44F3EE227DDD4CA0729402B
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/eTHq5t3isyArm9yhd_x2iZI1XO8.roa
Signing time: Mon 26 Sep 2022 14:10:49 +0000
ROA not before: Mon 26 Sep 2022 14:10:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209982
IP address blocks: 194.35.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7a:22:e2:0a:f4:4f:3e:e2:27:dd:d4:ca:07:29:40:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Sep 26 14:10:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7931eae6dde2b3202b9bdca177fc768992355cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ab:7c:6e:79:bc:44:1c:42:0f:e2:7d:5b:1a:
df:3c:c8:75:ba:1d:b8:fa:3a:74:00:1b:ce:6d:a5:
c9:5b:92:03:4f:9d:b9:4f:3f:24:ba:3e:51:d0:08:
36:85:98:85:2d:4e:d5:72:70:05:04:3d:f3:86:90:
76:2b:c1:f8:89:b5:63:23:86:f8:33:64:89:cf:76:
1c:22:b1:f5:18:a4:e7:47:bd:62:8a:48:1e:13:f2:
11:85:e6:de:eb:cc:24:11:5a:71:21:72:3e:2e:28:
fc:c6:a1:2e:73:8c:43:7a:d0:d1:17:19:e8:2f:fd:
4c:0a:c6:73:ed:d4:83:16:af:8f:1c:73:ca:16:2a:
36:42:4d:36:0e:2d:fd:90:1a:77:5a:6a:c3:a7:98:
78:14:36:64:3b:36:d7:91:b5:c7:67:7f:0d:fa:02:
75:8c:c7:c7:54:86:22:65:84:3e:83:1f:3c:be:d0:
1f:3f:75:57:b0:81:91:80:de:df:b7:19:8d:6e:33:
9e:41:a8:56:1a:31:19:50:a4:4d:41:88:3c:96:ef:
76:a2:99:70:4d:03:06:1b:d9:97:f2:2d:6b:c3:15:
37:ac:20:74:55:37:c8:76:d5:36:08:0a:b3:51:ee:
a8:fb:29:75:00:71:3c:86:ac:26:4e:d2:d1:00:b4:
b4:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:31:EA:E6:DD:E2:B3:20:2B:9B:DC:A1:77:FC:76:89:92:35:5C:EF
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/eTHq5t3isyArm9yhd_x2iZI1XO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.52.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:cb:5d:1c:76:e1:83:2e:86:e4:ad:b9:c5:b3:18:97:de:f2:
15:a8:42:46:f0:c9:4c:3b:69:fc:cc:6f:d5:91:fb:d0:a2:62:
7d:94:1d:b3:51:2c:ed:a8:2a:41:d5:36:c0:28:d5:8e:50:4d:
ce:1a:21:e1:94:e4:e3:c1:53:ad:78:0e:b0:0f:58:2f:b3:2d:
b3:a1:9e:1c:4b:cf:c8:37:80:ae:d1:c8:6b:fd:ca:9a:d5:43:
93:78:12:18:08:9c:ee:1f:59:91:e4:78:b9:ee:f8:d0:8d:fd:
ab:d1:71:fc:e5:38:2a:5e:ab:25:30:00:e5:6d:0e:4e:e3:7d:
7d:bf:8d:22:de:67:f8:6d:c4:fe:3f:1e:4a:90:33:20:c6:62:
d5:85:fb:ef:95:40:a9:e7:6b:58:89:bf:c5:26:4a:e7:bc:89:
b4:2e:ba:33:42:5c:d7:07:87:c1:d4:ae:94:77:fa:47:7a:93:
20:4f:95:ec:7d:84:0c:f8:f5:41:a1:99:81:c8:b7:f3:e8:b6:
1d:a1:46:e6:ad:70:5a:59:67:6c:f5:12:8b:25:60:f2:28:20:
8c:ce:40:ad:25:39:84:f5:17:b7:58:94:f2:72:c7:da:d9:9d:
4b:0d:70:94:41:10:e0:19:13:88:09:11:c8:60:c9:ac:2d:28:
a4:ce:a1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org