Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/eabb9a-9a07-4867-970b-2b1da624f7bc/1/1-dP7b3PrxJbTIH9wKjrx7wBO00Y.roa
File: 1-dP7b3PrxJbTIH9wKjrx7wBO00Y.roa (raw, json)
Hash identifier: If0tr5q+4TIY/SncOiR7JztNxFYhEefRQnksvaeVdkY=
Subject key identifier: F9:D3:FB:6F:73:EB:C4:96:D3:20:7F:70:2A:3A:F1:EF:00:4E:D3:46
Certificate issuer: /CN=b60aac104376b79dd6829091947b779c989af68b
Certificate serial: 02F7A40E
Authority key identifier: B6:0A:AC:10:43:76:B7:9D:D6:82:90:91:94:7B:77:9C:98:9A:F6:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tgqsEEN2t53WgpCRlHt3nJia9os.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/eabb9a-9a07-4867-970b-2b1da624f7bc/1/1-dP7b3PrxJbTIH9wKjrx7wBO00Y.roa
Signing time: Sat 01 Jan 2022 09:03:20 +0000
ROA not before: Sat 01 Jan 2022 09:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29551
IP address blocks: 194.153.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49783822 (0x2f7a40e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b60aac104376b79dd6829091947b779c989af68b
Validity
Not Before: Jan 1 09:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9d3fb6f73ebc496d3207f702a3af1ef004ed346
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a2:bd:2f:10:df:ea:01:2d:8c:14:92:f4:c5:
0a:7c:da:54:56:3e:3c:c4:ad:91:96:a8:f1:4d:01:
a7:cf:6f:77:5e:8a:c8:cd:ea:77:2e:8a:45:ca:36:
8c:f3:6f:16:ff:13:b9:e4:4c:9d:f4:c2:0a:a1:e1:
83:13:b4:9b:94:21:15:f2:f2:cb:78:ab:37:09:4f:
5d:20:94:a7:f5:11:6e:d4:82:4e:d3:d7:32:75:12:
24:d1:6b:2b:3f:77:97:81:c3:df:a7:67:9b:26:aa:
43:10:be:4b:d8:ab:2f:05:15:00:e6:6b:a0:b7:bd:
98:bd:b4:46:dd:84:31:a4:36:fb:31:14:57:45:bb:
02:44:3d:42:20:c7:4b:0c:da:ce:0f:bf:04:c8:0c:
2f:ee:f0:4d:5b:02:c5:4d:4e:fb:8f:ab:08:f0:1f:
f1:de:f6:43:3b:8f:6b:06:37:47:e7:b8:4b:a2:4f:
b2:6a:e6:b8:90:2a:76:3b:4b:08:4e:0e:99:2f:08:
21:a2:e2:13:71:de:ec:57:df:b6:f1:24:ab:44:b4:
8b:9e:b5:b2:cb:63:db:5f:93:28:33:72:a4:50:1b:
13:17:54:99:ca:d7:73:b4:f1:8d:46:c0:3d:f6:68:
9f:01:ba:e6:37:ad:a2:a7:b9:c8:28:14:a4:93:ea:
53:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:D3:FB:6F:73:EB:C4:96:D3:20:7F:70:2A:3A:F1:EF:00:4E:D3:46
X509v3 Authority Key Identifier:
keyid:B6:0A:AC:10:43:76:B7:9D:D6:82:90:91:94:7B:77:9C:98:9A:F6:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tgqsEEN2t53WgpCRlHt3nJia9os.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/eabb9a-9a07-4867-970b-2b1da624f7bc/1/1-dP7b3PrxJbTIH9wKjrx7wBO00Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/eabb9a-9a07-4867-970b-2b1da624f7bc/1/tgqsEEN2t53WgpCRlHt3nJia9os.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.87.0/24
Signature Algorithm: sha256WithRSAEncryption
19:3c:fc:b0:67:6e:3f:46:80:4c:15:12:ff:43:c8:01:5d:6a:
3e:e6:d8:14:86:e6:c8:a4:28:5f:c8:1f:5c:89:fb:e5:30:8d:
46:19:93:2b:74:1e:16:e4:bf:18:71:4d:ba:79:17:e9:56:b3:
89:43:6b:4a:0a:99:20:7a:25:e2:41:e1:65:96:00:e2:4c:7c:
10:68:5e:70:b1:b5:a9:d4:72:7d:a0:ea:cc:c7:e3:fe:48:b8:
49:da:ea:eb:63:2d:67:15:18:29:ac:81:c7:80:f4:b9:c2:b3:
0c:37:49:99:5e:6c:8d:c1:95:a6:53:ba:d1:c7:28:44:e1:3c:
46:f9:b7:32:b3:79:60:6d:39:1c:c8:c0:db:80:3e:be:a8:3b:
10:57:e1:96:49:62:b6:88:ad:22:b6:d3:28:14:fb:89:10:21:
be:4f:99:62:7d:a5:b8:cb:ec:de:a9:19:d8:36:ac:e5:e0:15:
19:55:48:85:8f:d3:9b:82:53:58:53:83:8a:fa:f0:01:34:cd:
e2:e7:47:1b:5b:f0:73:0f:89:f9:bd:0a:97:19:77:47:8b:bb:
53:4c:3c:64:0b:51:23:18:d9:87:c1:e5:53:91:a7:d5:48:35:
c5:be:e5:6c:34:ce:ff:c5:aa:38:cc:a1:0f:17:03:75:6a:96:
03:ac:4e:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:44 2024 by rpki-client on console-fra.rpki-client.org