Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/8cyra1e49pM6ruvlnts4gmpIDrc.roa
File: 8cyra1e49pM6ruvlnts4gmpIDrc.roa (raw, json)
Hash identifier: SJIAIgWAUWNL9ecYhYqAGA6hTyJp2Cf2F207RWIuiug=
Subject key identifier: F1:CC:AB:6B:57:B8:F6:93:3A:AE:EB:E5:9E:DB:38:82:6A:48:0E:B7
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01847CB2CF1A1AB6ADB534669478735BFA7E
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/8cyra1e49pM6ruvlnts4gmpIDrc.roa
Signing time: Tue 15 Nov 2022 19:10:03 +0000
ROA not before: Tue 15 Nov 2022 19:10:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 194.28.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7c:b2:cf:1a:1a:b6:ad:b5:34:66:94:78:73:5b:fa:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Nov 15 19:10:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1ccab6b57b8f6933aaeebe59edb38826a480eb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:23:47:79:02:9b:2f:7e:d2:2d:26:6e:2f:a9:
3e:68:70:c7:3b:25:5c:b3:2b:c3:57:b7:c1:71:76:
da:89:4a:fa:64:b0:f2:16:dc:21:65:9e:88:e8:c5:
3e:dd:a0:2b:f0:47:d1:ed:dd:81:cf:3f:b4:77:47:
35:72:40:08:0f:f5:6e:6b:82:fa:a5:e1:c3:08:ea:
22:4b:b0:55:17:82:99:b8:1d:bc:82:b6:9b:46:ae:
b8:4f:58:9f:99:62:4d:cd:c5:f2:14:08:0d:d2:0e:
8c:dc:47:60:06:b1:8f:eb:8e:9c:10:78:fe:82:2d:
a6:6c:38:9e:2f:7b:a4:42:59:7d:44:fa:f2:84:df:
f6:ea:25:4b:31:cd:04:12:58:fc:f1:a6:5c:11:9e:
f6:ee:2e:fd:a7:49:e0:02:aa:c1:73:9f:7d:c5:ef:
12:9d:b3:82:1f:d9:58:3b:05:4d:24:35:21:c3:76:
2c:fa:d2:df:86:78:b9:9d:76:9b:d9:90:72:9f:d8:
26:69:59:27:7a:9e:fb:40:c8:b9:58:3e:ac:0d:ff:
b0:6e:e9:e1:6b:ae:a2:43:f9:6b:ab:2c:4f:f4:1f:
ad:f6:2b:6b:11:2b:fd:fb:9d:4d:a2:b7:3e:ef:6a:
09:c0:52:5a:4a:d5:63:be:b9:4f:9e:39:95:94:c1:
21:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:CC:AB:6B:57:B8:F6:93:3A:AE:EB:E5:9E:DB:38:82:6A:48:0E:B7
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/8cyra1e49pM6ruvlnts4gmpIDrc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.128.0/24
Signature Algorithm: sha256WithRSAEncryption
50:87:43:65:6a:2f:6b:7d:31:6c:90:74:09:f5:b9:82:9d:4d:
93:07:37:d9:28:4c:17:51:bf:7b:18:a2:61:0c:bb:c8:c3:88:
28:a1:9f:4c:8a:ba:c9:39:2f:d0:19:14:15:f9:a3:39:f7:a0:
21:4a:80:0f:35:c9:18:0e:e2:8c:4e:af:7e:e9:64:d4:2b:a6:
4b:83:29:44:7d:68:7f:e3:e2:74:ce:c1:1f:71:78:c7:7e:38:
ad:ee:1f:58:68:cc:d8:4a:0d:58:7f:d2:8f:80:d7:f9:61:aa:
4f:11:ee:04:f5:a4:e8:b5:2a:ed:1f:ea:81:06:bf:30:d0:98:
79:06:76:10:7d:b9:72:85:d1:da:46:76:8a:0f:07:4a:af:e2:
10:3e:9d:5d:2f:55:22:d5:f6:77:83:38:f6:4c:ac:0a:67:e7:
61:54:71:99:aa:3e:b1:28:d1:27:20:8a:d1:23:c4:8e:b5:21:
92:22:37:8a:0e:0a:99:89:5f:18:b0:f8:ac:20:b4:e5:fa:fe:
a2:85:ab:93:10:05:41:39:1f:6d:f4:36:f8:d7:9a:a6:ab:ef:
65:a8:41:4d:bf:7e:77:3a:a0:cb:be:7f:b9:5f:71:72:43:93:
60:5e:59:14:aa:33:c2:8a:11:82:6d:85:30:22:44:c9:5f:20:
5a:9e:7f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-fra.rpki-client.org