Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/edPHpL1_rk7eBB3ur3EfbWPmKyQ.roa
File: edPHpL1_rk7eBB3ur3EfbWPmKyQ.roa (raw, json)
Hash identifier: L5MzT6tlIcZiApMT/wJKuekLfafNKHj+3FTwY7n2fpo=
Subject key identifier: 79:D3:C7:A4:BD:7F:AE:4E:DE:04:1D:EE:AF:71:1F:6D:63:E6:2B:24
Certificate issuer: /CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Certificate serial: 01833587688D88B924858F9022BC0A154F6A
Authority key identifier: 6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/edPHpL1_rk7eBB3ur3EfbWPmKyQ.roa
Signing time: Tue 13 Sep 2022 06:26:49 +0000
ROA not before: Tue 13 Sep 2022 06:26:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 194.28.128.0/24 maxlen: 24
212.69.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:35:87:68:8d:88:b9:24:85:8f:90:22:bc:0a:15:4f:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f84e4738a70ea39c08cef210432ae399ec7e915
Validity
Not Before: Sep 13 06:26:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79d3c7a4bd7fae4ede041deeaf711f6d63e62b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8e:c7:1d:ff:ce:43:8f:34:ac:88:73:a7:5a:
aa:9b:c0:13:aa:79:39:df:d9:00:ae:13:f1:39:c7:
eb:17:70:a6:5b:c8:55:ce:86:da:a1:59:81:8a:bd:
ae:1f:e7:30:4a:95:92:4f:82:1f:ca:e8:e2:2a:58:
8e:9c:c0:4b:94:c2:7c:2d:1a:8e:41:9f:9e:a7:d4:
db:f2:c9:e9:04:c7:09:f4:01:19:1f:a5:72:a8:d0:
89:f9:0b:cd:d3:e1:f1:6f:32:fc:d5:e5:f5:af:35:
70:ad:03:ec:7d:bb:8e:17:23:3c:24:3e:89:71:e2:
00:c0:c9:aa:df:b4:7e:db:5e:3c:af:14:1f:8a:97:
83:aa:9d:87:ed:34:77:19:98:af:3d:39:95:04:ad:
6e:f5:24:67:8f:db:81:8c:0f:4e:9a:0b:bb:d0:5b:
e7:c4:5d:63:80:df:44:db:ca:7f:4a:8b:c7:e3:56:
22:79:b7:75:17:a3:5b:55:24:12:58:d2:5e:fb:0a:
66:bc:c3:84:b8:12:61:70:1b:d5:21:71:62:78:fb:
4b:15:0c:65:1f:bc:df:fe:39:fe:74:9b:a8:f5:c5:
be:0c:e8:55:4d:77:e3:de:5c:56:c6:29:9c:ba:0a:
6a:64:38:35:07:b1:33:15:7b:54:17:b0:4b:bb:37:
34:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:D3:C7:A4:BD:7F:AE:4E:DE:04:1D:EE:AF:71:1F:6D:63:E6:2B:24
X509v3 Authority Key Identifier:
keyid:6F:84:E4:73:8A:70:EA:39:C0:8C:EF:21:04:32:AE:39:9E:C7:E9:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/edPHpL1_rk7eBB3ur3EfbWPmKyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/ddf8b3-1c08-495c-8ddf-fae5dbed3b1b/1/b4Tkc4pw6jnAjO8hBDKuOZ7H6RU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.28.128.0/24
212.69.1.0/24
Signature Algorithm: sha256WithRSAEncryption
73:0f:71:00:fb:47:21:5e:2d:75:d1:0f:c3:93:ec:10:df:73:
2a:a7:aa:c9:5b:e2:a7:7d:c8:cd:ee:e6:87:3c:0c:eb:ad:87:
53:d2:e1:40:d9:5e:36:16:73:04:93:e1:c6:ca:28:57:8b:07:
ea:7b:2d:d5:4a:08:dc:1f:b9:7c:26:0c:5c:7c:69:10:20:92:
4c:bc:bb:04:6f:c7:c1:50:a6:9c:22:b5:d9:79:96:4b:59:25:
df:27:ba:cc:ae:3c:4d:b0:f9:b3:51:4d:40:b9:3b:1d:79:4a:
1f:f9:da:64:5c:97:9c:16:33:9c:16:23:7a:27:63:b0:85:d9:
2a:b5:c9:52:91:c3:96:f1:7c:95:79:75:45:7c:44:a0:ca:1c:
0e:b4:d8:ea:23:71:3c:69:3b:ec:9b:00:95:aa:a6:aa:ce:2f:
a8:b0:00:78:5a:42:09:a2:be:1b:97:3b:4f:cc:93:3a:77:6c:
69:65:ea:41:48:4e:96:8b:ca:60:c6:98:56:21:6d:08:55:37:
19:8e:0d:6e:cf:cf:e7:a0:80:f4:13:87:3d:ea:00:63:0b:e6:
2c:29:66:23:3c:9e:eb:7d:61:dc:e8:a4:33:cd:49:90:82:55:
ca:cb:e9:f8:7a:08:16:f4:83:f8:26:82:22:47:5f:36:b5:67:
33:96:95:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:20 2023 by rpki-client on console-ams.rpki-client.org