Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/cbac08-c11e-4806-a2fd-7c88c4e04f91/1/eHCMhGYfYUFrO6tZyPyy6Yn1C9M.roa
File: eHCMhGYfYUFrO6tZyPyy6Yn1C9M.roa (raw, json)
Hash identifier: 0VB6MaRTk2/8OnyCfL96fskJfK9jztd3LT4VfBE6NzM=
Subject key identifier: 78:70:8C:84:66:1F:61:41:6B:3B:AB:59:C8:FC:B2:E9:89:F5:0B:D3
Certificate issuer: /CN=f16090c5f6233cbaeaf319dcfae692a956eea102
Certificate serial: 0A7BFAA3
Authority key identifier: F1:60:90:C5:F6:23:3C:BA:EA:F3:19:DC:FA:E6:92:A9:56:EE:A1:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8WCQxfYjPLrq8xnc-uaSqVbuoQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/cbac08-c11e-4806-a2fd-7c88c4e04f91/1/eHCMhGYfYUFrO6tZyPyy6Yn1C9M.roa
Signing time: Sat 01 Jan 2022 10:55:12 +0000
ROA not before: Sat 01 Jan 2022 10:55:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210206
IP address blocks: 194.5.4.0/22 maxlen: 24
2a0d:7ac0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 175897251 (0xa7bfaa3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f16090c5f6233cbaeaf319dcfae692a956eea102
Validity
Not Before: Jan 1 10:55:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78708c84661f61416b3bab59c8fcb2e989f50bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:8b:9f:f1:59:b2:70:42:dc:1a:80:f2:5c:1f:
fe:fc:78:ad:96:b2:58:71:1c:d3:ef:49:d4:3b:09:
b7:a2:72:08:e7:74:7c:01:15:0e:8e:3e:8b:87:3c:
49:18:2e:89:1d:73:51:e9:60:4d:f7:08:29:e4:4e:
b3:e4:3d:cb:b6:45:3f:03:a9:6d:ac:05:57:e2:00:
1d:76:71:b8:fe:f5:21:2a:43:f0:da:38:5d:60:da:
6f:31:0e:5d:14:17:11:02:8b:6a:18:80:5b:85:be:
9b:fc:c3:fc:0f:91:a5:51:a9:f3:30:ac:4c:d6:e0:
8c:66:4b:8f:0c:55:4c:2a:4a:fe:b9:fa:e4:0d:4a:
86:c6:9a:7c:d0:44:e0:c9:eb:84:dc:52:1c:02:5e:
4e:54:fc:e4:d0:e1:84:bc:ab:94:a1:69:c1:4a:90:
25:05:53:af:ba:af:16:28:8a:74:60:7f:23:8b:e4:
c2:fb:9d:5c:ff:aa:32:3d:23:e0:c5:ab:26:06:b5:
12:16:ca:a4:9c:91:c5:4a:fd:fa:3e:f5:d4:63:5b:
7b:9b:fb:26:d3:f8:d5:fb:5d:83:72:4e:c7:1b:a8:
95:52:ca:c6:7b:6b:89:9f:da:34:28:77:e3:53:48:
b8:22:12:36:1b:cc:52:e8:eb:7c:20:57:d4:1b:e8:
ed:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:70:8C:84:66:1F:61:41:6B:3B:AB:59:C8:FC:B2:E9:89:F5:0B:D3
X509v3 Authority Key Identifier:
keyid:F1:60:90:C5:F6:23:3C:BA:EA:F3:19:DC:FA:E6:92:A9:56:EE:A1:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8WCQxfYjPLrq8xnc-uaSqVbuoQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/cbac08-c11e-4806-a2fd-7c88c4e04f91/1/eHCMhGYfYUFrO6tZyPyy6Yn1C9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/cbac08-c11e-4806-a2fd-7c88c4e04f91/1/8WCQxfYjPLrq8xnc-uaSqVbuoQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.5.4.0/22
IPv6:
2a0d:7ac0::/29
Signature Algorithm: sha256WithRSAEncryption
83:04:c6:e3:e0:84:c7:ae:e5:fc:c5:9d:73:3e:cf:be:f2:8f:
4d:d8:02:47:ab:4a:eb:e1:94:f3:39:1a:73:29:03:57:84:18:
3c:6b:fc:da:fe:2a:b1:3e:84:96:b6:b8:be:e5:d9:0a:24:38:
ae:35:f0:b2:7b:47:0f:18:a9:81:2a:80:ac:2b:43:1a:5f:e8:
82:ac:b7:68:df:c7:5b:18:f7:e5:9f:da:9a:36:00:5b:8b:5e:
5e:44:e9:0c:c2:3b:90:4e:7a:4d:1f:2e:61:1e:a3:5b:e3:ea:
f3:68:84:f5:1a:ca:08:9b:99:89:9e:ee:67:47:ec:e3:65:7c:
b3:22:e4:67:32:ea:e7:c4:f2:6d:88:52:31:2b:85:bb:76:f0:
5e:1c:2d:31:36:6a:91:42:d2:13:8c:cc:e0:ad:ed:3d:47:d8:
41:0e:7b:75:2c:55:aa:b4:b6:ee:54:61:d4:49:4d:4b:fa:be:
ca:2e:e3:e2:34:21:11:a4:e3:18:95:79:e7:bc:50:82:8f:b4:
d4:b9:98:43:ff:7b:1a:dd:f4:d4:d2:f1:62:e1:fc:20:91:40:
ff:f0:98:bd:a4:e2:4f:fd:57:af:f5:2b:4b:36:33:52:1c:ac:
7d:fc:db:92:05:f5:20:21:0c:c5:70:f5:d0:ea:00:c8:3a:10:
e6:e0:23:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:04 2024 by rpki-client on console-fra.rpki-client.org