Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/RN1eSuzguAx39ZvBBQDP6BydPzM.roa
File: RN1eSuzguAx39ZvBBQDP6BydPzM.roa (raw, json)
Hash identifier: LTIEu+VVIzaBIKOit0s4NTChdKztK3e4q58pjk15qmU=
Subject key identifier: 44:DD:5E:4A:EC:E0:B8:0C:77:F5:9B:C1:05:00:CF:E8:1C:9D:3F:33
Certificate issuer: /CN=64c5fd1dc0c457d9ec113d23bd4935c723e9ecf4
Certificate serial: 01DD73
Authority key identifier: 64:C5:FD:1D:C0:C4:57:D9:EC:11:3D:23:BD:49:35:C7:23:E9:EC:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZMX9HcDEV9nsET0jvUk1xyPp7PQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/RN1eSuzguAx39ZvBBQDP6BydPzM.roa
Signing time: Thu 20 Jan 2022 12:47:08 +0000
ROA not before: Thu 20 Jan 2022 12:47:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211465
IP address blocks: 194.42.126.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122227 (0x1dd73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=64c5fd1dc0c457d9ec113d23bd4935c723e9ecf4
Validity
Not Before: Jan 20 12:47:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44dd5e4aece0b80c77f59bc10500cfe81c9d3f33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:69:45:85:09:d5:3e:79:0f:79:a0:a3:91:55:
fb:b0:a0:aa:7f:0c:12:de:9c:5e:92:c5:31:77:be:
e3:29:71:b5:1b:e1:93:f8:69:f9:e1:8b:a3:59:a0:
31:7d:18:d1:85:32:52:08:35:53:b2:7e:0d:53:af:
c0:3f:83:34:e6:70:22:ef:da:04:c9:a2:74:30:8e:
ab:06:2d:11:a4:2b:34:91:6d:d2:8b:87:f2:7d:cd:
ac:07:b6:8a:3b:42:72:27:bf:be:00:23:2f:b6:6a:
67:f5:c9:4f:d6:d8:7a:37:08:c3:e6:fb:52:1c:46:
08:c6:a8:77:a5:24:39:f3:9a:67:7e:be:2c:ee:c9:
dd:42:7b:64:ee:73:62:6b:88:3d:8a:c3:9d:bc:86:
61:46:0f:cd:d1:b4:07:17:85:d6:fb:5f:d3:72:14:
42:02:2d:cf:64:c8:0b:d8:42:6e:34:af:7c:55:2c:
d6:a6:13:17:05:9b:d3:a0:5f:50:8a:9a:6b:85:a6:
19:03:79:e8:3a:0f:47:55:a6:ce:cf:ac:40:59:c6:
6b:c6:c1:95:cb:18:ef:a0:aa:f9:be:2a:44:77:f8:
8d:a3:fa:3e:f7:b8:06:64:65:55:5e:16:90:ef:81:
04:a1:c3:cf:96:38:6c:27:b3:e1:ce:3d:36:7e:dc:
2f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DD:5E:4A:EC:E0:B8:0C:77:F5:9B:C1:05:00:CF:E8:1C:9D:3F:33
X509v3 Authority Key Identifier:
keyid:64:C5:FD:1D:C0:C4:57:D9:EC:11:3D:23:BD:49:35:C7:23:E9:EC:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZMX9HcDEV9nsET0jvUk1xyPp7PQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/RN1eSuzguAx39ZvBBQDP6BydPzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/a4640c-e69a-4337-b1aa-4cb0679ace7f/1/ZMX9HcDEV9nsET0jvUk1xyPp7PQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.42.126.0/23
Signature Algorithm: sha256WithRSAEncryption
74:8c:5e:c6:6f:1a:20:bc:17:b7:a3:06:7b:f8:9e:93:f3:b6:
27:fd:cd:b1:b1:14:40:d4:22:03:cd:35:11:3a:fd:79:10:3d:
62:d1:2e:21:ac:f4:8d:f0:66:dc:c6:c9:42:6d:69:df:07:1a:
a0:e4:45:94:f2:10:2a:52:43:d2:ca:63:56:0b:b7:cb:19:59:
b9:c5:e0:e6:46:26:00:2b:2b:e1:0c:14:a6:93:a7:bb:6b:38:
32:31:46:89:5b:46:7f:49:69:b0:51:df:14:b1:c2:a5:c4:5c:
fd:eb:21:17:43:df:d8:ae:1b:30:db:fc:d6:d6:10:46:42:6c:
7f:61:29:9e:1d:76:e9:51:a1:be:55:9e:e9:48:9b:01:47:25:
e4:5c:c3:10:dd:2c:ab:39:20:0b:a4:02:b4:d3:ea:2b:a4:10:
d8:19:a2:bb:44:60:22:4f:6f:90:b1:85:b5:d4:be:f7:24:44:
10:23:4c:28:39:35:c9:f3:b6:bb:f0:48:bc:4a:3b:49:3a:22:
d4:00:b1:c8:f4:be:f4:61:92:65:93:a5:85:d4:f0:a4:46:e8:
67:82:97:07:72:73:cd:38:60:8b:ee:59:55:88:8c:1b:77:0c:
94:dd:f6:39:e0:c0:e2:97:98:26:e4:4c:07:68:96:b0:80:1e:
e2:3f:a3:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:09 2024 by rpki-client on console-fra.rpki-client.org