Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/51210c-a380-4b59-b2ad-45a21b29023d/1/4DGw-1h3QykBKPYbrSThTGAE5kc.roa
File: 4DGw-1h3QykBKPYbrSThTGAE5kc.roa (raw, json)
Hash identifier: bvtUvAHs/ldWBmlYotDuLTaUvmxRtuu8JgogdkJhIzw=
Subject key identifier: E0:31:B0:FB:58:77:43:29:01:28:F6:1B:AD:24:E1:4C:60:04:E6:47
Certificate issuer: /CN=4b2e93ca9f9d46de543ff7c2d0540e897dc14fee
Certificate serial: 0AF1CFCB
Authority key identifier: 4B:2E:93:CA:9F:9D:46:DE:54:3F:F7:C2:D0:54:0E:89:7D:C1:4F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sy6Typ-dRt5UP_fC0FQOiX3BT-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/51210c-a380-4b59-b2ad-45a21b29023d/1/4DGw-1h3QykBKPYbrSThTGAE5kc.roa
Signing time: Sat 01 Jan 2022 02:59:01 +0000
ROA not before: Sat 01 Jan 2022 02:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13101
IP address blocks: 194.180.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 183619531 (0xaf1cfcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b2e93ca9f9d46de543ff7c2d0540e897dc14fee
Validity
Not Before: Jan 1 02:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e031b0fb587743290128f61bad24e14c6004e647
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:b2:c6:37:62:77:6b:e5:f4:cc:f9:6d:56:18:
10:47:f1:43:23:e8:73:00:e6:dd:c4:92:ea:9b:04:
06:c7:33:7b:fb:d3:86:12:ab:5a:2e:a7:27:0b:da:
cb:8f:a3:b6:26:f2:0b:3f:f2:6c:a6:af:77:a8:26:
23:df:da:8d:b7:73:8b:26:47:0b:31:cb:db:5f:52:
e5:f7:0a:55:61:ed:1a:67:c8:a9:18:7d:0c:6f:e3:
30:bf:6c:89:d0:70:fc:a5:ba:06:98:af:b2:6e:14:
31:7c:ca:14:b0:20:43:1d:e7:2d:69:67:81:81:72:
e8:a5:9b:d0:fe:b4:8d:d1:69:b1:68:ad:3b:11:c8:
26:a5:90:3c:f4:f5:0e:36:9b:69:ac:bb:94:a2:18:
47:73:f1:d5:f6:a5:90:af:de:ad:03:ea:1b:1a:ec:
42:3f:f6:18:44:68:b2:06:f9:5b:bc:90:20:de:3d:
9f:95:9e:35:12:0d:b6:82:51:03:64:f4:79:5a:f5:
2d:47:9b:0f:26:40:93:9b:68:15:37:ff:ee:d4:27:
33:68:b8:9f:63:d5:b1:0e:15:f6:c6:6a:50:db:36:
ad:eb:79:94:73:fc:83:d3:10:22:63:21:55:9b:c0:
8e:85:e7:2a:eb:8e:74:ce:55:29:b0:8d:2c:41:bc:
46:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:31:B0:FB:58:77:43:29:01:28:F6:1B:AD:24:E1:4C:60:04:E6:47
X509v3 Authority Key Identifier:
keyid:4B:2E:93:CA:9F:9D:46:DE:54:3F:F7:C2:D0:54:0E:89:7D:C1:4F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sy6Typ-dRt5UP_fC0FQOiX3BT-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51210c-a380-4b59-b2ad-45a21b29023d/1/4DGw-1h3QykBKPYbrSThTGAE5kc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/51210c-a380-4b59-b2ad-45a21b29023d/1/Sy6Typ-dRt5UP_fC0FQOiX3BT-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.18.0/24
Signature Algorithm: sha256WithRSAEncryption
00:5e:c1:68:2a:01:85:b5:dc:b7:63:7d:40:f0:58:8c:95:0b:
ac:c0:e4:f9:98:6c:f6:57:ec:2e:bd:62:95:98:11:13:a8:36:
5a:be:ee:55:df:3d:5e:86:86:4b:d0:ce:6d:d7:18:da:31:cd:
b4:34:e8:29:f2:d8:e9:e6:d8:0f:25:e8:a0:56:c5:37:29:20:
81:f4:f7:3c:41:70:26:0b:f7:95:45:ec:b3:b2:09:43:d3:6c:
79:4e:52:72:3f:e3:fd:2d:72:af:ee:64:1d:e8:a5:a7:f6:6d:
8a:ea:c4:17:f2:15:ed:61:ef:f8:a0:f7:26:e9:40:69:de:8c:
89:ab:ae:ff:4a:db:39:95:33:a3:a2:f7:dd:a2:1f:89:28:06:
49:26:be:a2:86:58:dc:85:de:46:9d:c0:0b:63:9c:4b:c4:43:
be:2d:dd:88:c5:bc:98:a1:84:00:b8:5e:ff:2e:ec:af:e0:5e:
59:f9:9d:d8:4e:80:e0:8f:47:79:4f:71:73:ea:9d:c0:24:50:
17:6d:a4:e0:f4:c6:f7:b9:03:15:bd:58:5d:0b:4b:71:27:15:
ad:7a:15:2f:51:43:cb:ca:a0:79:1d:81:f4:2a:b0:f2:2b:73:
ac:bb:b9:49:b0:f7:f9:cc:8c:be:f9:5e:c3:93:70:b1:21:5d:
2c:70:1f:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:30 2024 by rpki-client on console-ams.rpki-client.org