Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/eUfSw2vGDLH4p4dpGslCNJ0j1xc.roa
File: eUfSw2vGDLH4p4dpGslCNJ0j1xc.roa (raw, json)
Hash identifier: MNu5L+L0ISmBcEznjpNx+Jm3e0nzsrUiJoVSQEz9QKA=
Subject key identifier: 79:47:D2:C3:6B:C6:0C:B1:F8:A7:87:69:1A:C9:42:34:9D:23:D7:17
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 0351A7
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/eUfSw2vGDLH4p4dpGslCNJ0j1xc.roa
Signing time: Thu 27 Jan 2022 11:20:06 +0000
ROA not before: Thu 27 Jan 2022 11:20:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8881
IP address blocks: 194.145.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 217511 (0x351a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Jan 27 11:20:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7947d2c36bc60cb1f8a787691ac942349d23d717
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:05:23:b6:06:48:8d:04:49:c1:28:f1:52:fa:
2c:64:71:00:3d:39:75:ee:eb:7c:a6:12:f2:68:d6:
9f:b6:0a:3c:05:30:b6:aa:18:4e:0a:28:cf:d3:b2:
fd:0a:be:4a:f7:66:8a:41:cd:d7:2b:79:e5:e1:0f:
e3:93:04:cf:ab:8a:72:77:7d:87:5e:41:94:34:49:
c1:74:e5:13:e3:38:10:e7:03:ab:0f:c4:f1:52:02:
e6:c4:db:0e:2d:d9:ea:61:3b:42:a1:65:41:bc:93:
da:f8:f1:83:2f:f6:13:da:ad:fb:6b:60:d6:30:4b:
c0:b8:0b:d2:e2:99:9d:7a:d8:ce:d9:fb:be:9c:d0:
8c:63:e9:0f:73:9f:5e:42:1f:60:55:64:8e:33:a6:
d3:e4:13:32:ef:88:a8:d5:3b:21:7f:82:a0:3c:f0:
29:bd:dd:c0:04:80:5c:3f:5a:01:36:b1:16:76:07:
9b:0b:02:7a:85:c1:f6:e4:1a:60:ba:76:ab:96:45:
ce:9c:f7:60:3d:e9:5d:5b:75:a8:16:85:c5:27:21:
76:57:3e:43:87:57:3c:a7:01:d7:97:0a:cf:74:e3:
70:e8:59:b5:30:af:f3:4f:41:c5:18:1e:69:fd:30:
6b:fa:41:86:43:0c:eb:65:bf:d2:73:a9:6e:08:0a:
a1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:47:D2:C3:6B:C6:0C:B1:F8:A7:87:69:1A:C9:42:34:9D:23:D7:17
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/eUfSw2vGDLH4p4dpGslCNJ0j1xc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.230.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:2d:27:43:86:b3:b9:7b:da:be:f4:97:04:48:c1:a4:d1:0d:
cc:11:7e:31:a4:f1:e6:aa:62:a0:84:8c:b2:fa:c7:fb:97:44:
fc:64:51:45:d9:07:24:c3:2d:78:fd:5b:29:80:b5:66:3c:05:
88:d8:37:f1:84:4b:33:4b:29:77:98:91:d4:31:20:b5:7b:45:
5f:af:6a:dd:60:43:eb:42:87:c7:d6:ab:20:e0:72:6d:06:e5:
ac:95:90:65:54:5a:20:4e:4f:0f:92:a0:61:90:57:d8:bb:6b:
c6:7e:3a:1e:c1:db:bb:79:c1:46:30:bc:22:2b:ca:5d:dd:ba:
fc:3e:20:83:54:ab:ca:1d:12:d4:30:68:7a:36:f0:ec:5f:6e:
66:a6:8a:d0:f3:e0:87:fc:cf:ba:18:51:6f:28:eb:b6:2e:e3:
c2:7a:a4:2e:da:3b:f7:e0:24:5d:cd:8c:1f:b9:f2:48:70:03:
29:64:7a:70:58:ff:f3:2f:83:6d:af:fc:1f:f7:db:99:fb:e6:
b8:a1:18:da:f9:59:a3:85:17:4a:58:c0:1f:23:45:6d:64:ac:
63:ac:09:f1:7f:92:51:af:60:16:f3:23:ce:db:41:23:38:21:
bc:27:16:04:fe:6e:67:fb:2f:3c:4b:45:99:5a:19:f0:c4:af:
5d:fe:53:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:02 2024 by rpki-client on console-ams.rpki-client.org