Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/45a04c-cb0d-4c0c-8bf1-48f39fde0eea/1/Ko29fm2zlV3gdYCFLwUfeURSBNc.roa
File: Ko29fm2zlV3gdYCFLwUfeURSBNc.roa (raw, json)
Hash identifier: CPXpY+SLO51uEmcUpVlUmfgCtafCH45dEyLihh40+uA=
Subject key identifier: 2A:8D:BD:7E:6D:B3:95:5D:E0:75:80:85:2F:05:1F:79:44:52:04:D7
Certificate issuer: /CN=e980fb9530a36ff7b7430d50d44b8fb6d6dca937
Certificate serial: 13F2E03D
Authority key identifier: E9:80:FB:95:30:A3:6F:F7:B7:43:0D:50:D4:4B:8F:B6:D6:DC:A9:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6YD7lTCjb_e3Qw1Q1EuPttbcqTc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/45a04c-cb0d-4c0c-8bf1-48f39fde0eea/1/Ko29fm2zlV3gdYCFLwUfeURSBNc.roa
Signing time: Sat 01 Jan 2022 05:06:02 +0000
ROA not before: Sat 01 Jan 2022 05:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21500
IP address blocks: 194.54.186.0/24 maxlen: 24
194.54.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 334684221 (0x13f2e03d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e980fb9530a36ff7b7430d50d44b8fb6d6dca937
Validity
Not Before: Jan 1 05:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a8dbd7e6db3955de07580852f051f79445204d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ab:6f:2b:46:0e:24:90:cc:8e:de:06:8d:2f:
53:9f:ef:e4:2c:4d:56:c8:20:d0:a6:60:82:eb:f2:
db:57:d2:c4:b1:e0:5a:59:66:70:59:24:4e:df:e9:
6d:8b:5e:69:ed:82:01:2d:8f:26:ac:32:16:49:6a:
20:e4:29:65:49:ae:00:14:01:79:a6:9e:4c:a8:2c:
21:e3:84:37:39:78:be:b8:75:e0:ff:95:31:d5:a0:
51:79:cd:a5:41:73:18:d7:03:7b:7d:ec:ac:f6:70:
0e:b5:8d:4d:76:07:3c:0c:45:88:60:4d:ff:44:88:
cd:d0:b2:83:ca:ae:28:0a:57:a8:39:a0:f4:bb:ab:
fb:29:29:e4:e4:78:dc:99:01:75:f3:05:a2:ff:86:
54:5e:c5:73:30:d7:d0:59:b0:e2:5b:30:cd:62:b7:
5d:60:e4:f9:23:3d:b2:04:f6:e7:87:da:7c:4b:4e:
c7:d5:a4:0e:ac:a9:84:4a:b3:de:8a:cc:95:69:3f:
c1:86:2c:59:9e:81:4a:ff:a2:ae:de:c1:f5:c8:77:
a4:b4:69:84:e1:7a:4b:78:11:51:bb:40:52:f0:91:
95:7f:e4:46:15:84:59:9b:ed:9e:c7:17:91:3e:f7:
b1:0a:89:e2:17:5d:e5:99:af:a9:11:25:d4:d8:60:
58:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:8D:BD:7E:6D:B3:95:5D:E0:75:80:85:2F:05:1F:79:44:52:04:D7
X509v3 Authority Key Identifier:
keyid:E9:80:FB:95:30:A3:6F:F7:B7:43:0D:50:D4:4B:8F:B6:D6:DC:A9:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6YD7lTCjb_e3Qw1Q1EuPttbcqTc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/45a04c-cb0d-4c0c-8bf1-48f39fde0eea/1/Ko29fm2zlV3gdYCFLwUfeURSBNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/45a04c-cb0d-4c0c-8bf1-48f39fde0eea/1/6YD7lTCjb_e3Qw1Q1EuPttbcqTc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.54.186.0/23
Signature Algorithm: sha256WithRSAEncryption
10:ca:7e:1c:0c:d6:a4:d4:6f:6e:f1:5a:c1:d6:a0:a8:76:8e:
a5:df:dd:59:ef:5f:fb:5e:a6:e3:0c:3e:83:e0:57:34:34:e9:
1d:28:e1:73:27:a7:d5:d4:c6:16:5d:dd:fc:84:07:a7:b7:6f:
52:00:2b:59:a2:17:64:ae:ba:cd:aa:8f:cf:19:fb:81:84:6e:
91:89:9a:7d:0d:d6:fa:d8:0c:08:64:41:68:2d:07:c1:5f:0d:
66:86:cf:e9:ee:f3:63:88:b4:aa:0c:73:e8:80:ba:d7:52:42:
bb:9a:35:f8:f0:ee:fb:dc:7f:29:91:ee:cd:a6:8c:a9:53:b4:
c3:e7:61:96:81:51:e6:7a:b8:73:16:56:2c:c5:9b:c9:60:ee:
51:22:c2:ec:5d:f8:6d:ca:d9:1c:b0:b7:08:d3:d9:90:48:7d:
17:83:e8:ed:9d:0b:e5:6d:bd:ef:6f:9b:f2:6c:a3:29:c3:20:
77:42:fd:6f:f1:53:02:89:4f:5e:97:c3:13:e2:a2:7b:49:fe:
7e:98:94:d9:75:44:df:f0:3a:e2:fd:5c:c5:7a:db:c0:d8:6f:
46:3a:f1:ec:d1:db:bc:79:c8:bb:85:ea:30:bd:07:1e:07:fb:
0a:35:8b:42:47:d8:02:0e:fa:92:ec:a5:d1:3f:42:46:91:9c:
a4:85:a3:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:51 2023 by rpki-client on console-ams.rpki-client.org