Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/exnXv7z-NXY2yqqYaYW5rhFkXfg.roa
File: exnXv7z-NXY2yqqYaYW5rhFkXfg.roa (raw, json)
Hash identifier: F5Qp0QSmdDCiWfM0e8mHZIbT5KnMtgEdWTYTCn6YAsI=
Subject key identifier: 7B:19:D7:BF:BC:FE:35:76:36:CA:AA:98:69:85:B9:AE:11:64:5D:F8
Certificate issuer: /CN=2c887302d1e740f5f98481fb4b7a461696bfe5c1
Certificate serial: 0FDB291F
Authority key identifier: 2C:88:73:02:D1:E7:40:F5:F9:84:81:FB:4B:7A:46:16:96:BF:E5:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LIhzAtHnQPX5hIH7S3pGFpa_5cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/exnXv7z-NXY2yqqYaYW5rhFkXfg.roa
Signing time: Sat 01 Jan 2022 06:05:39 +0000
ROA not before: Sat 01 Jan 2022 06:05:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25309
IP address blocks: 194.116.99.0/24 maxlen: 24
2001:7f8:23::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266021151 (0xfdb291f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c887302d1e740f5f98481fb4b7a461696bfe5c1
Validity
Not Before: Jan 1 06:05:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b19d7bfbcfe357636caaa986985b9ae11645df8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:aa:da:76:47:94:10:22:5b:f0:13:51:32:ea:
55:bc:7e:f4:97:78:79:e7:d3:7b:38:6c:fc:9c:25:
70:05:2f:0b:07:a0:c2:96:58:17:bf:84:81:6e:cf:
5d:57:37:8f:fa:eb:51:7f:5a:95:ef:40:47:32:cf:
79:19:d6:fa:90:25:61:3f:f4:83:d0:84:e3:65:55:
56:4d:df:bd:b5:cf:19:83:a1:1d:9b:83:61:a5:17:
7a:89:41:30:99:80:e7:2a:8e:ba:cd:1d:78:07:33:
68:72:ca:58:e9:4d:57:60:50:87:d1:8e:06:3d:1a:
64:38:aa:0c:df:e0:ce:da:c5:7e:70:c5:00:ea:05:
2c:5d:c2:45:9d:a8:f2:d6:85:85:12:2d:1e:dc:e4:
cc:a7:fe:9a:30:5f:1c:55:9a:b5:88:05:82:35:4d:
98:f9:29:1d:95:ab:3e:d2:80:bc:cb:ea:43:bf:5f:
c8:d0:2a:b2:39:c7:d0:9d:93:77:85:6b:47:96:1d:
46:a5:9c:1b:35:b4:a8:da:f4:01:33:29:4d:68:3d:
32:7a:77:ea:18:14:5e:e6:66:10:d9:c5:5e:c4:3e:
1d:83:ac:6e:01:99:57:a8:45:e4:55:86:98:f4:98:
60:ab:96:33:43:57:b3:8d:67:7f:6d:04:4c:48:33:
ae:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:19:D7:BF:BC:FE:35:76:36:CA:AA:98:69:85:B9:AE:11:64:5D:F8
X509v3 Authority Key Identifier:
keyid:2C:88:73:02:D1:E7:40:F5:F9:84:81:FB:4B:7A:46:16:96:BF:E5:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LIhzAtHnQPX5hIH7S3pGFpa_5cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/exnXv7z-NXY2yqqYaYW5rhFkXfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/645b74-d8fb-4488-bbfd-c028d91ebc9c/1/LIhzAtHnQPX5hIH7S3pGFpa_5cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.99.0/24
IPv6:
2001:7f8:23::/48
Signature Algorithm: sha256WithRSAEncryption
77:b5:6d:f9:12:eb:9c:59:74:d7:13:5c:a1:30:ca:41:5c:82:
b2:5a:38:2f:9e:4c:87:f1:94:b0:c0:de:44:89:fe:b1:ac:72:
4b:2c:e3:f1:ad:ad:9b:df:0f:1f:c7:33:db:82:31:d3:d2:62:
c5:ee:ef:59:c1:41:7b:73:15:fe:09:70:4d:f7:19:7a:87:e5:
45:de:16:56:01:f4:03:db:38:21:52:56:d2:ca:98:1f:d3:b2:
16:1a:45:db:1d:87:5f:0d:2c:c8:5b:f8:21:6b:08:41:db:bf:
88:41:0c:95:83:37:14:7f:b3:f2:cf:e3:e9:29:a6:7e:9c:41:
c0:ff:5e:08:f4:df:c5:27:e9:53:74:89:42:7f:3b:63:df:d0:
36:0e:54:f2:15:d7:a2:f0:71:6d:a7:8e:a2:65:55:89:49:cb:
d8:81:5e:5d:d2:24:46:74:f2:b7:33:b5:91:79:61:32:3b:3a:
0d:33:32:f1:7f:c9:f3:6e:ad:76:8b:1a:43:b9:05:54:cd:24:
ef:14:37:6c:49:6f:40:6b:11:6b:e3:52:4b:87:c4:d1:38:d0:
5e:23:3e:fc:96:d7:dc:2d:c1:cf:89:03:7d:5e:1f:50:52:2e:
e5:99:47:b2:16:01:2e:55:07:fe:9e:6f:0d:48:45:c2:f6:3f:
86:e3:ce:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:13 2024 by rpki-client on console-fra.rpki-client.org