Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/jI5xbxvANFQlbzmuTvdKYXV9jrU.roa
File: jI5xbxvANFQlbzmuTvdKYXV9jrU.roa (raw, json)
Hash identifier: R8dNf1+PZXF4gG3Zgjb4LaQgui18PBVYfHbYWsag6oc=
Subject key identifier: 8C:8E:71:6F:1B:C0:34:54:25:6F:39:AE:4E:F7:4A:61:75:7D:8E:B5
Certificate issuer: /CN=86efb49df2474a6042b9f210bfea861b1b2886ed
Certificate serial: FD6B
Authority key identifier: 86:EF:B4:9D:F2:47:4A:60:42:B9:F2:10:BF:EA:86:1B:1B:28:86:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hu-0nfJHSmBCufIQv-qGGxsohu0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/jI5xbxvANFQlbzmuTvdKYXV9jrU.roa
Signing time: Thu 02 Jun 2022 10:54:20 +0000
ROA not before: Thu 02 Jun 2022 10:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35701
IP address blocks: 192.109.204.0/24 maxlen: 24
195.234.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64875 (0xfd6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86efb49df2474a6042b9f210bfea861b1b2886ed
Validity
Not Before: Jun 2 10:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8c8e716f1bc03454256f39ae4ef74a61757d8eb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:90:06:dc:4a:64:a2:cd:bb:d4:f3:28:fe:03:
34:f3:63:fc:0e:c2:68:e9:ef:92:9d:8e:5e:a4:69:
90:27:62:4f:c8:43:4b:24:3f:e3:16:0a:64:75:7d:
3b:61:89:d1:73:87:0a:76:37:ff:7d:a2:ca:b9:cd:
2d:6c:06:cc:eb:e8:77:59:5c:17:02:d1:fc:93:70:
24:87:d4:c5:8c:c2:99:b5:b6:40:a3:57:6d:7a:2b:
cd:22:55:0a:40:4f:ae:85:27:59:0e:8c:50:18:26:
3d:2e:47:38:8e:1d:f9:bc:a3:5f:e3:88:d5:8c:cf:
89:0d:61:aa:c8:0e:29:ae:76:66:8f:6e:ad:bc:b5:
43:81:82:74:54:7b:38:2d:59:4d:ab:21:5b:a7:fb:
96:98:3f:da:01:1c:b2:a3:ac:b7:ac:76:ff:e0:f1:
fd:17:bf:15:83:57:66:1c:07:1a:65:ec:91:14:f8:
0d:b4:d0:2d:48:8e:73:d7:b5:35:28:50:e0:33:f4:
a4:cf:ae:d0:18:26:3d:79:fe:5f:91:0e:96:7d:22:
fc:09:05:41:16:2d:4a:4c:80:96:09:ac:6e:c9:5a:
d9:54:ff:01:f6:3b:32:15:bd:4a:0c:34:cd:61:db:
94:d5:6a:7e:81:a1:40:9f:66:5a:d5:e7:18:d9:71:
ec:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:8E:71:6F:1B:C0:34:54:25:6F:39:AE:4E:F7:4A:61:75:7D:8E:B5
X509v3 Authority Key Identifier:
keyid:86:EF:B4:9D:F2:47:4A:60:42:B9:F2:10:BF:EA:86:1B:1B:28:86:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hu-0nfJHSmBCufIQv-qGGxsohu0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/jI5xbxvANFQlbzmuTvdKYXV9jrU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/435184-7791-4b54-b9b8-95b271f2e20b/1/hu-0nfJHSmBCufIQv-qGGxsohu0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.204.0/24
195.234.45.0/24
Signature Algorithm: sha256WithRSAEncryption
93:c6:df:ee:f0:83:cf:69:6e:cf:26:3e:3d:85:74:bc:43:9f:
bd:fa:8c:4f:7d:49:90:2d:81:24:6b:4a:ea:f0:87:4e:c5:7b:
a5:a0:be:2b:d4:c4:2e:77:cf:e3:27:f6:a5:8a:ce:8a:4b:63:
0d:f9:ff:07:44:52:4a:f5:24:06:55:73:0f:09:02:84:96:ad:
1a:c2:b2:42:5a:15:0b:bf:02:60:a0:95:96:1d:8f:49:34:f5:
18:6a:e2:e4:47:61:7b:9a:d6:4d:6d:38:37:01:82:ea:7e:15:
3b:81:ef:d9:a0:82:73:57:70:74:7a:f4:1f:39:35:12:33:b3:
59:34:71:dd:f7:2d:67:e4:a4:af:1c:52:60:2c:a1:76:8c:a4:
6f:29:58:c4:15:fa:c1:ce:ca:92:50:49:22:72:22:ca:ce:2e:
5e:26:81:eb:09:70:ef:45:78:e3:5b:92:a3:f1:d2:3c:cd:14:
ed:46:27:8c:2e:dc:47:cc:0b:a8:b8:36:23:e9:16:ee:f4:c1:
d1:52:09:19:d1:e2:52:15:9d:ac:e3:71:fd:3c:a6:81:a1:40:
97:d6:b8:a7:ef:e1:19:a9:58:6e:a0:0d:16:29:36:3e:5b:b1:
29:0c:93:eb:f2:55:fd:65:d8:a3:ae:74:03:af:8f:a9:72:64:
5b:ea:05:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:53 2024 by rpki-client on console-fra.rpki-client.org