Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/Rb0D2DoJQL9dFog7yIu_7_H0VMM.roa
File: Rb0D2DoJQL9dFog7yIu_7_H0VMM.roa (raw, json)
Hash identifier: a9awXyWt7RMJkDxI8EW1+M0qBJ4zB/hkXtqF7eJULgA=
Subject key identifier: 45:BD:03:D8:3A:09:40:BF:5D:16:88:3B:C8:8B:BF:EF:F1:F4:54:C3
Certificate issuer: /CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Certificate serial: 08A4BDEF
Authority key identifier: B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/Rb0D2DoJQL9dFog7yIu_7_H0VMM.roa
Signing time: Thu 30 Jun 2022 08:40:02 +0000
ROA not before: Thu 30 Jun 2022 08:40:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212346
IP address blocks: 194.147.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145014255 (0x8a4bdef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d5ec1516ee6dc19d1e5c3998cb7e7a646f715a
Validity
Not Before: Jun 30 08:40:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45bd03d83a0940bf5d16883bc88bbfeff1f454c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:a9:9f:e5:f1:60:7e:d9:c4:86:3b:97:5d:ff:
a8:f2:fc:35:c2:7e:88:c5:30:25:c9:10:69:9b:67:
35:ab:09:61:8d:91:62:e1:4c:8d:3b:2d:f6:50:45:
ce:9f:08:66:28:b4:75:a0:6f:21:a1:14:28:9a:77:
61:23:68:21:1d:24:08:07:24:5f:d6:c5:1d:c5:10:
bd:ba:2d:55:7e:f4:a5:38:10:67:ea:53:8f:86:6e:
80:44:79:ec:52:5d:44:18:fb:cc:66:78:03:e7:d5:
3b:9f:a1:b5:12:59:fc:ac:24:e8:9e:66:ae:04:db:
e3:0c:fa:e1:a5:08:39:48:b4:5a:74:70:40:c8:dd:
98:c3:d6:c0:9a:59:40:cc:90:4b:2f:c3:fb:55:97:
eb:6c:6b:b3:34:58:5a:7d:80:ed:01:f4:10:d0:c3:
96:f8:17:85:78:ad:20:01:18:a4:57:9a:b3:2c:73:
d2:77:28:31:b3:9e:47:02:38:bd:50:f0:fc:b4:6d:
7b:57:87:36:9b:4e:4a:e1:78:9a:bd:9d:6e:25:f9:
36:6b:da:55:39:6a:09:1e:51:83:e0:14:d8:1c:5d:
a3:38:61:c2:ba:83:d0:eb:ea:ed:79:62:6a:99:85:
84:90:d5:39:54:82:06:bd:44:39:cd:da:60:62:19:
58:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:BD:03:D8:3A:09:40:BF:5D:16:88:3B:C8:8B:BF:EF:F1:F4:54:C3
X509v3 Authority Key Identifier:
keyid:B3:D5:EC:15:16:EE:6D:C1:9D:1E:5C:39:98:CB:7E:7A:64:6F:71:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9XsFRbubcGdHlw5mMt-emRvcVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/Rb0D2DoJQL9dFog7yIu_7_H0VMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/3ad7cc-3c08-4b72-870a-6c305a6dbab9/1/s9XsFRbubcGdHlw5mMt-emRvcVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.230.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:4e:5b:06:36:2d:84:a7:8a:0d:11:01:81:62:8c:03:79:c0:
d7:fd:3a:74:fa:5c:75:d1:0c:e2:b0:ca:ef:cc:e2:a1:63:05:
7e:43:5f:6b:94:97:2d:73:56:57:ae:04:3d:90:c2:09:7f:51:
0a:77:7b:73:e3:fc:b7:64:3f:1b:90:98:30:06:74:a8:03:df:
92:ed:f6:4b:52:14:67:f3:fa:1c:dd:28:7c:ed:6f:27:97:6e:
fc:9e:d7:2e:fd:86:13:40:76:17:b4:7a:1e:1e:89:33:c7:73:
18:57:d3:ea:6e:a7:fd:bf:9d:06:4d:0a:96:fa:79:cf:d3:a4:
79:d3:11:89:5a:4e:e7:46:9c:b3:25:d6:cc:ad:74:89:e2:05:
8f:9f:1c:15:41:fd:9c:1d:34:c8:48:b9:59:15:77:f0:c0:28:
e4:c9:25:a5:bd:8e:fe:44:2c:d0:3c:72:6d:c7:24:5a:10:ed:
f0:dc:06:95:f4:b3:6a:07:a3:5b:bd:f9:e4:f4:94:96:46:2b:
35:7c:df:86:a3:4f:0b:0d:7d:03:40:17:9f:ab:8b:64:5c:c4:
f2:d5:9f:a7:33:2f:3c:80:f5:e0:0f:2e:ed:86:06:36:9a:8f:
67:9e:11:f4:d5:fd:e2:1c:4f:90:f9:9b:61:46:e6:5e:f6:ae:
5d:d7:09:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:18 2024 by rpki-client on console-ams.rpki-client.org