Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d4db03-e8ad-4027-9ce8-55e1ff7f32f9/1/4ICLUjmTSGeqBrb33vC8hTIKdbM.roa
File: 4ICLUjmTSGeqBrb33vC8hTIKdbM.roa (raw, json)
Hash identifier: woGIekB4HBocTWfg6nYppN2nSWURIFQ7nnepy54vVQU=
Subject key identifier: E0:80:8B:52:39:93:48:67:AA:06:B6:F7:DE:F0:BC:85:32:0A:75:B3
Certificate issuer: /CN=2b0e759c0ea67d8ff722aac887c7eccecded3ec7
Certificate serial: 02A5D7E8
Authority key identifier: 2B:0E:75:9C:0E:A6:7D:8F:F7:22:AA:C8:87:C7:EC:CE:CD:ED:3E:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kw51nA6mfY_3IqrIh8fszs3tPsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d4db03-e8ad-4027-9ce8-55e1ff7f32f9/1/4ICLUjmTSGeqBrb33vC8hTIKdbM.roa
Signing time: Sat 01 Jan 2022 14:58:44 +0000
ROA not before: Sat 01 Jan 2022 14:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31007
IP address blocks: 194.6.249.0/24 maxlen: 24
91.235.114.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44423144 (0x2a5d7e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0e759c0ea67d8ff722aac887c7eccecded3ec7
Validity
Not Before: Jan 1 14:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0808b5239934867aa06b6f7def0bc85320a75b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ac:06:52:37:a5:ea:14:8e:f2:6c:a7:8b:19:
77:57:0d:c6:2f:4e:2c:67:ff:73:68:cf:5f:ad:cf:
f4:0e:e8:39:fd:b3:9b:0d:5e:f3:b1:90:c2:0b:b9:
19:39:72:8c:46:3c:76:9c:59:bd:57:ed:19:99:9a:
f4:69:1b:3e:5c:c9:fc:a9:b9:b1:28:fd:2f:8a:4a:
35:83:91:4d:dd:32:39:26:60:a4:a5:19:55:07:cd:
d5:02:50:15:8d:97:9d:ac:e8:c6:4a:c2:f2:0c:16:
9a:c2:88:16:2c:10:9c:35:44:4b:36:74:70:6a:dd:
83:23:fa:99:55:5b:a5:3e:36:7b:e5:5f:50:46:11:
5f:90:6a:50:a7:45:ff:17:bb:27:dc:63:a0:76:7d:
d9:9c:48:5f:f5:da:51:46:76:50:5e:0b:1f:27:be:
21:df:2a:c3:d7:29:0c:56:f5:cb:04:b4:39:1f:71:
43:34:e1:47:10:9c:d7:dd:29:09:d6:a6:95:f4:17:
cc:09:9d:66:ad:56:46:cf:39:78:2e:e6:40:45:ba:
a0:f4:2d:94:20:9a:8b:95:2b:d9:18:90:b0:5f:ce:
20:fe:bc:1a:16:18:7a:77:4d:87:88:54:e4:69:09:
77:05:77:cb:00:a1:9c:a0:4d:8e:4f:ae:03:97:35:
fc:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:80:8B:52:39:93:48:67:AA:06:B6:F7:DE:F0:BC:85:32:0A:75:B3
X509v3 Authority Key Identifier:
keyid:2B:0E:75:9C:0E:A6:7D:8F:F7:22:AA:C8:87:C7:EC:CE:CD:ED:3E:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kw51nA6mfY_3IqrIh8fszs3tPsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d4db03-e8ad-4027-9ce8-55e1ff7f32f9/1/4ICLUjmTSGeqBrb33vC8hTIKdbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d4db03-e8ad-4027-9ce8-55e1ff7f32f9/1/Kw51nA6mfY_3IqrIh8fszs3tPsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.114.0/23
194.6.249.0/24
Signature Algorithm: sha256WithRSAEncryption
49:61:58:8a:b9:68:3d:29:86:14:66:b3:de:20:2d:38:01:7b:
3d:4e:75:f2:ef:32:20:41:d5:f5:d2:75:da:86:d4:ca:2d:e1:
70:38:1e:d7:bb:3a:bc:e2:81:0b:12:94:16:d6:13:67:28:0a:
c7:eb:40:54:da:36:67:75:31:77:33:97:2c:47:3a:03:97:02:
b3:39:9f:c8:5a:c1:fb:18:1a:3f:0f:72:69:67:7b:7c:19:68:
ab:fc:5d:0a:79:b2:e4:1f:2a:7f:80:e9:ba:62:d7:e1:3c:94:
e0:f6:3d:7c:73:75:83:30:15:0e:be:ba:a9:d2:f9:b7:57:9c:
54:87:53:d7:8d:ea:ae:82:6b:c6:ef:70:b5:03:31:88:51:90:
f2:fc:b0:f4:d9:73:8d:1d:08:3d:76:23:3b:01:39:b6:94:2c:
3c:27:8b:ec:88:f6:c9:ec:19:81:fc:e6:2b:39:7b:be:3a:7a:
10:71:e8:c2:7a:ab:9e:ff:72:4d:68:79:52:69:a1:8a:e7:b3:
ca:ec:ef:66:36:63:fe:41:a5:54:cb:37:a6:b1:94:d2:98:7d:
8b:38:66:b9:ef:97:fe:e8:7e:c9:79:89:fe:55:bb:d4:b1:35:
bb:a7:7c:b9:59:40:52:98:93:f9:b3:94:03:b3:06:9a:3e:2a:
00:3a:c8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:38 2023 by rpki-client on console-ams.rpki-client.org