Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/M1pJVlCh5gJu0vQf37DM76SvSlQ.roa
File: M1pJVlCh5gJu0vQf37DM76SvSlQ.roa (raw, json)
Hash identifier: J9Ru3bN48etvarzJ2IZr9R1bbDbjBFvTDtlYMu5ho8g=
Subject key identifier: 33:5A:49:56:50:A1:E6:02:6E:D2:F4:1F:DF:B0:CC:EF:A4:AF:4A:54
Certificate issuer: /CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Certificate serial: 03932957
Authority key identifier: 59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/M1pJVlCh5gJu0vQf37DM76SvSlQ.roa
Signing time: Sat 01 Jan 2022 01:51:04 +0000
ROA not before: Sat 01 Jan 2022 01:51:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21190
IP address blocks: 194.56.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59976023 (0x3932957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59f915ae3e2216be338f6334532f9380cfd2f40a
Validity
Not Before: Jan 1 01:51:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=335a495650a1e6026ed2f41fdfb0ccefa4af4a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:e9:e8:4d:d5:d5:8b:93:55:0d:bc:6f:cf:
dd:d5:85:92:dc:2b:db:48:4b:9b:8a:47:d1:e1:c7:
88:07:59:0f:b5:f9:26:ab:16:63:be:cd:28:76:9c:
71:5d:13:12:4f:05:b0:9e:fa:14:b6:fb:99:47:e2:
c2:bb:57:75:77:0f:48:2a:e2:cf:f5:f7:45:99:93:
58:1d:42:aa:32:15:c9:4a:74:08:92:0f:f8:7f:1d:
c9:96:3d:3f:a1:ac:3e:32:97:ab:0f:d7:4f:9b:88:
93:f2:78:ed:89:0a:0a:8f:de:05:26:bc:f9:89:e9:
ef:7f:2c:1b:32:da:b9:55:45:05:13:ea:df:1d:2c:
8e:e9:ef:88:04:df:16:91:27:80:8a:a4:40:65:ec:
56:14:8d:e9:8e:a6:c3:04:9e:f2:d2:1c:e8:de:b5:
c3:df:22:f4:22:e5:34:a9:34:e7:e4:d8:ef:89:b9:
76:52:e7:ac:28:5e:aa:62:e4:30:68:22:f4:92:49:
16:3a:8f:20:01:dc:1a:6f:b9:76:cb:e2:45:06:1c:
69:7d:ad:f6:3d:ba:24:80:be:a9:30:4f:f1:00:c8:
20:95:bc:1f:f9:0b:b3:9b:1d:ae:98:5d:1d:31:6b:
67:28:ee:04:77:7a:7f:7c:19:8c:c1:57:aa:42:17:
d7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:5A:49:56:50:A1:E6:02:6E:D2:F4:1F:DF:B0:CC:EF:A4:AF:4A:54
X509v3 Authority Key Identifier:
keyid:59:F9:15:AE:3E:22:16:BE:33:8F:63:34:53:2F:93:80:CF:D2:F4:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/M1pJVlCh5gJu0vQf37DM76SvSlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/aa2311-b1cd-4d18-aebb-a3f2324f6d8c/1/WfkVrj4iFr4zj2M0Uy-TgM_S9Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.100.0/22
Signature Algorithm: sha256WithRSAEncryption
16:95:65:c2:fb:61:65:d1:f2:c4:9a:b7:3a:cd:79:22:37:8f:
99:6d:af:a9:00:1f:f4:30:66:56:5d:70:94:6e:9b:33:c5:38:
7a:71:d2:14:d9:04:c1:78:63:4e:f3:75:25:32:63:cf:60:2b:
e8:fd:27:49:79:e6:52:96:f5:e2:2a:e2:60:0c:52:39:5e:5f:
ad:8d:ff:87:2f:9e:99:1f:ce:6d:b8:28:04:74:69:48:23:bf:
1a:d7:c0:0c:5c:86:fa:9c:80:70:1c:7f:d8:d8:84:5b:25:d4:
cb:c6:57:5f:ce:b5:33:3f:4e:dc:bf:18:fc:d8:31:c3:5a:45:
ce:39:22:4b:f6:fe:5f:be:db:8b:4f:07:36:e1:9d:6c:01:b6:
f7:e0:61:62:50:b8:b7:bf:58:26:44:bf:80:e3:fe:7a:d4:ff:
9e:5d:28:96:90:7e:89:09:2c:60:c9:54:7b:1b:ac:a4:47:b2:
b0:01:29:8d:5e:b3:59:98:db:a3:d9:58:8b:a8:22:45:dc:f1:
3a:4d:a9:2f:a7:b9:66:6c:88:cc:bf:44:e5:9a:e1:50:8c:d9:
46:82:ca:82:94:79:67:31:81:70:56:26:c9:20:46:4d:b6:d8:
73:4c:46:68:d9:9d:67:67:4a:19:43:ea:86:b8:95:2e:2c:a8:
13:4c:7a:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:19 2024 by rpki-client on console-ams.rpki-client.org