Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/iKDpSaLD10L3APie5ylCS0WAp_4.roa
File: iKDpSaLD10L3APie5ylCS0WAp_4.roa (raw, json)
Hash identifier: q8VpwN/n+V5OH5CdzBc9IpqD+xCLPlaZFCx3kFJUvjg=
Subject key identifier: 88:A0:E9:49:A2:C3:D7:42:F7:00:F8:9E:E7:29:42:4B:45:80:A7:FE
Certificate issuer: /CN=509fe7e8b9de675913121e7ebb4226b62d03b1cb
Certificate serial: 016DA790
Authority key identifier: 50:9F:E7:E8:B9:DE:67:59:13:12:1E:7E:BB:42:26:B6:2D:03:B1:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UJ_n6LneZ1kTEh5-u0Imti0Dscs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/iKDpSaLD10L3APie5ylCS0WAp_4.roa
Signing time: Tue 26 Apr 2022 07:19:38 +0000
ROA not before: Tue 26 Apr 2022 07:19:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25413
IP address blocks: 194.105.121.0/24 maxlen: 24
194.105.120.0/24 maxlen: 24
194.105.127.0/24 maxlen: 24
194.105.126.0/24 maxlen: 24
194.156.12.0/22 maxlen: 24
2a0d:c40::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23963536 (0x16da790)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=509fe7e8b9de675913121e7ebb4226b62d03b1cb
Validity
Not Before: Apr 26 07:19:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88a0e949a2c3d742f700f89ee729424b4580a7fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8c:12:9c:dc:0c:4e:8e:60:c2:41:4f:a7:2e:
f5:f5:37:76:28:5b:71:20:83:84:bd:c3:e7:85:3d:
77:5d:c3:15:94:10:28:3e:64:58:75:12:09:5b:81:
54:84:3e:0f:bc:3a:ee:8f:7c:8b:05:59:79:4c:1d:
e7:af:ac:78:10:81:6f:ac:20:72:33:66:0e:42:aa:
24:ed:19:4b:92:da:4b:02:e0:31:4b:e9:88:12:b1:
79:7b:14:2b:b3:77:35:2c:07:a0:d7:04:fb:51:38:
5d:13:e8:3e:fb:f5:2d:f7:3d:10:32:51:27:99:9a:
a5:c7:60:6f:92:51:cd:f3:d9:c4:af:4c:fa:4f:53:
cd:7b:5c:18:8d:72:d9:86:47:f6:4c:e4:5d:c5:85:
c7:2b:12:9d:81:f0:e6:15:05:55:f3:1f:3b:68:b6:
23:74:c1:4f:24:3d:d6:61:00:5a:6e:5f:f7:22:f7:
b6:1c:30:3c:2f:99:f3:8e:f7:52:8c:64:e8:0e:38:
d6:e6:0b:f2:a3:a1:f1:5c:5f:2a:42:ea:ca:11:05:
ca:90:96:30:50:c3:ec:f9:46:b6:02:9b:11:db:70:
c0:00:dd:fd:c0:46:b7:df:5e:02:a8:b5:40:f7:04:
ae:c8:3c:d2:ee:7d:4f:09:29:dc:5d:d9:da:30:af:
81:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:A0:E9:49:A2:C3:D7:42:F7:00:F8:9E:E7:29:42:4B:45:80:A7:FE
X509v3 Authority Key Identifier:
keyid:50:9F:E7:E8:B9:DE:67:59:13:12:1E:7E:BB:42:26:B6:2D:03:B1:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UJ_n6LneZ1kTEh5-u0Imti0Dscs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/iKDpSaLD10L3APie5ylCS0WAp_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/7473ac-8437-4c21-ac13-0b477ca73ac6/1/UJ_n6LneZ1kTEh5-u0Imti0Dscs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.120.0/23
194.105.126.0/23
194.156.12.0/22
IPv6:
2a0d:c40::/29
Signature Algorithm: sha256WithRSAEncryption
59:67:f2:4b:b3:1e:25:c5:1b:86:7d:18:97:4e:e0:2d:4a:31:
94:f8:b8:c7:28:4b:15:a4:26:e0:7d:45:3d:ea:43:15:04:80:
2e:d9:90:57:0e:e7:4e:a0:ec:5a:f6:6e:ca:40:cc:cc:a8:88:
69:8a:37:c7:35:e5:2d:f4:bb:3b:ea:b1:98:cd:70:e0:9d:1c:
f4:b1:73:c4:f8:08:8d:c4:2d:03:b0:98:f4:a8:6b:a9:75:f5:
b9:3f:d0:c0:6d:2f:6f:50:33:09:77:41:e1:79:ee:43:4a:96:
d3:70:b5:a3:a6:66:e3:51:76:36:9f:5a:46:ce:79:22:b0:7d:
9c:a2:98:f7:d4:19:8d:4f:d9:6b:f6:37:6d:65:80:45:08:a3:
25:71:43:c0:bd:85:1a:33:52:70:e2:61:31:55:98:79:42:06:
07:b6:6e:34:94:b4:b7:9c:3e:f8:ab:82:d3:62:1e:c6:fb:b2:
4e:cd:f0:36:4e:69:21:7a:99:ca:f6:16:32:e6:3b:a2:40:80:
1c:6f:49:61:34:e6:1a:6c:86:1b:1b:e1:3e:92:67:e4:de:c4:
fc:f5:6c:01:bb:82:e8:b1:bb:25:f1:e7:b9:53:c5:b2:cf:7e:
83:d3:9c:ff:35:af:ab:47:28:6f:40:42:c5:96:64:3a:90:9d:
f5:ac:1f:7a
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:00 2024 by rpki-client on console-fra.rpki-client.org