Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/xBPwFTWRb85kr6rtwoD5xVaJIys.roa
File: xBPwFTWRb85kr6rtwoD5xVaJIys.roa (raw, json)
Hash identifier: VKt8ZmEEpY2Tc5LDMCNXAK9bz3z6UukjRHJR4ttiIn4=
Subject key identifier: C4:13:F0:15:35:91:6F:CE:64:AF:AA:ED:C2:80:F9:C5:56:89:23:2B
Certificate issuer: /CN=7bbf58975b81e8f9f9c15e4d8b899190cec00687
Certificate serial: 01CA8238
Authority key identifier: 7B:BF:58:97:5B:81:E8:F9:F9:C1:5E:4D:8B:89:91:90:CE:C0:06:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/xBPwFTWRb85kr6rtwoD5xVaJIys.roa
Signing time: Sat 01 Jan 2022 08:53:49 +0000
ROA not before: Sat 01 Jan 2022 08:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199181
IP address blocks: 194.31.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30048824 (0x1ca8238)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bbf58975b81e8f9f9c15e4d8b899190cec00687
Validity
Not Before: Jan 1 08:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c413f01535916fce64afaaedc280f9c55689232b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:7c:c2:91:a4:32:94:8d:06:a9:f5:2b:38:39:
32:c6:e5:a3:bf:fd:ba:c4:ed:5c:bb:a3:a0:2f:32:
1a:4a:37:c3:c3:96:d9:6d:43:ed:45:2d:ca:37:c5:
39:68:82:46:0f:6c:75:94:dc:bf:93:e4:36:99:f9:
9c:09:ba:e0:cd:91:1c:3d:12:b5:34:ae:2d:3d:63:
b6:0b:01:35:b3:31:81:b1:30:ac:c0:fa:42:31:f9:
46:ec:0f:a8:80:04:c8:9c:54:e2:69:55:9a:30:aa:
4c:bc:f9:da:9a:1e:3f:7a:50:17:e3:e3:17:aa:b3:
47:88:09:c3:69:73:fd:82:35:28:3b:3a:c0:13:13:
36:fe:ea:44:06:68:63:40:32:34:27:58:bd:b5:b4:
a3:ac:9c:74:eb:00:e8:3f:da:88:d2:df:3e:32:1d:
12:16:64:d6:29:57:e5:83:c1:46:79:d8:bf:9d:02:
af:59:f4:90:52:78:b1:15:29:4e:b3:4e:5a:b9:77:
d0:29:5d:ed:1f:8f:f6:c5:90:b9:cb:73:58:1e:f9:
47:8e:e7:07:43:bb:5b:f8:04:61:e5:04:51:83:89:
51:c6:8d:fc:9b:ca:6f:80:13:2e:54:c9:0b:c3:01:
6c:30:3e:dd:4a:2d:a7:cd:0e:ae:6f:95:13:b1:59:
22:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:13:F0:15:35:91:6F:CE:64:AF:AA:ED:C2:80:F9:C5:56:89:23:2B
X509v3 Authority Key Identifier:
keyid:7B:BF:58:97:5B:81:E8:F9:F9:C1:5E:4D:8B:89:91:90:CE:C0:06:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/xBPwFTWRb85kr6rtwoD5xVaJIys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/0ea9ca-ac97-43f0-8577-1c70d1e7b782/1/e79Yl1uB6Pn5wV5Ni4mRkM7ABoc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.253.0/24
Signature Algorithm: sha256WithRSAEncryption
01:60:4f:9a:3d:4f:24:5e:c2:ce:66:ab:56:73:18:d4:e8:8d:
20:eb:72:df:e7:a3:7c:30:12:1c:c9:2e:01:55:cf:ec:66:35:
26:94:4b:29:7b:0e:39:b9:c7:d6:b1:51:9f:d8:b2:ac:b0:66:
b2:83:17:b9:2e:12:2e:ec:30:bc:9a:9a:a6:ed:29:90:96:ff:
78:79:62:10:9b:3b:14:37:91:4e:e7:24:3e:d4:40:6f:8a:c5:
66:c7:a1:ba:21:37:f2:59:bc:5f:61:f6:b4:08:54:dd:81:07:
e3:d6:dc:2b:95:f5:7c:58:98:f5:08:42:3d:26:d9:37:84:ea:
fc:fe:d0:b7:82:89:3b:14:0b:69:5b:61:b6:ab:f0:f5:c8:77:
f2:19:61:9f:93:d5:8a:f4:41:fb:b6:84:68:22:f8:72:4e:85:
d0:a8:7f:6b:62:ad:c0:12:bc:4d:bd:ca:76:3b:f3:34:f9:25:
b4:32:85:97:d2:53:93:e7:52:e4:99:47:de:74:97:b4:fb:ad:
49:6e:cc:55:6d:c7:0d:65:e2:df:ae:0d:52:69:8a:4a:c3:36:
b9:32:48:7c:99:cb:cc:1d:3c:dd:b9:f0:c7:6f:3e:be:da:38:
f9:3d:9a:67:cc:14:52:53:15:fc:5e:20:ca:5a:ea:91:f8:c5:
28:cb:12:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:12 2024 by rpki-client on console-ams.rpki-client.org