Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/I0dK7z3NF2OiwLNuu-LhBF-W4pI.roa
File: I0dK7z3NF2OiwLNuu-LhBF-W4pI.roa (raw, json)
Hash identifier: x6RR3lzcm97HX+Z/QZkNGUSG9pxJ2DBTI3z2EDWoSD0=
Subject key identifier: 23:47:4A:EF:3D:CD:17:63:A2:C0:B3:6E:BB:E2:E1:04:5F:96:E2:92
Certificate issuer: /CN=3108ad527c720eb79707b3fb7b172c88b733b133
Certificate serial: 377D30
Authority key identifier: 31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/I0dK7z3NF2OiwLNuu-LhBF-W4pI.roa
Signing time: Sat 01 Jan 2022 02:53:35 +0000
ROA not before: Sat 01 Jan 2022 02:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138915
IP address blocks: 194.110.138.0/24 maxlen: 24
194.110.134.0/24 maxlen: 24
194.110.135.0/24 maxlen: 24
194.110.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3636528 (0x377d30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3108ad527c720eb79707b3fb7b172c88b733b133
Validity
Not Before: Jan 1 02:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23474aef3dcd1763a2c0b36ebbe2e1045f96e292
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:fc:47:b9:e4:ef:1c:94:b6:bb:23:05:85:ea:
68:9d:5d:47:f7:3a:08:5b:3e:f7:bd:84:e9:d6:69:
08:c3:a9:d6:00:0f:b6:bc:2b:98:ef:f3:04:a4:85:
2c:29:26:d8:22:e1:e6:1d:05:78:3e:f7:78:9e:a1:
60:0d:57:86:9f:96:9b:65:d6:53:42:2d:cf:80:f6:
99:60:f4:25:a3:1a:4d:a5:6c:ad:74:7d:42:38:1c:
82:bb:61:23:5d:b1:2a:1c:be:5b:d1:87:bf:52:30:
c7:cf:09:ce:6a:16:c6:b0:e7:e5:10:1e:0b:02:c7:
2f:d0:b3:11:34:28:cc:15:28:0e:b0:54:d9:98:fa:
83:74:b3:9e:64:e3:bf:0d:d7:e9:16:53:0e:a6:6a:
59:a7:f6:61:c5:1e:1e:ad:75:d8:f7:c2:aa:d7:68:
53:c5:b1:1d:44:3c:be:1a:1b:6e:42:97:b6:56:f2:
c2:88:fa:80:df:b4:9b:eb:d9:df:3c:6c:77:06:49:
65:67:0f:d9:d5:b9:fb:af:7e:5b:a0:1e:0b:5a:0c:
c0:78:0b:f3:9c:96:ca:71:9b:71:da:7b:47:82:5f:
4a:70:c0:fe:90:57:5a:55:6b:36:29:e1:31:c1:98:
d7:03:fc:41:08:a2:fa:cb:c5:45:ec:26:01:ed:81:
88:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:47:4A:EF:3D:CD:17:63:A2:C0:B3:6E:BB:E2:E1:04:5F:96:E2:92
X509v3 Authority Key Identifier:
keyid:31:08:AD:52:7C:72:0E:B7:97:07:B3:FB:7B:17:2C:88:B7:33:B1:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MQitUnxyDreXB7P7excsiLczsTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/I0dK7z3NF2OiwLNuu-LhBF-W4pI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/332c23-d793-4553-84ea-afa99b3fffe3/1/MQitUnxyDreXB7P7excsiLczsTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.134.0/23
194.110.138.0/23
Signature Algorithm: sha256WithRSAEncryption
53:fd:5f:c1:75:9f:72:b0:8e:66:67:f3:06:f7:0a:45:5e:ae:
c9:e0:93:86:a4:aa:7e:d6:49:dc:83:7e:8f:4b:56:d1:87:e1:
d6:30:0b:71:c1:3e:69:ff:d7:29:01:45:25:ea:9f:12:13:9c:
f0:a8:e5:99:b6:d1:be:3c:9e:f4:ff:56:aa:26:35:3f:5f:86:
67:41:dc:74:05:27:90:66:3a:2a:fa:7d:b2:10:f4:f8:67:11:
6a:cb:0d:e0:91:d4:cd:fb:ab:e0:c7:50:bd:79:92:2c:a7:c9:
d2:d3:ee:2e:ae:ec:c2:aa:2c:b8:9f:9a:8e:ee:21:e0:e2:51:
7c:e3:f7:3f:93:08:0f:80:11:6a:bb:13:94:b8:95:69:22:64:
dd:35:1b:6b:f2:c9:33:86:f0:d8:dd:be:ab:22:04:9a:52:6b:
69:3b:ea:64:59:e1:b8:5f:e0:56:35:d4:3e:b6:e7:ab:ab:32:
68:9b:c2:a4:4f:ae:ae:74:0f:c9:fa:63:de:af:2a:26:50:b2:
7e:03:15:74:0f:72:74:46:8d:ac:9a:47:62:b6:86:06:31:15:
63:03:4b:8a:82:66:64:d3:e5:30:79:d9:2b:3c:11:fb:37:4e:
3e:7e:9e:be:fa:80:c5:7c:c6:56:5a:d7:e7:c1:be:35:24:7c:
17:91:6d:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:00 2024 by rpki-client on console-fra.rpki-client.org