Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/xmiZ26akebR-m8I2iJOLTTU4HLE.roa
File: xmiZ26akebR-m8I2iJOLTTU4HLE.roa (raw, json)
Hash identifier: gtypi5HoC1HXfZJ34PjqZjDzFKIuPRcEHEUNnDtamEY=
Subject key identifier: C6:68:99:DB:A6:A4:79:B4:7E:9B:C2:36:88:93:8B:4D:35:38:1C:B1
Certificate issuer: /CN=e9cb1687488cf43a7334f9efa4d9cdf635724e9c
Certificate serial: 016B97E8
Authority key identifier: E9:CB:16:87:48:8C:F4:3A:73:34:F9:EF:A4:D9:CD:F6:35:72:4E:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6csWh0iM9DpzNPnvpNnN9jVyTpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/xmiZ26akebR-m8I2iJOLTTU4HLE.roa
Signing time: Mon 13 Jun 2022 02:41:03 +0000
ROA not before: Mon 13 Jun 2022 02:41:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136526
IP address blocks: 194.126.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23828456 (0x16b97e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9cb1687488cf43a7334f9efa4d9cdf635724e9c
Validity
Not Before: Jun 13 02:41:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c66899dba6a479b47e9bc23688938b4d35381cb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:1d:a1:79:85:2a:0a:4a:e3:5e:f0:87:2d:dd:
e3:9b:d3:fd:70:f9:6c:dd:a3:cc:2e:0c:c0:bb:6c:
29:a1:ad:d2:b1:b1:ae:06:15:c0:ae:ba:8b:5c:24:
c6:b3:73:f0:86:e6:25:09:74:4b:b8:ce:ea:43:ad:
42:94:88:06:8c:13:d7:a0:cf:c6:ff:b3:cf:14:3f:
0a:86:50:f0:66:bb:6f:2e:9e:2f:5b:c8:11:31:09:
05:13:e3:38:46:1e:ed:a6:6b:7a:10:bc:e6:69:64:
57:93:2b:02:89:f4:30:1a:b5:24:17:4f:28:da:06:
ed:8f:5d:06:8b:c5:4c:63:3b:d1:ea:ac:93:7e:7c:
e1:16:df:08:ee:0d:21:3d:93:ad:6a:c9:20:a9:f5:
f1:0b:20:eb:63:e8:f5:14:6e:11:51:f1:d5:90:26:
a4:98:b6:f5:28:ca:a5:da:8b:b5:b9:e2:d4:ae:7b:
b4:ed:48:a8:8e:8f:67:81:aa:69:a0:5d:77:7d:da:
62:de:7e:4d:d7:b3:b5:0f:95:f3:0b:f5:cf:b4:80:
99:2e:7d:a1:85:85:c6:3a:0e:bc:5a:2b:b0:91:f5:
43:6b:b1:24:22:21:9a:03:13:31:42:d0:1b:25:be:
98:f8:cd:03:2b:69:9f:a5:d9:ce:91:a7:66:af:7d:
72:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:68:99:DB:A6:A4:79:B4:7E:9B:C2:36:88:93:8B:4D:35:38:1C:B1
X509v3 Authority Key Identifier:
keyid:E9:CB:16:87:48:8C:F4:3A:73:34:F9:EF:A4:D9:CD:F6:35:72:4E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6csWh0iM9DpzNPnvpNnN9jVyTpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/xmiZ26akebR-m8I2iJOLTTU4HLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/6csWh0iM9DpzNPnvpNnN9jVyTpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.219.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b3:2f:e4:43:cf:c2:ed:3a:f5:af:15:a3:a5:d0:e4:20:e8:
21:61:38:0e:c3:45:3f:c7:ae:56:d8:40:bb:8e:c3:73:0d:4b:
93:ec:2e:f9:9b:be:d5:34:21:df:5d:c5:17:2c:e2:29:7e:59:
71:9b:99:6a:1f:fd:3d:f3:b4:2d:a4:52:7d:29:8c:cd:cc:86:
23:44:12:e6:37:d7:c3:eb:87:98:0c:f9:90:b0:6e:6c:86:91:
c5:96:91:f1:f4:b2:95:35:47:aa:c2:ab:0f:03:51:aa:61:9a:
37:06:20:ed:58:26:1f:de:82:d0:03:ec:a6:16:bf:2b:aa:d0:
fc:7d:f2:85:28:35:55:c4:80:40:35:43:3e:48:d0:8c:ea:a6:
b7:a1:fe:dd:e3:a2:f4:d4:d0:81:cc:8e:43:23:f7:c7:e3:dd:
71:f7:09:ac:b6:f3:12:a1:1c:39:80:86:cf:13:0c:a9:d3:91:
8c:f1:43:7e:ee:09:36:37:07:7d:9c:2f:92:58:b8:97:0c:25:
3e:4d:d7:06:28:26:e4:99:d6:76:79:fd:fa:85:ab:47:b7:39:
06:51:34:90:56:4c:ba:96:bb:b6:05:7f:52:d3:8a:10:0f:5a:
b0:e9:1b:7b:0e:b2:d3:2d:e3:37:f7:52:58:37:13:ef:48:25:
84:8a:d8:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-ams.rpki-client.org