Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/xM3Qm5Rqh4BwJ6aOqT_750BKudE.roa
File: xM3Qm5Rqh4BwJ6aOqT_750BKudE.roa (raw, json)
Hash identifier: IVkyhjwTw4g39FmHdSUAWUf1HZRYc0iYVSN5MIpPl5g=
Subject key identifier: C4:CD:D0:9B:94:6A:87:80:70:27:A6:8E:A9:3F:FB:E7:40:4A:B9:D1
Certificate issuer: /CN=416532420a21e42b8ad30da24ebf4347de95ef35
Certificate serial: 022D6C4A
Authority key identifier: 41:65:32:42:0A:21:E4:2B:8A:D3:0D:A2:4E:BF:43:47:DE:95:EF:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QWUyQgoh5CuK0w2iTr9DR96V7zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/xM3Qm5Rqh4BwJ6aOqT_750BKudE.roa
Signing time: Sat 01 Jan 2022 14:56:51 +0000
ROA not before: Sat 01 Jan 2022 14:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207645
IP address blocks: 194.120.133.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36531274 (0x22d6c4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=416532420a21e42b8ad30da24ebf4347de95ef35
Validity
Not Before: Jan 1 14:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4cdd09b946a87807027a68ea93ffbe7404ab9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:75:5d:48:68:1e:91:ea:f9:0a:7e:08:d4:70:
bd:93:a1:2b:98:65:38:51:0c:11:f0:7e:3b:ee:07:
51:ca:d1:ec:df:06:3b:a1:4a:03:37:ab:9c:0d:2b:
d0:21:dd:6e:a3:31:39:2a:2b:5e:1f:da:2c:ee:69:
1e:de:e2:b9:6c:fa:2b:b6:57:2b:c3:bd:6e:5d:e9:
77:aa:3e:a8:66:e7:a9:85:cf:3c:0a:72:3d:0f:7d:
c0:ed:21:a2:4a:67:bb:16:20:76:62:08:84:eb:57:
d7:35:37:3b:37:06:15:a4:fc:aa:cc:02:07:b5:5e:
de:1b:a1:aa:a8:03:b7:f9:43:e8:00:c2:1c:6e:27:
1c:aa:ec:07:86:ac:3a:1f:01:b8:b2:91:fe:bd:a3:
35:18:a5:80:bc:95:49:5a:fe:d6:0b:4c:da:f4:ca:
ec:cd:2f:97:b1:74:35:e9:5d:1d:62:fe:00:54:d6:
7f:a1:f1:38:5d:ef:fc:77:30:90:d1:c6:ee:0f:97:
fb:8b:d7:bd:b6:56:7b:7c:f8:5f:53:c5:9b:3d:34:
16:7d:55:cf:58:84:57:8f:79:32:36:2e:cb:72:9d:
de:d1:95:cf:b9:8a:61:c2:6e:97:a0:63:4e:69:f3:
12:c8:71:ab:8a:34:53:c5:bf:b1:c6:8f:da:61:eb:
1d:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:CD:D0:9B:94:6A:87:80:70:27:A6:8E:A9:3F:FB:E7:40:4A:B9:D1
X509v3 Authority Key Identifier:
keyid:41:65:32:42:0A:21:E4:2B:8A:D3:0D:A2:4E:BF:43:47:DE:95:EF:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QWUyQgoh5CuK0w2iTr9DR96V7zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/xM3Qm5Rqh4BwJ6aOqT_750BKudE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4f4b20-5136-420b-b516-b6d64a003d9e/1/QWUyQgoh5CuK0w2iTr9DR96V7zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.120.133.0/24
Signature Algorithm: sha256WithRSAEncryption
61:13:70:91:7d:c9:7c:88:39:a8:f0:ce:63:97:1d:b0:73:c4:
7e:54:1e:ff:0e:57:7f:74:c7:84:7f:19:06:0d:a1:04:42:28:
d1:b0:11:be:69:47:7d:a0:f8:6b:23:f8:bc:7c:53:7e:60:77:
a2:b2:fd:55:af:61:20:3f:e6:3d:1e:d0:ff:2f:6a:84:b9:67:
82:d5:e1:75:ab:7f:ed:d7:d2:fb:d3:4d:ba:f5:f7:02:ad:d0:
68:3a:6b:dd:37:ea:e5:f2:c1:eb:31:56:3d:ab:10:0e:32:83:
2a:9b:36:fa:b3:14:1a:fc:5e:5c:28:18:fa:24:08:d3:4c:4b:
3a:f5:1c:51:00:4a:18:a0:c2:99:fc:c9:a3:3c:9f:90:dd:9d:
01:23:6f:8a:f7:6a:ad:b1:be:25:0a:a2:21:9d:38:fa:22:09:
9a:42:77:8a:71:3d:bb:aa:28:cb:56:ff:d2:af:81:3c:9e:e2:
ba:60:05:3c:ac:74:c5:bb:2b:2e:2a:7e:72:73:e7:e9:62:90:
0c:f0:5e:1a:dd:0f:25:8f:1b:4b:93:ae:47:eb:85:be:88:54:
d0:64:43:28:1a:04:35:7f:ac:86:43:65:7b:d7:20:dc:c9:af:
24:a8:5a:d9:e4:89:54:a9:81:40:a7:f8:78:bc:76:99:36:35:
5e:56:b6:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:54 2023 by rpki-client on console-fra.rpki-client.org