Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/jX6pFg4KIjsQ0MBuvfoLgLvg8XE.roa
File: jX6pFg4KIjsQ0MBuvfoLgLvg8XE.roa (raw, json)
Hash identifier: gPt7Ijy3F/QMJIOlDME2SRotCmNnGrJ6jwUB5NTHkRQ=
Subject key identifier: 8D:7E:A9:16:0E:0A:22:3B:10:D0:C0:6E:BD:FA:0B:80:BB:E0:F1:71
Certificate issuer: /CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Certificate serial: 02C2F215
Authority key identifier: 86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/jX6pFg4KIjsQ0MBuvfoLgLvg8XE.roa
Signing time: Sat 01 Jan 2022 13:58:46 +0000
ROA not before: Sat 01 Jan 2022 13:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41978
IP address blocks: 194.35.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46330389 (0x2c2f215)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864f301e590b83eaa38fc121b6609ff6fe52b868
Validity
Not Before: Jan 1 13:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d7ea9160e0a223b10d0c06ebdfa0b80bbe0f171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9a:92:92:52:31:fa:c4:96:21:56:0b:e0:5e:
df:56:f0:11:ef:dd:0f:fd:ab:c8:1f:df:a3:05:9a:
48:6b:3b:86:66:39:dd:70:e9:9d:db:57:92:3f:4c:
9c:3e:3d:df:fe:cf:ae:ea:54:27:58:68:ad:a7:28:
91:86:44:19:95:8f:70:5a:7d:31:f2:f2:b8:51:57:
36:c3:2f:ff:83:d7:ad:d2:b0:e7:04:e0:69:71:41:
9d:89:41:d1:48:95:30:ba:21:9c:24:a6:a4:eb:ba:
f3:40:eb:22:65:87:c2:8c:1f:eb:47:f3:37:da:54:
d3:3a:b1:97:aa:31:33:a4:5c:1a:00:36:7d:6c:35:
1a:7f:7c:9d:70:05:14:74:90:c7:b1:2b:6d:a9:5d:
3a:e3:6c:84:dc:43:1a:ac:ac:a4:3d:88:9e:7d:6e:
01:ec:50:f8:94:69:14:a9:4a:35:e6:58:97:86:c6:
b1:6e:27:c0:fc:16:91:7c:4e:2f:90:c5:40:3f:42:
ff:55:0b:e4:55:26:14:26:71:4f:4e:25:5f:be:4c:
c0:52:77:e1:17:32:49:b4:a0:b5:ce:ba:8b:e6:df:
e8:68:17:97:13:d0:a6:9c:69:57:fc:1c:0f:5e:2d:
12:dc:2b:91:b2:e0:bb:c8:25:84:ab:a2:06:07:e8:
87:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:7E:A9:16:0E:0A:22:3B:10:D0:C0:6E:BD:FA:0B:80:BB:E0:F1:71
X509v3 Authority Key Identifier:
keyid:86:4F:30:1E:59:0B:83:EA:A3:8F:C1:21:B6:60:9F:F6:FE:52:B8:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hk8wHlkLg-qjj8EhtmCf9v5SuGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/jX6pFg4KIjsQ0MBuvfoLgLvg8XE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/624f64-0a4a-4d25-afce-0f39c4b3431d/1/hk8wHlkLg-qjj8EhtmCf9v5SuGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.35.74.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:1e:a4:ca:f7:6a:75:ec:5e:a1:b0:1c:be:c5:71:10:54:5b:
14:6e:32:75:5f:ef:d4:89:66:a8:6d:79:47:64:ee:c7:9d:24:
13:b1:30:f8:fa:ba:76:e3:fc:22:b1:fd:6d:a6:99:0f:77:d5:
99:8a:31:8c:43:bd:96:f6:7d:83:98:37:f1:f7:07:2f:62:07:
fe:bf:d6:d4:ec:8e:00:ca:a9:ee:a3:73:51:12:37:1a:3f:97:
95:e9:c1:30:3d:a7:b2:87:c9:8f:ea:b9:16:3e:04:7e:58:e5:
07:e8:89:ea:90:22:9a:93:e3:de:bc:37:e3:29:55:50:5b:fd:
db:ea:e7:b0:1f:2d:5f:f2:f5:8f:59:85:4a:b1:eb:04:2c:50:
d2:f5:6f:73:03:77:22:d5:2c:08:7d:25:b4:39:bd:6a:a5:a1:
26:02:65:ba:70:f5:0c:5e:0f:12:a3:4f:84:77:58:c6:16:a2:
da:fa:32:c8:fc:b2:c9:da:b6:38:06:d8:83:87:e7:13:88:99:
3f:53:43:83:0a:79:be:1e:83:75:9c:33:ff:a3:e8:2b:aa:67:
0d:c3:78:c5:f7:50:12:cd:56:24:10:c7:bb:4b:48:e3:95:bf:
5a:1a:ff:8c:e2:f4:21:be:81:62:46:13:c4:c5:18:a2:86:72:
21:5b:09:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:27 2024 by rpki-client on console-fra.rpki-client.org