Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/bN8_pXALT42CbD-XL5JiNzGojl0.roa
File: bN8_pXALT42CbD-XL5JiNzGojl0.roa (raw, json)
Hash identifier: xDPJ7TFCdMS3czm7ifW3lD7j3Fn++IZGvocnEKDP++s=
Subject key identifier: 6C:DF:3F:A5:70:0B:4F:8D:82:6C:3F:97:2F:92:62:37:31:A8:8E:5D
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 1B724B2C
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/bN8_pXALT42CbD-XL5JiNzGojl0.roa
Signing time: Sat 01 Jan 2022 10:02:45 +0000
ROA not before: Sat 01 Jan 2022 10:02:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202738
IP address blocks: 194.88.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460475180 (0x1b724b2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 1 10:02:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cdf3fa5700b4f8d826c3f972f92623731a88e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:0c:02:6b:ae:21:ed:aa:9a:ee:bb:61:40:
05:03:fb:0b:82:a6:39:74:77:cc:83:62:d6:40:fc:
91:14:60:88:ce:84:63:08:34:8f:bb:6f:d2:70:cf:
37:f2:83:5d:6f:23:00:4d:de:0f:d7:d1:56:0e:b6:
bc:2c:b3:27:2e:12:b6:6c:7a:f9:85:0a:be:aa:02:
81:32:44:52:ab:15:b1:3f:22:38:1a:37:06:32:21:
54:1e:d1:7e:20:dd:72:20:87:17:6f:50:45:88:19:
26:1d:aa:41:c0:0b:99:d0:38:e6:56:e3:34:65:f7:
24:f3:06:32:02:6b:06:f7:78:74:97:aa:7a:65:4b:
30:d8:be:2c:42:bf:d8:2e:3f:b4:d9:39:89:2d:fc:
ba:cb:d8:d5:e2:af:fd:c7:7e:ad:78:3e:6a:08:40:
96:a5:b6:bd:d2:0c:e6:9d:83:52:8a:28:ec:63:95:
9d:0c:2b:c6:99:83:b4:22:3f:6e:1b:38:1f:26:c9:
49:98:24:11:8c:51:c0:2a:45:04:6e:f1:57:37:4a:
3d:74:cd:11:8c:f2:05:67:ab:99:75:8c:82:f3:f3:
e6:84:f4:11:33:2a:0c:bc:72:1e:7f:26:41:d1:27:
e4:fe:87:e8:82:85:b6:98:de:3d:b1:66:cc:38:e5:
e4:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:DF:3F:A5:70:0B:4F:8D:82:6C:3F:97:2F:92:62:37:31:A8:8E:5D
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/bN8_pXALT42CbD-XL5JiNzGojl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.88.34.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:63:1e:d6:07:26:98:99:b6:54:bd:62:6f:d6:6c:7e:d6:42:
f9:c3:d0:32:50:97:cb:5f:e7:b0:e6:9c:eb:19:da:f6:be:1b:
cf:21:0a:74:7f:6b:8c:24:e8:19:03:8f:28:10:20:2c:67:ee:
99:0b:82:7d:c0:39:39:4c:39:17:74:16:af:cc:45:3e:0e:e7:
6e:80:fa:34:81:20:1c:42:71:19:58:b6:cd:7d:cc:d5:d8:e4:
7e:48:e4:b7:07:c1:c1:db:7e:fa:41:38:78:3f:44:60:6e:51:
e8:7c:a4:6f:14:fa:e3:e3:78:87:0a:a6:2a:a8:84:1a:22:a9:
43:55:73:e1:df:d0:8c:5e:1c:a4:92:fb:79:fc:1b:ef:84:79:
18:9b:c7:0e:c0:80:48:a2:bc:09:7e:71:63:79:97:91:38:9b:
bc:a8:e6:30:d6:f9:82:02:9a:32:ec:3c:f3:5c:73:5b:22:16:
1a:15:f7:ad:5d:87:96:76:4d:e1:6e:26:9c:f9:6b:ac:69:38:
8e:6b:29:92:f4:ba:1c:e9:de:81:ff:24:97:39:84:aa:6f:a6:
c6:6c:1b:80:57:ce:84:f5:22:c5:ba:03:67:00:6f:6a:e9:23:
2a:8a:91:c6:74:39:2a:2a:bd:01:bd:b5:83:8b:a9:05:4a:c1:
0d:b3:0e:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:01 2023 by rpki-client on console-ams.rpki-client.org