Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/AFRDfG1FylJTZLKpPzDE6Y430vg.roa
File: AFRDfG1FylJTZLKpPzDE6Y430vg.roa (raw, json)
Hash identifier: ul2ZGmcJB++UJ9ELfI39DC2oDSHSzWLeMvs5+7LtvfA=
Subject key identifier: 00:54:43:7C:6D:45:CA:52:53:64:B2:A9:3F:30:C4:E9:8E:37:D2:F8
Certificate issuer: /CN=b8943754e92345a8bbab3db2bc36d618e5ecc0e8
Certificate serial: 091F5AD8
Authority key identifier: B8:94:37:54:E9:23:45:A8:BB:AB:3D:B2:BC:36:D6:18:E5:EC:C0:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uJQ3VOkjRai7qz2yvDbWGOXswOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/AFRDfG1FylJTZLKpPzDE6Y430vg.roa
Signing time: Sat 01 Jan 2022 00:56:21 +0000
ROA not before: Sat 01 Jan 2022 00:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 194.156.234.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153049816 (0x91f5ad8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8943754e92345a8bbab3db2bc36d618e5ecc0e8
Validity
Not Before: Jan 1 00:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0054437c6d45ca525364b2a93f30c4e98e37d2f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:84:69:3d:16:67:ba:4f:78:c3:bf:aa:a7:11:
85:99:d8:c4:4e:82:96:18:e4:39:22:fd:13:4b:9e:
d3:f6:69:99:b7:4e:1e:af:a8:ab:2b:75:21:9b:f0:
d6:1e:31:a0:43:df:fe:a7:78:f9:ff:7e:b1:98:b5:
5f:32:ac:bc:8a:84:2e:7f:cc:60:60:e0:7f:99:d4:
71:eb:38:56:49:92:8d:eb:85:b0:f6:b3:f5:4d:ec:
b6:1a:f4:44:dc:62:5c:11:53:c1:1a:79:0a:96:aa:
87:4a:4b:16:74:5a:fa:18:1a:4a:8e:0d:75:e7:33:
b4:15:d9:a0:b4:24:41:4f:42:54:a2:81:84:65:f8:
95:3a:57:1e:fe:3d:46:a3:02:0a:76:e5:cd:ff:30:
c1:f1:48:46:82:af:1d:e5:03:10:bd:81:a0:a6:c8:
c5:16:f0:93:aa:bd:61:50:46:3e:ad:6e:55:36:38:
a4:bd:73:2f:4a:05:a9:e2:55:34:d6:81:df:be:6d:
b6:58:41:6f:44:1b:d1:2c:dd:c7:cc:69:e8:b7:43:
f7:6a:5e:e3:1e:3e:ef:7f:a7:2c:fa:c9:56:f3:ca:
70:18:bf:db:68:d8:40:b0:ca:6c:8a:e0:bf:03:6d:
47:d4:df:94:f2:fd:5a:7a:2c:76:b3:9b:35:40:55:
38:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:54:43:7C:6D:45:CA:52:53:64:B2:A9:3F:30:C4:E9:8E:37:D2:F8
X509v3 Authority Key Identifier:
keyid:B8:94:37:54:E9:23:45:A8:BB:AB:3D:B2:BC:36:D6:18:E5:EC:C0:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uJQ3VOkjRai7qz2yvDbWGOXswOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/AFRDfG1FylJTZLKpPzDE6Y430vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/566ccf-04ee-4823-a7fc-3e6a14de2c47/1/uJQ3VOkjRai7qz2yvDbWGOXswOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.156.234.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:d7:72:dc:98:c2:90:d2:cd:79:db:fc:4c:34:95:59:cc:d2:
1f:e7:65:15:bd:87:69:ea:0d:69:f2:7f:88:e4:27:22:d1:dc:
ff:aa:b8:79:b1:45:89:4e:2d:ca:d5:2f:bb:64:2e:d3:3d:46:
dd:21:03:a9:9e:db:95:a4:c4:9e:7d:c3:14:3f:35:16:80:05:
17:a0:87:bc:16:56:4a:5b:7a:29:30:18:50:ea:cc:ec:19:6c:
88:07:00:01:29:6e:97:07:57:36:f2:e8:8b:b6:d7:32:ef:be:
b8:ee:39:e7:9b:e4:35:00:9e:91:90:32:46:d8:32:70:92:60:
c2:cc:4e:fa:f4:4a:8a:1a:aa:9b:05:ff:6c:fd:4c:c8:20:4f:
61:3e:06:1b:21:dd:dd:7f:24:6a:d2:51:39:57:77:32:86:e9:
d9:3d:fd:ed:ed:b9:ca:ce:29:cf:31:e1:63:fd:1a:59:a1:0c:
50:71:70:e3:1b:5d:0e:1d:cb:a2:dc:ec:d0:42:42:a1:e0:64:
ac:da:c0:1c:85:ba:fa:47:39:95:63:d0:33:19:e4:4e:5a:55:
35:40:d6:b9:9c:fd:e0:af:ce:e5:89:97:4f:e4:ea:4b:20:3c:
6f:1d:21:01:0f:e7:1b:15:3b:67:1e:57:72:af:0d:62:de:3c:
71:5b:15:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:34 2024 by rpki-client on console-ams.rpki-client.org