Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/9p5lXBDGc4ZiJ69a8GXEuDnJDsI.roa
File: 9p5lXBDGc4ZiJ69a8GXEuDnJDsI.roa (raw, json)
Hash identifier: IEN7NFqJhcevSZHtEF/GXocaBi2+pJAKeElkvryfZ+4=
Subject key identifier: F6:9E:65:5C:10:C6:73:86:62:27:AF:5A:F0:65:C4:B8:39:C9:0E:C2
Certificate issuer: /CN=253a3b5f51808168c212c094a2baaff38e16464a
Certificate serial: 0F770DFE
Authority key identifier: 25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/9p5lXBDGc4ZiJ69a8GXEuDnJDsI.roa
Signing time: Sat 01 Jan 2022 08:04:56 +0000
ROA not before: Sat 01 Jan 2022 08:04:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2643
IP address blocks: 194.190.160.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 259460606 (0xf770dfe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253a3b5f51808168c212c094a2baaff38e16464a
Validity
Not Before: Jan 1 08:04:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f69e655c10c673866227af5af065c4b839c90ec2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fb:5d:f0:13:4d:91:3d:f8:43:3b:a0:81:35:
a2:1f:72:36:86:ee:e1:ea:51:b4:25:76:59:5a:4b:
d6:70:de:16:84:59:12:85:55:01:8a:43:e5:44:8d:
83:40:62:78:3b:76:32:d6:a7:fe:c8:8b:67:0f:65:
0d:e0:6f:8b:a6:62:bb:23:7a:6e:6a:9e:2b:f4:4b:
2c:67:5d:08:3b:1b:32:58:32:2d:26:de:3f:db:57:
23:74:b4:e5:c4:53:e9:82:31:cd:8a:b6:67:70:b0:
3c:59:27:94:93:40:7c:a0:f0:0f:eb:51:fe:da:4c:
dd:89:69:26:19:59:b5:85:e6:57:a4:78:b4:8f:d2:
06:e9:a6:fc:ae:95:8c:43:8a:2f:d1:54:5d:42:d6:
b1:98:bb:5b:61:b1:3c:63:8f:93:a7:59:09:ce:15:
b3:ce:ad:e4:b4:4b:5a:fd:9e:5d:cb:77:09:3a:3a:
49:c3:38:1b:36:ca:20:16:3c:a0:52:bf:e6:9f:3d:
54:4a:51:53:32:f4:b3:81:5b:6f:c1:41:cd:2a:5b:
7e:75:8f:c0:a7:c2:5f:e5:e7:15:61:50:8f:df:58:
06:37:9d:af:ab:55:d1:c6:88:fb:42:92:da:07:b9:
fa:22:79:d5:db:3b:b8:0f:08:f1:ff:65:c2:79:2c:
03:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:9E:65:5C:10:C6:73:86:62:27:AF:5A:F0:65:C4:B8:39:C9:0E:C2
X509v3 Authority Key Identifier:
keyid:25:3A:3B:5F:51:80:81:68:C2:12:C0:94:A2:BA:AF:F3:8E:16:46:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTo7X1GAgWjCEsCUorqv844WRko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/9p5lXBDGc4ZiJ69a8GXEuDnJDsI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/97474c-1dc2-462c-aadd-9e9a1e03738e/1/JTo7X1GAgWjCEsCUorqv844WRko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.190.160.0/21
Signature Algorithm: sha256WithRSAEncryption
a5:24:0e:e8:0e:0d:d1:d5:94:70:ea:5d:5b:99:d1:6d:fe:64:
a4:67:24:5f:29:10:06:f7:7c:e0:48:37:63:d5:e8:cf:ca:c4:
46:f5:52:09:42:bd:f5:d5:d0:b1:31:6a:ad:61:f7:36:1b:94:
55:71:85:9a:15:32:00:86:af:19:e9:d6:8f:80:6e:b7:38:af:
72:bb:7b:f0:1f:4b:df:71:0e:2e:cf:66:7f:1a:31:76:68:4f:
78:b3:e0:e9:85:e8:d0:cb:52:2f:f1:4f:bc:85:b3:9d:0b:a1:
33:db:2a:48:75:3f:0e:4c:9f:f3:2b:3d:97:dd:f4:80:71:be:
a4:c6:60:47:5b:93:ea:d7:c2:19:b6:75:e5:1c:22:6f:0f:e1:
b9:12:1b:5c:39:15:58:b9:d9:75:ed:98:73:2c:13:c6:e0:b0:
50:ef:85:b6:06:97:6f:bd:a1:ae:ee:a9:69:0a:f1:91:3f:6a:
c8:a4:bc:04:38:6a:93:4c:93:af:1c:f4:a6:99:c0:26:14:29:
ae:27:2e:8f:d2:96:d2:06:80:6a:34:6d:f0:8c:1c:a2:a8:6a:
9f:5e:82:b0:27:b4:dd:06:f6:9b:ee:a1:02:a0:64:da:f2:38:
46:3c:0d:88:99:22:d6:1b:d1:2e:df:f1:85:18:ac:0e:da:49:
2c:0b:c9:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:56 2024 by rpki-client on console-fra.rpki-client.org