Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/ad18a0-b32c-4fcb-be9c-1caf0611374d/1/Ier1ryFcwnwxTgBjyOf3jeP0tOs.roa
File: Ier1ryFcwnwxTgBjyOf3jeP0tOs.roa (raw, json)
Hash identifier: 8/2l0qfdtGOgm2uLkaZ/H05IguhUsEoVYPUW2eMAEWI=
Subject key identifier: 21:EA:F5:AF:21:5C:C2:7C:31:4E:00:63:C8:E7:F7:8D:E3:F4:B4:EB
Certificate issuer: /CN=08819c27a5be3d2db222b05637447ed6e8324873
Certificate serial: 03D77A0F
Authority key identifier: 08:81:9C:27:A5:BE:3D:2D:B2:22:B0:56:37:44:7E:D6:E8:32:48:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CIGcJ6W-PS2yIrBWN0R-1ugySHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/ad18a0-b32c-4fcb-be9c-1caf0611374d/1/Ier1ryFcwnwxTgBjyOf3jeP0tOs.roa
Signing time: Sat 01 Jan 2022 00:51:47 +0000
ROA not before: Sat 01 Jan 2022 00:51:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198028
IP address blocks: 194.12.51.0/24 maxlen: 24
194.12.52.0/24 maxlen: 24
194.12.55.0/24 maxlen: 24
194.12.53.0/24 maxlen: 24
194.12.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64453135 (0x3d77a0f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08819c27a5be3d2db222b05637447ed6e8324873
Validity
Not Before: Jan 1 00:51:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21eaf5af215cc27c314e0063c8e7f78de3f4b4eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:0a:2c:5a:ab:e5:76:6c:70:45:86:2d:b5:99:
79:85:a2:8a:44:b1:84:78:61:49:aa:62:9a:c7:e0:
33:1f:24:f8:8c:11:5f:53:ca:36:fe:1d:e9:4f:f3:
e4:eb:de:39:aa:19:e9:09:59:b0:15:95:c4:dc:b0:
5a:43:12:e7:4e:7c:cf:bc:e0:ed:9d:f3:60:d9:29:
c8:d2:4a:88:4d:f1:08:2d:be:94:66:ae:be:8b:1d:
43:1c:b5:d0:6d:da:0d:33:ad:d1:ba:6b:18:42:c1:
4c:80:27:ce:a9:18:5f:e1:66:c7:5e:bf:f0:c2:18:
cf:bf:b3:47:8f:b2:9c:62:29:2f:ef:a1:09:63:98:
d0:23:1b:b3:68:d1:31:d6:ba:84:fb:d3:bd:58:13:
00:95:eb:2c:51:da:47:eb:5b:ac:ce:82:7a:9a:ab:
11:16:38:04:ea:1f:02:3b:0c:04:e9:50:52:7d:15:
4d:53:22:36:53:c8:7e:a5:58:4d:9c:90:97:c4:ba:
3a:e5:18:d3:48:c5:b4:db:3f:20:46:ac:95:b6:01:
5c:45:07:0f:c4:71:b3:14:e6:00:de:1e:85:23:27:
7b:e1:ec:3c:a7:89:b1:90:af:82:33:89:75:ea:d1:
3d:f4:7f:6b:6f:05:92:dd:48:99:92:bb:cd:00:96:
72:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:EA:F5:AF:21:5C:C2:7C:31:4E:00:63:C8:E7:F7:8D:E3:F4:B4:EB
X509v3 Authority Key Identifier:
keyid:08:81:9C:27:A5:BE:3D:2D:B2:22:B0:56:37:44:7E:D6:E8:32:48:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CIGcJ6W-PS2yIrBWN0R-1ugySHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ad18a0-b32c-4fcb-be9c-1caf0611374d/1/Ier1ryFcwnwxTgBjyOf3jeP0tOs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/ad18a0-b32c-4fcb-be9c-1caf0611374d/1/CIGcJ6W-PS2yIrBWN0R-1ugySHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.12.51.0-194.12.55.255
Signature Algorithm: sha256WithRSAEncryption
92:f6:96:1d:01:d0:9f:cf:de:a8:59:7c:e7:de:7e:78:25:a2:
a6:4c:5f:c5:f6:6c:2a:f7:38:c2:a1:c3:66:e5:9a:4b:6f:19:
1f:88:59:6e:07:f6:36:6e:27:0b:5d:f6:4b:40:87:d3:03:69:
bf:4e:97:56:b2:8d:6d:77:b8:a6:bf:fe:90:06:55:0a:59:ce:
ca:da:a6:29:50:a3:43:fd:2b:3d:ff:f3:dd:37:aa:e0:1d:95:
30:f3:f8:be:49:87:6f:e2:bf:07:5b:35:8c:5a:70:5e:77:25:
8c:db:ff:fd:2f:94:39:85:ff:b9:a7:2e:e1:9e:32:e4:66:42:
c0:5c:73:ee:89:ca:2d:79:24:f6:2b:2d:07:a2:b4:9c:ec:b2:
82:20:80:52:33:1f:d7:37:e6:0d:43:55:10:62:0c:2a:4b:d0:
55:6e:9b:53:4f:36:15:9d:fb:7d:c5:25:27:59:5b:66:bc:b2:
62:64:f2:e9:98:25:a4:31:af:18:12:9a:fb:8c:fc:6c:32:ef:
30:7a:62:4f:24:51:25:ed:a9:db:b2:d8:9d:c5:9d:5a:d2:58:
4c:93:39:a1:42:86:84:81:8e:cf:a4:4b:7b:88:71:e8:74:01:
bd:ac:d0:41:37:d1:cd:2f:8d:99:fa:ff:fa:61:11:35:57:ba:
f0:1c:01:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:04 2023 by rpki-client on console-fra.rpki-client.org