Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/bTFjZ12PPPBSU9Qlo_RSUfDONHE.roa
File: bTFjZ12PPPBSU9Qlo_RSUfDONHE.roa (raw, json)
Hash identifier: Ns3XIq2GVu9jA/0qfatQ9xVgpjld+lcKShPH1nrVHBI=
Subject key identifier: 6D:31:63:67:5D:8F:3C:F0:52:53:D4:25:A3:F4:52:51:F0:CE:34:71
Certificate issuer: /CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Certificate serial: 01838D8A83A89CFFA8E5D5AACFC79894137F
Authority key identifier: 9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/bTFjZ12PPPBSU9Qlo_RSUfDONHE.roa
Signing time: Fri 30 Sep 2022 08:36:48 +0000
ROA not before: Fri 30 Sep 2022 08:36:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43015
IP address blocks: 194.105.134.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8d:8a:83:a8:9c:ff:a8:e5:d5:aa:cf:c7:98:94:13:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f26ac9eeb3a2cfa2f6ca3f413efb9cdffe9724e
Validity
Not Before: Sep 30 08:36:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d3163675d8f3cf05253d425a3f45251f0ce3471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:44:cb:44:db:e8:9e:76:71:2e:04:0c:0d:3e:
5e:b4:06:d2:7a:ff:b1:e0:07:74:87:88:61:96:5b:
80:7c:0a:f0:d3:fe:4a:fa:4e:e8:3e:1c:3e:d1:1f:
33:ca:0d:30:ab:0b:41:ba:85:6a:f7:b2:2b:d1:f4:
e2:d0:ab:47:c4:e9:49:e8:64:37:2a:f0:31:65:c9:
69:75:72:b7:5a:9c:dc:98:a1:f1:cd:dd:8c:a4:31:
40:25:91:af:f2:a1:c8:b0:29:8a:47:24:e9:62:be:
bd:70:a5:af:bd:74:9f:63:06:2b:57:06:43:be:4a:
ea:34:8f:0b:00:93:70:37:11:a8:99:f0:b8:73:d6:
e3:25:51:c5:e9:bc:9d:8f:4c:ee:6a:4f:e2:52:6f:
1a:a4:ea:e2:b6:a1:51:cb:6f:00:b1:e3:b6:09:b2:
f7:c2:c0:ff:4a:59:fd:7f:12:b1:2b:3e:73:b7:90:
bc:8c:19:8b:5e:c4:a1:42:ef:b2:71:f0:51:58:30:
18:c2:e1:b0:18:1a:ed:ca:d0:b0:1e:d0:55:4c:75:
5f:6c:6e:42:87:1c:4d:d8:cf:8d:55:7f:15:c4:a6:
92:98:a4:54:72:31:b7:04:3f:3e:67:fe:d3:33:6a:
63:74:45:47:28:4c:28:f3:63:11:78:f0:7c:8a:9d:
76:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:31:63:67:5D:8F:3C:F0:52:53:D4:25:A3:F4:52:51:F0:CE:34:71
X509v3 Authority Key Identifier:
keyid:9F:26:AC:9E:EB:3A:2C:FA:2F:6C:A3:F4:13:EF:B9:CD:FF:E9:72:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyasnus6LPovbKP0E--5zf_pck4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/bTFjZ12PPPBSU9Qlo_RSUfDONHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/dc318b-9240-4775-a4ab-7d4266cf822a/1/nyasnus6LPovbKP0E--5zf_pck4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.134.0/23
Signature Algorithm: sha256WithRSAEncryption
80:88:d0:e8:a1:d4:22:8f:c3:bb:02:4b:a3:c5:83:1e:c0:33:
80:c7:74:7e:3d:54:22:66:4d:4a:69:1d:c9:2c:90:ff:4a:22:
dc:ca:8d:83:b1:f8:9b:9c:8e:fd:c3:1e:d3:9f:1b:04:2f:56:
6d:b9:db:bd:db:7c:dd:1f:c7:ed:8f:27:3f:fb:ce:8f:31:ce:
21:19:52:ca:83:0b:8a:dd:f3:61:83:41:8e:58:59:04:78:c8:
17:ec:81:1c:94:f9:a5:a5:0c:31:8a:5b:72:80:73:87:42:b4:
8e:91:ed:a2:6e:f6:3a:c9:4f:8d:92:0d:e5:d0:ce:2f:f6:4d:
74:c0:5d:92:da:a8:3a:76:8e:6c:36:18:4b:0f:d7:90:49:71:
fd:a8:a5:ae:37:69:46:6b:f8:fd:c9:9f:46:8e:ff:95:d7:8f:
7e:b7:78:42:b0:cd:95:d3:90:74:87:57:0c:f5:c2:25:d3:58:
fa:b5:58:4a:35:cd:4f:65:4b:58:7d:49:34:f8:7d:c8:28:45:
82:c9:a1:d8:0d:96:8a:d9:89:20:f3:da:a7:31:6b:bb:9e:98:
48:46:7e:5a:08:da:60:d8:c2:94:9a:5b:32:df:75:f4:5d:7d:
61:b9:8e:2b:eb:ca:76:68:7b:69:bf:f8:33:c4:38:e4:95:3b:
12:53:1b:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:28 2024 by rpki-client on console-fra.rpki-client.org