Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/AKZNmNAfg8SHpedX28DlwVuhCfo.roa
File: AKZNmNAfg8SHpedX28DlwVuhCfo.roa (raw, json)
Hash identifier: yV3SYcj6/WCaKkVODXB+BCstBC2U18tketEs0MBBQ9M=
Subject key identifier: 00:A6:4D:98:D0:1F:83:C4:87:A5:E7:57:DB:C0:E5:C1:5B:A1:09:FA
Certificate issuer: /CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Certificate serial: 0E8CCBDD
Authority key identifier: 93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/AKZNmNAfg8SHpedX28DlwVuhCfo.roa
Signing time: Sat 01 Jan 2022 07:04:14 +0000
ROA not before: Sat 01 Jan 2022 07:04:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208678
IP address blocks: 194.110.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 244108253 (0xe8ccbdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93af348ec5a4e65e0cb137821ae6a139ed7fac00
Validity
Not Before: Jan 1 07:04:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00a64d98d01f83c487a5e757dbc0e5c15ba109fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8a:56:7e:5e:66:c3:30:f7:2b:fa:98:d6:d9:
12:4e:05:17:48:5f:3a:4f:af:50:4c:23:92:ad:b0:
81:20:8d:ff:1a:e4:0c:d7:4e:dc:f2:e0:54:4f:0e:
95:7c:25:09:aa:16:da:e9:3b:64:75:87:c2:36:ce:
61:a4:11:44:83:6a:2b:63:dc:da:1c:e9:a5:54:19:
50:22:73:aa:b0:06:09:3a:f8:dd:af:05:82:14:a7:
6f:73:67:3c:5d:fa:cb:57:b7:bf:62:6c:28:b2:76:
a1:6d:d2:c2:fe:17:2b:3b:3f:3d:d7:4d:09:68:48:
d0:55:f6:81:6f:64:e0:42:13:0e:6c:3d:87:92:7d:
fa:55:6b:5a:ad:4e:59:e4:a2:81:51:cc:66:d4:23:
a9:c8:26:6b:1e:bc:84:81:e3:4a:e7:fd:5d:a1:dd:
88:03:0c:6b:74:e4:35:07:84:43:4c:d2:13:f6:71:
92:b5:cd:76:92:b0:de:7d:10:de:3b:14:b6:bf:c7:
bb:c7:48:79:1e:c8:22:65:8b:ee:77:74:4e:e6:c8:
02:b3:6e:d9:83:ce:30:14:ac:b9:c6:a5:9d:1e:57:
42:94:d3:5d:f3:88:d5:b8:43:45:c5:33:14:b1:c2:
fe:8e:61:e6:07:29:52:af:c8:3a:f3:7e:6a:ac:af:
5d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A6:4D:98:D0:1F:83:C4:87:A5:E7:57:DB:C0:E5:C1:5B:A1:09:FA
X509v3 Authority Key Identifier:
keyid:93:AF:34:8E:C5:A4:E6:5E:0C:B1:37:82:1A:E6:A1:39:ED:7F:AC:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k680jsWk5l4MsTeCGuahOe1_rAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/AKZNmNAfg8SHpedX28DlwVuhCfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7820-5c1c-4884-9ab8-c5ab97dba898/1/k680jsWk5l4MsTeCGuahOe1_rAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.154.0/24
Signature Algorithm: sha256WithRSAEncryption
24:80:19:8b:f0:98:e5:5f:73:41:c9:01:a0:c6:e8:eb:9a:3f:
ff:08:84:d4:49:eb:02:e6:56:53:17:0f:af:b2:f2:c6:4e:fc:
9e:25:1b:92:87:e9:ba:83:81:56:c0:e5:5b:ec:e8:e3:aa:77:
73:14:f8:e5:02:3e:bc:48:52:a3:28:ef:b3:6f:06:da:c4:5c:
69:18:87:98:4e:05:dd:56:c3:31:bd:8e:6f:32:d5:06:9c:60:
b0:49:ca:06:e8:4b:ac:65:8e:3e:e1:f3:64:06:87:52:98:f0:
78:05:7a:03:a3:eb:d4:17:bf:73:c7:64:c8:47:1f:6f:61:b7:
83:b7:fd:8e:9f:99:ee:0f:8e:25:7a:79:af:b2:38:17:38:fd:
02:52:05:9b:b2:cf:4f:87:e9:d6:42:8b:a4:6e:3c:ed:d0:25:
c8:47:8d:62:60:1c:a6:73:34:1f:a7:3a:a8:26:09:a7:65:33:
26:c5:44:3b:46:5a:3c:87:f4:24:77:b4:35:d3:f9:0e:47:37:
74:41:70:93:8d:9c:98:38:b4:e7:34:05:06:61:10:0a:c2:08:
72:9c:9c:4b:90:39:4e:0f:3c:b0:f3:5b:2e:65:52:bc:37:67:
b4:04:68:ef:f2:49:c4:5c:c1:82:9f:e8:c4:d2:29:d9:58:06:
7c:5f:75:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:58 2024 by rpki-client on console-ams.rpki-client.org