Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/25cEPq0vH4ggCdK7vsqOq9tbM4E.roa
File: 25cEPq0vH4ggCdK7vsqOq9tbM4E.roa (raw, json)
Hash identifier: fkQ2hTuSKaEqIGfcxsaWafOi4vo1c/m8/3c07cw2MqU=
Subject key identifier: DB:97:04:3E:AD:2F:1F:88:20:09:D2:BB:BE:CA:8E:AB:DB:5B:33:81
Certificate issuer: /CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Certificate serial: 441A
Authority key identifier: 68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/25cEPq0vH4ggCdK7vsqOq9tbM4E.roa
Signing time: Tue 26 Apr 2022 15:14:56 +0000
ROA not before: Tue 26 Apr 2022 15:14:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.169.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17434 (0x441a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a7c2c84ffa4934cf0f73ef1a1a1a3378731826
Validity
Not Before: Apr 26 15:14:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=db97043ead2f1f882009d2bbbeca8eabdb5b3381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:e3:36:27:3b:cb:49:58:47:9f:c3:14:d8:73:
6e:f1:40:b0:1a:7a:dd:a9:f3:e3:2b:e0:f2:2d:0d:
51:c0:8f:f2:82:21:ac:3b:80:f3:14:a7:3d:23:1d:
cc:63:5c:16:d1:ab:5a:cc:1c:3b:0c:63:85:9a:da:
00:53:63:47:9f:f3:c6:e3:a7:68:75:65:ba:81:2c:
48:28:ec:95:be:23:cb:df:f6:b6:c7:b6:2b:01:bb:
2b:7e:b7:44:9f:70:89:da:73:4e:bb:da:2f:26:86:
05:bb:31:58:99:1c:24:17:5b:ec:e9:d8:7f:cf:af:
80:b0:67:8a:a8:1e:ed:60:bc:b1:2f:07:11:da:2e:
d4:4b:14:b9:4a:82:7d:43:18:9d:04:95:87:c8:db:
34:c1:0d:ff:6c:4c:3e:b9:dd:48:f7:17:ed:0c:4b:
7c:6e:c0:c7:f8:de:c3:86:20:3d:eb:01:41:ff:4c:
cb:ef:7d:89:b3:19:2e:91:4e:56:58:13:82:5b:06:
bd:ed:8c:fd:5f:31:a3:2f:14:71:5b:a6:35:62:8d:
90:3f:5a:36:23:d8:28:d7:17:e5:ac:2b:9d:a0:3b:
91:98:79:a1:72:09:d0:ae:60:12:3f:8f:b1:3f:9a:
3e:fc:0a:04:f4:2f:90:d8:3b:5d:e6:6a:cb:c4:67:
8d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:97:04:3E:AD:2F:1F:88:20:09:D2:BB:BE:CA:8E:AB:DB:5B:33:81
X509v3 Authority Key Identifier:
keyid:68:A7:C2:C8:4F:FA:49:34:CF:0F:73:EF:1A:1A:1A:33:78:73:18:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKfCyE_6STTPD3PvGhoaM3hzGCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/25cEPq0vH4ggCdK7vsqOq9tbM4E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/fe455d-f6ce-436c-8327-db6ddb4a44e5/1/aKfCyE_6STTPD3PvGhoaM3hzGCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.169.219.0/24
Signature Algorithm: sha256WithRSAEncryption
48:29:88:02:f2:fb:d6:90:f4:c3:70:cd:43:46:c5:98:d0:c9:
1a:0e:90:0c:86:3d:84:7b:59:14:55:04:f2:05:42:b5:87:65:
b0:c0:4b:27:e3:e1:2c:1e:09:73:fc:3e:a5:62:74:b0:42:e2:
c6:2e:70:bc:4d:11:8c:42:96:e7:31:25:8e:c4:c6:d2:dc:01:
9a:21:a5:5c:25:2f:5a:d3:88:1d:99:51:6f:9d:c2:b6:73:2a:
ea:9e:f2:32:af:6b:10:40:1b:41:3e:ed:3b:6f:ff:87:db:3d:
40:be:2b:1c:cd:92:66:98:47:05:2b:fc:e6:56:72:b9:d9:8a:
fa:f5:e3:e9:ea:f2:1d:d0:77:8a:fa:2b:c5:4c:9e:fa:98:d8:
85:79:25:7f:8e:12:48:85:d6:4c:f6:fa:40:63:16:fe:ee:2f:
60:3e:8b:eb:de:7b:a9:2b:24:8d:48:b7:71:e2:bb:e0:f4:84:
3f:0f:b6:2a:15:f9:14:57:4d:84:68:67:9c:7f:08:91:13:6a:
1c:fe:96:9c:b8:f3:0a:56:bf:e6:f5:92:dd:d5:f4:0a:05:a4:
10:86:1b:78:74:d7:7a:bc:1a:2e:9d:f8:f2:21:f7:5c:f3:c8:
27:d5:0c:82:29:34:23:ef:37:30:7c:73:a8:52:01:f2:ba:f5:
e6:97:e0:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:24 2024 by rpki-client on console-fra.rpki-client.org