Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/1gtc4QYPNY_reh5Jcm1W7_6I48M.roa
File: 1gtc4QYPNY_reh5Jcm1W7_6I48M.roa (raw, json)
Hash identifier: 0tmaPm+lyt+JseoS5AsgrIjD8RMJCgU4pzrRVrTBjCE=
Subject key identifier: D6:0B:5C:E1:06:0F:35:8F:EB:7A:1E:49:72:6D:56:EF:FE:88:E3:C3
Certificate issuer: /CN=5949b31ebb6e4cbbd0cc770cc6f4d50f78f0eb7b
Certificate serial: 09187FEB
Authority key identifier: 59:49:B3:1E:BB:6E:4C:BB:D0:CC:77:0C:C6:F4:D5:0F:78:F0:EB:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WUmzHrtuTLvQzHcMxvTVD3jw63s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/1gtc4QYPNY_reh5Jcm1W7_6I48M.roa
Signing time: Mon 07 Feb 2022 15:22:29 +0000
ROA not before: Mon 07 Feb 2022 15:22:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201874
IP address blocks: 194.104.191.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 152600555 (0x9187feb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5949b31ebb6e4cbbd0cc770cc6f4d50f78f0eb7b
Validity
Not Before: Feb 7 15:22:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d60b5ce1060f358feb7a1e49726d56effe88e3c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:9b:47:51:c7:0e:64:fd:4c:81:ae:5b:08:4f:
c9:c1:56:39:f8:3e:6a:cf:bf:f3:fa:65:39:db:1a:
9d:ea:b2:84:fb:cf:15:15:12:57:78:ee:ea:8a:2f:
6e:d7:b4:eb:02:0e:f2:0b:f9:14:ed:b7:1b:24:4c:
1e:cf:f4:b3:de:7e:2f:7d:77:4a:6d:84:b4:91:f1:
9c:69:9c:44:c8:3a:32:d1:f7:86:8a:18:82:88:c6:
6e:6b:6d:db:4a:e0:9b:a4:19:4a:87:b1:49:81:fc:
2f:5d:ba:41:df:77:38:1e:19:86:b5:d4:01:05:e2:
ad:d5:7d:9c:c6:41:59:9f:63:f5:37:c0:55:0f:10:
43:80:d2:40:8b:4e:a4:57:70:3f:ae:8c:33:b1:ce:
dd:1e:57:8d:0a:82:52:fd:e5:b5:51:23:18:09:4f:
30:f3:69:72:15:9b:5a:dd:cc:83:9c:1f:9c:ef:c5:
0c:75:c1:e8:2a:d0:d1:43:29:a3:6f:5b:c4:8a:85:
21:02:ce:a6:57:c2:77:74:9d:c6:64:e8:eb:fa:47:
ff:24:93:37:2e:21:a2:16:85:71:7e:b0:b5:03:fd:
78:d2:69:19:a7:2c:fe:7d:73:70:a9:ed:7b:fa:8c:
12:b7:45:6d:18:85:18:0c:e3:1a:63:2f:45:1a:e0:
80:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:0B:5C:E1:06:0F:35:8F:EB:7A:1E:49:72:6D:56:EF:FE:88:E3:C3
X509v3 Authority Key Identifier:
keyid:59:49:B3:1E:BB:6E:4C:BB:D0:CC:77:0C:C6:F4:D5:0F:78:F0:EB:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WUmzHrtuTLvQzHcMxvTVD3jw63s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/1gtc4QYPNY_reh5Jcm1W7_6I48M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/de5add-ac68-4fb1-8419-3180ae4274f3/1/WUmzHrtuTLvQzHcMxvTVD3jw63s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.191.0/24
Signature Algorithm: sha256WithRSAEncryption
99:01:81:03:82:cf:e1:a4:7f:37:d8:44:cf:a1:21:78:08:cc:
17:87:35:55:36:0f:99:84:e9:0e:36:86:aa:ca:45:b2:48:74:
e9:63:b4:97:59:a8:e8:de:09:e6:88:11:c7:27:b0:44:c4:fe:
1f:ce:6f:6e:2d:41:bb:94:95:61:ae:56:4f:99:d5:50:87:ba:
3a:62:95:56:78:ee:bd:39:f5:0a:c5:b2:25:5a:b5:e4:f6:89:
a9:07:9b:84:c8:c9:62:52:d0:96:90:89:20:f2:f9:aa:ad:91:
46:2e:78:4b:55:06:9e:b4:6a:47:9c:68:47:43:a7:6a:43:cb:
79:a8:db:84:a0:86:76:81:18:2c:4f:c2:11:ce:98:9f:48:d0:
aa:7a:23:a4:03:6c:0d:87:7e:61:1f:bf:9d:27:cf:dc:d0:5f:
2f:32:c3:80:a7:8c:99:08:4a:f3:46:5a:b9:f8:f2:b6:69:38:
59:0d:a3:92:6f:f4:1d:52:73:f0:4d:f2:2f:0d:b3:d3:78:03:
94:b5:39:c5:2d:1b:72:09:32:e9:09:3d:e8:79:5a:fd:14:bb:
68:db:81:0c:77:58:8e:de:45:ab:33:05:71:4b:b7:12:83:2c:
b4:35:8b:71:6d:5c:4e:ac:e4:e3:d9:a7:7d:40:d3:c5:ce:4f:
47:6c:94:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:48 2024 by rpki-client on console-fra.rpki-client.org