Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/1-gbxQBF-gZ0SjemJww0A2Spqmjw.roa
File: 1-gbxQBF-gZ0SjemJww0A2Spqmjw.roa (raw, json)
Hash identifier: YwONT7ad/1yO4XPJvgEiGoAExDDLB2Crz1fWzFz2ppg=
Subject key identifier: FA:06:F1:40:11:7E:81:9D:12:8D:E9:89:C3:0D:00:D9:2A:6A:9A:3C
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 43A04E2F
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/1-gbxQBF-gZ0SjemJww0A2Spqmjw.roa
Signing time: Thu 14 Apr 2022 12:52:17 +0000
ROA not before: Thu 14 Apr 2022 12:52:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62020
IP address blocks: 194.132.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1134579247 (0x43a04e2f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Apr 14 12:52:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa06f140117e819d128de989c30d00d92a6a9a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ed:a0:3b:9b:b8:64:2e:a6:bd:a2:67:22:b9:
96:8d:a6:b6:b0:8b:ac:1a:ea:24:84:19:c6:98:76:
f4:8f:90:b9:c7:ab:0c:a9:05:66:ee:3b:c8:a1:40:
69:d1:96:ac:d5:8b:63:7f:02:66:ce:96:95:6a:67:
d3:5f:e9:14:8a:de:d8:db:80:e9:1d:ab:d3:13:e2:
97:95:a5:51:df:4b:d0:8d:a7:37:f0:27:41:09:03:
9e:4d:47:43:42:9b:50:fd:c7:00:b4:6f:3d:c2:10:
39:b9:fd:03:a3:e8:bd:36:1e:45:da:97:a9:57:14:
46:33:1d:b5:73:0a:f6:df:5f:dd:f1:3e:35:f3:d9:
c2:b4:95:51:8a:c8:5d:cc:ed:74:c4:c2:b1:60:fd:
9d:97:e4:19:be:b0:e0:70:3b:19:37:09:0f:22:b5:
d0:66:c0:75:fa:32:53:bb:8b:18:cd:f9:ea:3b:fc:
92:75:e3:ea:12:45:46:37:b9:33:be:62:b6:11:9c:
6e:ad:19:3e:cc:be:64:18:fc:41:69:e3:3f:da:78:
90:b1:65:e4:ed:e3:8a:1d:c6:57:12:46:93:79:01:
16:61:1c:28:94:7e:ca:fd:02:fc:c0:8b:03:df:bb:
2c:aa:3d:f1:a4:d0:6b:26:9f:8d:84:18:7b:47:96:
24:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:06:F1:40:11:7E:81:9D:12:8D:E9:89:C3:0D:00:D9:2A:6A:9A:3C
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/1-gbxQBF-gZ0SjemJww0A2Spqmjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.132.59.0/24
Signature Algorithm: sha256WithRSAEncryption
87:14:f9:c7:bd:63:e4:9f:76:ac:ba:07:3b:1e:13:0d:df:4c:
80:00:77:b5:19:37:db:c5:94:72:f4:c0:88:dd:bb:60:78:fe:
4c:a2:9a:0f:9e:fb:51:07:7c:65:11:a4:0e:27:87:9a:22:fc:
e8:c0:49:32:71:a0:63:bb:60:08:e1:fd:7a:99:8e:27:3b:c8:
0c:88:dd:c7:5a:f1:47:36:d5:5f:57:7b:f9:c6:fe:f6:5e:4f:
3f:eb:df:9d:97:12:00:a0:36:81:23:94:17:5b:f5:ed:41:9b:
10:aa:6a:98:0b:6c:9e:22:e3:73:a0:2a:4e:e8:c6:60:05:81:
f1:c7:d3:27:35:45:9d:d3:03:ae:6a:d8:83:74:3c:90:91:3b:
f8:0b:04:19:ed:ab:68:b0:82:f8:06:56:3c:99:6f:66:95:25:
c9:d9:77:81:dd:3f:e1:74:16:2c:f1:a3:b8:5c:78:4e:8d:a8:
4e:3b:0d:f2:1e:e0:44:f0:3d:9e:cc:9b:1c:29:ef:65:8b:fa:
e1:8b:ab:e4:36:1b:1d:a3:7e:cf:0b:a1:a7:14:81:35:32:b1:
2b:1e:25:97:aa:9f:db:b0:17:bd:2a:80:50:f3:d0:a3:96:f0:
ad:81:30:31:e0:73:bf:ee:26:95:ae:5c:94:51:f5:f9:79:d3:
cf:83:82:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org