Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6DdD-uGzUKIwrzrvGUT7w8Rq9dE.roa
File: 6DdD-uGzUKIwrzrvGUT7w8Rq9dE.roa (raw, json)
Hash identifier: jqUANB1Jr6dIG4TXTlnjEWpt1f++NBPctzxNeR6qJ4Q=
Subject key identifier: E8:37:43:FA:E1:B3:50:A2:30:AF:3A:EF:19:44:FB:C3:C4:6A:F5:D1
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4268AA7D
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6DdD-uGzUKIwrzrvGUT7w8Rq9dE.roa
Signing time: Sat 01 Jan 2022 14:03:10 +0000
ROA not before: Sat 01 Jan 2022 14:03:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41884
IP address blocks: 192.121.218.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114155645 (0x4268aa7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e83743fae1b350a230af3aef1944fbc3c46af5d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:f4:d8:37:e8:01:32:ff:c4:86:01:c1:77:79:
fe:c0:89:e5:6e:d7:80:87:25:6b:a7:04:aa:f2:00:
65:1e:ec:a8:9c:63:bc:14:93:2e:7a:3c:87:5f:51:
6b:ab:35:1f:b0:51:e9:45:dc:ce:85:4b:c2:bd:0b:
80:94:6a:4c:8b:d5:83:43:38:2f:0b:fd:cc:6f:82:
bc:ab:46:31:73:fd:f7:28:af:bb:3b:f0:f3:ca:fb:
42:ef:0e:d9:93:dc:0b:83:b5:4e:53:13:36:56:52:
72:55:07:54:88:19:22:ba:1f:0d:5f:bd:13:67:d3:
56:5d:56:69:a5:b2:51:03:c2:b9:b5:62:7d:49:80:
28:bf:2e:81:dc:76:fd:8a:a9:33:55:3f:7e:ba:d5:
94:f1:99:71:91:3d:a6:c2:8e:16:a0:db:2e:1b:4e:
2a:63:26:0f:02:f2:de:b3:f9:9c:6e:13:07:22:2b:
89:be:c9:b8:c0:6b:37:ef:57:06:e9:fd:9b:13:23:
75:46:d2:11:9b:bb:5c:22:f6:60:94:29:3d:f9:a4:
c8:ce:83:9e:6d:54:2e:80:5e:71:86:9d:80:70:d1:
47:85:da:62:4c:6d:24:79:40:35:24:de:71:a9:35:
67:a8:89:20:24:c0:4a:43:07:af:d3:fd:2b:bb:96:
6e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:37:43:FA:E1:B3:50:A2:30:AF:3A:EF:19:44:FB:C3:C4:6A:F5:D1
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6DdD-uGzUKIwrzrvGUT7w8Rq9dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.121.218.0/24
Signature Algorithm: sha256WithRSAEncryption
55:60:9d:fe:15:8f:2a:38:1c:5c:69:df:9c:3d:da:7d:00:19:
b0:90:6a:a9:e7:33:0d:8c:97:79:86:26:07:59:7e:8a:08:40:
96:7f:d0:41:67:98:23:d3:bf:f6:c4:84:85:26:1e:91:43:49:
a8:45:cf:45:11:15:a7:b4:2f:16:1b:77:1f:65:fd:92:a8:9e:
54:11:1c:c5:f4:d2:cb:2f:38:7a:29:28:da:51:0e:14:3f:e9:
cc:fa:53:c8:77:bd:61:0f:92:b5:ba:a1:e0:6d:d1:f6:81:79:
6f:0e:20:26:af:fc:00:f6:95:44:2e:c2:43:47:aa:1a:ed:e6:
24:aa:8d:4b:5e:7c:09:c7:ec:bc:0b:b1:61:eb:72:81:5f:4a:
2d:6c:3a:5c:b8:76:21:09:79:78:73:11:7f:17:aa:87:68:d0:
8c:2b:dd:72:b2:d6:32:c7:a9:d1:de:3a:7b:ad:d5:b2:95:65:
41:00:35:f6:61:f3:f1:93:87:01:c0:1a:42:8c:8f:2f:4d:16:
be:36:0e:05:9d:0f:76:4d:03:73:45:ea:a2:83:9c:1d:5f:8f:
64:bc:35:46:43:58:6b:56:e1:d8:6a:1d:0f:56:a7:57:bb:be:
14:f0:04:7b:fc:3a:ba:a1:b3:70:91:59:33:d9:3a:0c:48:34:
ae:8d:88:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org