Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6LmJRlsnrG3IBi4X7faxc-_47qU.roa
File: 6LmJRlsnrG3IBi4X7faxc-_47qU.roa (raw, json)
Hash identifier: 7fhIPaUGufc0EG1JeyBkpeiWrh9NR35aXHVtRSlVxXY=
Subject key identifier: E8:B9:89:46:5B:27:AC:6D:C8:06:2E:17:ED:F6:B1:73:EF:F8:EE:A5
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 43DEBB19
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6LmJRlsnrG3IBi4X7faxc-_47qU.roa
Signing time: Tue 10 May 2022 15:09:57 +0000
ROA not before: Tue 10 May 2022 15:09:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 194.132.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1138670361 (0x43debb19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: May 10 15:09:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8b989465b27ac6dc8062e17edf6b173eff8eea5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:3c:d9:2e:32:00:d0:50:60:8c:6c:39:7e:88:
68:a7:a9:5c:ea:9d:17:44:dc:7e:5e:51:9d:f4:f5:
2c:01:b1:2d:91:3f:68:20:e5:f0:ad:a3:5c:f5:47:
80:da:ac:dd:1c:04:38:bf:45:7a:0a:0d:49:03:77:
e2:61:9f:fb:cd:bc:ba:31:8f:00:66:00:45:06:c2:
bb:33:0f:28:9a:b0:2e:e5:c9:3c:4e:3b:20:f0:da:
ea:57:0f:e4:44:16:44:15:e6:d9:fb:9e:17:94:90:
c9:c5:7c:9f:5b:fb:4a:e2:03:c6:e6:5f:2e:7c:3c:
9b:f0:e2:ea:b2:64:a9:36:8d:eb:0b:33:3a:4d:d8:
da:3b:ac:45:59:50:ba:11:d8:4a:36:87:c7:de:1a:
60:7f:9b:a4:13:e9:a2:1d:06:47:67:6a:b5:b3:1a:
04:ca:6c:70:02:27:1b:08:d8:3e:03:d8:ae:bd:5a:
0d:11:83:e4:55:0a:ad:12:3f:f4:92:80:51:82:38:
dd:be:e8:ec:34:52:df:a2:89:52:7f:9c:20:aa:df:
b8:60:40:2c:47:0b:5f:3a:e3:94:14:74:02:ac:44:
9c:a5:61:e1:01:ea:8e:7b:4c:b2:6b:91:24:fc:73:
c8:17:ac:23:02:8b:7d:71:6b:99:c0:95:d6:c6:7b:
95:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B9:89:46:5B:27:AC:6D:C8:06:2E:17:ED:F6:B1:73:EF:F8:EE:A5
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/6LmJRlsnrG3IBi4X7faxc-_47qU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.132.60.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:90:5a:bd:f4:2c:6a:8e:e3:f1:e1:8f:f3:c5:9f:55:c2:4a:
5f:08:7b:c2:71:df:8a:12:0b:00:14:af:cc:d9:89:e0:7d:2b:
9f:a6:20:f8:de:ef:7d:80:58:3f:45:27:63:2b:6b:3d:65:d4:
1a:f7:ce:0e:58:e3:f6:25:e3:52:cc:ce:b4:95:12:09:5d:7a:
39:99:fe:62:bb:3b:ea:4a:52:da:84:2c:56:61:47:77:18:ec:
f5:4a:1f:34:34:19:d7:f1:a3:82:fe:09:5a:ae:86:57:84:2f:
b1:5a:a0:66:9b:48:88:d8:5d:f3:0a:cd:7e:e2:c3:aa:08:8f:
6f:a0:fb:43:68:40:ce:08:18:81:c9:b5:2b:da:6d:32:60:a3:
97:b3:62:5b:b0:78:96:32:2d:72:4b:6b:1e:84:d9:6c:db:82:
62:e0:85:05:67:d7:08:b0:b6:90:a9:ce:0b:db:7a:39:b3:89:
c5:cc:6f:90:bc:ae:12:1c:fe:47:1d:a1:bf:ca:60:1a:ee:70:
5c:d9:10:41:d2:d6:d7:47:22:26:e0:26:b5:e4:44:7c:28:35:
7f:ad:98:8a:79:42:3e:fc:22:6a:8b:e8:3f:2c:0a:4a:23:26:
93:c9:f8:55:19:c9:cf:a8:f9:b0:70:fa:79:b4:62:20:37:73:
98:d1:84:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:32 2025 by rpki-client