Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Pn2nf_YfZNQxqWzui24WhVJBBGk.roa
File: Pn2nf_YfZNQxqWzui24WhVJBBGk.roa (raw, json)
Hash identifier: KsBaIz831ygaGjfzQG3Mmp9I5A1ERbQ52nthOnlfOx0=
Subject key identifier: 3E:7D:A7:7F:F6:1F:64:D4:31:A9:6C:EE:8B:6E:16:85:52:41:04:69
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4254700B
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Pn2nf_YfZNQxqWzui24WhVJBBGk.roa
Signing time: Sat 01 Jan 2022 14:02:57 +0000
ROA not before: Sat 01 Jan 2022 14:02:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5483
IP address blocks: 194.71.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1112829963 (0x4254700b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:02:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e7da77ff61f64d431a96cee8b6e168552410469
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:da:e2:b6:e4:54:28:41:a4:2f:59:30:25:f0:
88:5d:64:33:38:06:45:64:06:fe:da:f8:bf:3a:fc:
47:86:88:ed:89:6c:27:af:cf:4e:bd:c9:4e:e7:42:
9e:3a:b7:5b:55:d5:82:58:06:83:70:3d:0f:65:77:
be:3c:a0:e4:68:0e:70:14:ee:96:7a:0d:44:83:d1:
cf:97:aa:90:07:d9:f4:ec:ce:9a:29:26:5f:f9:66:
f0:78:ac:f3:96:65:6f:ee:c3:10:e2:e4:e0:46:50:
9f:e7:3d:ef:71:97:ac:64:0a:54:05:46:22:62:91:
0e:75:c1:ce:b6:a0:c4:56:30:19:a7:e4:1a:fc:97:
c9:4c:90:56:fb:97:81:db:fd:bd:71:53:ba:87:8d:
72:57:27:ea:dc:60:57:ff:c1:d7:f0:d7:d0:4c:2f:
24:d4:27:06:68:85:d5:71:33:6b:56:46:9b:d9:e8:
01:cb:ef:27:f2:9a:db:1d:d4:c1:33:1b:81:8b:3c:
59:c9:c9:ce:fa:67:a2:88:1d:37:94:c7:1b:59:66:
db:52:e0:ed:f8:6f:52:69:00:13:4c:34:2c:b6:f2:
6e:25:b4:23:7d:f0:8d:ee:df:91:7c:1f:55:33:de:
08:c5:6b:43:8e:2e:d6:bd:7a:95:6e:9d:d9:84:12:
35:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:7D:A7:7F:F6:1F:64:D4:31:A9:6C:EE:8B:6E:16:85:52:41:04:69
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/Pn2nf_YfZNQxqWzui24WhVJBBGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.71.130.0/24
Signature Algorithm: sha256WithRSAEncryption
69:eb:c9:13:17:39:a9:b3:d6:38:85:aa:7b:c0:42:c4:f0:c1:
24:50:08:64:fc:db:ad:27:da:66:b6:cd:f3:90:3f:b7:a2:1b:
17:36:37:f0:0c:8e:02:b4:d5:fd:3e:8d:29:11:d2:19:d2:fb:
27:44:dd:39:c0:f9:38:7c:79:bc:b1:d4:2a:d5:e6:7d:78:5f:
26:a5:a0:88:a9:3a:a8:95:07:ec:03:40:3f:fc:03:9b:11:ca:
d5:4d:cc:7e:33:0e:90:14:41:9e:62:94:ec:9b:29:c7:d2:d2:
02:43:a6:1f:c5:40:0b:81:ae:36:c3:54:66:38:99:d1:97:c4:
6f:83:ea:19:9a:9f:de:88:bc:45:4d:a1:79:43:50:14:06:d9:
32:c1:e2:ed:98:79:fe:f4:99:6c:9c:55:95:6e:0c:fa:d2:d9:
b3:9d:72:dd:06:39:44:82:fe:c9:06:5e:da:bb:c1:f7:d6:99:
44:00:7c:e8:fd:ec:2a:50:10:46:e0:24:50:50:13:c5:4c:48:
01:57:62:96:aa:bf:a7:bf:ba:26:d1:88:54:d4:c4:5a:83:79:
ac:00:15:27:a8:90:99:c9:1a:20:67:26:c6:59:50:1a:66:de:
01:d4:c5:d1:ec:d7:e8:60:d4:e3:c6:24:bf:75:81:0c:92:73:
0f:d2:a3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:38 2023 by rpki-client on console-ams.rpki-client.org