Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/v3L6U5pNmJWFR2VQclXVD54NgOg.roa
File: v3L6U5pNmJWFR2VQclXVD54NgOg.roa (raw, json)
Hash identifier: hIWxHlSQRH5QHBl5ma6sue8KHxzu8UL+DCSg69clV10=
Subject key identifier: BF:72:FA:53:9A:4D:98:95:85:47:65:50:72:55:D5:0F:9E:0D:80:E8
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 4271BA93
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/v3L6U5pNmJWFR2VQclXVD54NgOg.roa
Signing time: Sat 01 Jan 2022 14:03:16 +0000
ROA not before: Sat 01 Jan 2022 14:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49515
IP address blocks: 194.68.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114749587 (0x4271ba93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf72fa539a4d9895854765507255d50f9e0d80e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:97:f3:c9:30:fe:9b:06:b9:1e:25:eb:7e:64:
2a:1c:97:28:e8:3b:e1:18:72:93:45:20:f7:81:10:
97:03:fe:2a:a8:d8:d4:e9:e3:0f:fa:2c:ee:fa:1b:
52:6a:d5:16:c4:e8:fb:a1:f7:07:9a:c4:ba:12:40:
e5:ef:96:a2:b0:e8:09:7c:84:81:57:e5:57:dd:62:
a3:fe:bf:79:c7:2f:c3:bd:bd:d0:a3:61:a8:a5:64:
06:46:fd:21:6e:89:b8:24:9c:a3:c2:63:f0:5c:b1:
53:70:9c:0e:bf:70:f5:6a:92:e7:21:e1:d4:db:b7:
b8:d9:a4:9d:71:80:ff:1c:3e:5c:6e:f5:13:cb:e5:
7e:7e:19:09:25:ca:e0:a4:97:78:d0:75:70:57:af:
e7:9b:d8:63:11:f6:d6:91:99:dc:a5:bb:e0:a1:cf:
56:be:f9:32:4d:a9:60:95:c0:4a:dc:65:44:4e:b4:
e4:c0:42:c8:67:30:2e:0b:98:cf:1d:76:33:e0:ed:
de:1e:c7:9a:d3:85:e6:25:99:11:32:58:af:d8:62:
53:ea:4e:62:08:99:8b:31:e6:29:2a:1d:d9:28:a4:
c4:60:9b:53:74:d8:a7:ac:07:a0:80:12:f2:0d:29:
3e:3c:08:dc:9c:73:1a:40:97:20:ff:b7:0f:78:fd:
0e:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:72:FA:53:9A:4D:98:95:85:47:65:50:72:55:D5:0F:9E:0D:80:E8
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/v3L6U5pNmJWFR2VQclXVD54NgOg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.68.231.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:dc:37:16:c6:30:e6:e5:18:a6:a4:1a:23:ef:50:9c:fa:4c:
d9:f5:19:6b:c4:1d:fc:a4:88:d8:18:ed:21:8e:ef:e6:69:a1:
80:41:31:8a:fb:2d:3b:ea:0c:9e:32:a0:3e:ce:c9:bd:64:e4:
0c:81:ff:98:e6:22:72:23:07:93:e6:c0:ad:ad:6d:e1:c8:22:
d1:6c:91:ae:04:53:a4:52:c8:2f:47:c3:f0:fd:38:f9:f1:20:
d9:2d:06:24:6d:94:1a:74:e6:84:54:70:7b:54:88:47:40:ee:
07:56:74:da:3a:13:e4:ed:19:ef:45:02:a9:66:4f:9c:42:dd:
ba:bc:df:3d:61:60:81:61:71:db:26:08:93:b3:3a:94:a6:46:
a6:19:78:b1:3c:3a:14:d3:6d:87:b4:82:6d:2d:b7:4a:f5:77:
96:65:79:77:95:cd:1f:fe:07:6a:c4:21:c1:d7:23:51:9d:57:
80:5a:e8:d1:a3:30:f7:12:8a:40:f9:7f:5f:18:4c:9a:5f:29:
7d:e8:1a:84:ea:86:3b:13:f5:f3:4f:4c:c1:f5:5f:9e:d5:08:
6d:66:c1:bd:23:dc:87:a5:87:2d:5a:d3:2c:3f:42:90:92:fe:
3a:29:ed:e6:bd:06:7e:ad:c2:7e:77:dd:1e:cc:9e:1f:13:0b:
dd:1d:4f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:47 2023 by rpki-client on console-fra.rpki-client.org