Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/s7GTtWFj9q9R4DUmmZhEpbAYwgE.roa
File: s7GTtWFj9q9R4DUmmZhEpbAYwgE.roa (raw, json)
Hash identifier: +AGyhdTeYv5q3uF2RdAxXijpIzUPwYAsGIZGMGBcT7o=
Subject key identifier: B3:B1:93:B5:61:63:F6:AF:51:E0:35:26:99:98:44:A5:B0:18:C2:01
Certificate issuer: /CN=f454f84f78085f8ea03a49689cbe372e74ac153c
Certificate serial: 0727DD4A
Authority key identifier: F4:54:F8:4F:78:08:5F:8E:A0:3A:49:68:9C:BE:37:2E:74:AC:15:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9FT4T3gIX46gOklonL43LnSsFTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/s7GTtWFj9q9R4DUmmZhEpbAYwgE.roa
Signing time: Sat 01 Jan 2022 01:51:54 +0000
ROA not before: Sat 01 Jan 2022 01:51:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 194.30.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120053066 (0x727dd4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f454f84f78085f8ea03a49689cbe372e74ac153c
Validity
Not Before: Jan 1 01:51:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b3b193b56163f6af51e03526999844a5b018c201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ff:aa:0e:c1:6d:0a:2e:d2:d1:bf:9f:43:c9:
26:58:fb:7a:1f:04:d8:6a:48:a6:3e:ce:43:ba:c1:
e4:55:f4:f8:a3:d4:8a:c5:ba:2c:24:c1:b4:c4:8e:
88:cc:1d:72:c0:19:59:97:eb:f4:37:9e:ea:66:05:
3a:ff:34:ed:d7:1d:f9:3e:18:6e:02:ef:8c:e6:56:
a3:15:c6:7b:c0:e6:1a:67:8f:9f:7d:1a:80:c8:1e:
64:39:85:48:fe:57:a1:23:2c:06:b4:b5:1a:34:be:
14:f6:85:50:4a:5a:a1:88:6a:1f:eb:5e:59:f9:d3:
44:f6:4e:be:1c:c2:80:08:49:28:29:8e:eb:2a:6a:
b1:69:08:8e:3f:d0:c4:28:52:ee:bc:e0:4f:76:15:
7f:31:ac:de:0b:07:6d:4f:00:a2:d3:78:66:89:74:
ad:01:09:bf:4e:f6:30:c8:6d:22:05:60:ce:ec:b1:
1d:5a:d8:44:dd:f5:1d:82:c4:5f:ad:a5:fa:87:ab:
17:83:58:09:e4:bc:25:d9:c9:da:ec:b4:b6:39:bd:
c6:ec:f1:a9:ab:b4:99:b5:d8:ba:45:8e:9a:ab:5e:
19:dc:f6:6a:f8:3b:40:3d:64:da:fa:d4:53:56:f5:
27:4e:7b:4e:fd:ae:b5:b3:23:a4:26:5d:83:5a:a5:
27:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:B1:93:B5:61:63:F6:AF:51:E0:35:26:99:98:44:A5:B0:18:C2:01
X509v3 Authority Key Identifier:
keyid:F4:54:F8:4F:78:08:5F:8E:A0:3A:49:68:9C:BE:37:2E:74:AC:15:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9FT4T3gIX46gOklonL43LnSsFTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/s7GTtWFj9q9R4DUmmZhEpbAYwgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/03a0aa-2b69-4a98-a61b-60b988c95230/1/9FT4T3gIX46gOklonL43LnSsFTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.30.175.0/24
Signature Algorithm: sha256WithRSAEncryption
35:29:88:d0:a8:12:30:94:76:a4:80:23:9b:d5:40:5b:83:49:
55:80:09:59:62:7b:cc:4d:76:fa:b4:b6:46:4c:e3:d7:08:c8:
6b:47:8a:43:26:e4:85:1a:0e:76:e3:b1:9d:d7:3b:7f:bc:52:
ce:06:9d:af:15:25:9a:04:dd:3e:2b:36:ba:2f:91:a8:5b:6a:
6d:73:d1:e5:60:1a:4e:fb:d2:60:29:e8:0d:17:42:ac:9a:18:
b7:7a:30:8f:56:81:e1:d1:6a:ed:b0:b0:33:4e:b7:89:6c:03:
e6:ad:48:36:41:4d:6c:59:da:80:9d:43:1a:65:96:52:bd:c8:
8d:0d:be:7e:96:66:b8:2e:9c:80:f3:97:d3:1d:4a:a3:46:e4:
d9:3f:b7:54:9f:25:4d:de:eb:89:1e:88:a4:a4:28:56:71:42:
1d:79:6c:00:ef:05:ab:20:a0:f1:5b:87:af:48:fb:1b:6d:0f:
24:6a:45:17:65:46:73:52:ae:a4:91:de:7f:2b:3e:c7:d4:12:
67:f8:57:44:05:96:67:d2:7f:94:ed:7b:e0:d0:13:c2:15:50:
82:59:1b:9f:d3:b9:33:9b:b6:02:7e:9e:ee:57:5d:c2:1d:65:
90:e1:28:b9:85:91:6a:db:c4:fe:ff:dd:c6:fd:73:27:33:e9:
f5:a4:24:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:30 2024 by rpki-client on console-fra.rpki-client.org