Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/MuN2xt1uZtyYV4DI5UacGEzfFd4.roa
File: MuN2xt1uZtyYV4DI5UacGEzfFd4.roa (raw, json)
Hash identifier: LNVk2O36T+5x97FlCzTTfo/UlO+L3NQ0JWUL/pesxL4=
Subject key identifier: 32:E3:76:C6:DD:6E:66:DC:98:57:80:C8:E5:46:9C:18:4C:DF:15:DE
Certificate issuer: /CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Certificate serial: 0BB929ED
Authority key identifier: 4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/MuN2xt1uZtyYV4DI5UacGEzfFd4.roa
Signing time: Sat 01 Jan 2022 11:56:51 +0000
ROA not before: Sat 01 Jan 2022 11:56:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202401
IP address blocks: 194.39.204.0/22 maxlen: 24
2a0c:8fc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 196684269 (0xbb929ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f3bd56e8b54e6da27bbe6622dac67cbf02a81ea
Validity
Not Before: Jan 1 11:56:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=32e376c6dd6e66dc985780c8e5469c184cdf15de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:66:69:f1:68:82:7d:55:e7:37:63:26:c8:49:
11:c5:33:da:4a:9f:b5:55:65:51:48:1d:29:b8:5c:
dd:84:76:ed:0c:40:8c:55:1d:68:ce:39:21:fe:4c:
2d:8d:d5:3c:06:43:96:f4:bf:7c:75:2a:74:5d:d6:
fd:05:50:12:ba:4c:11:41:b3:18:ed:7d:7a:da:0f:
3d:a3:03:e3:4e:72:ec:73:cd:ef:c4:9f:86:6d:94:
1c:55:6e:55:d5:95:a8:cf:8b:51:62:73:c3:51:a7:
da:f3:79:66:67:1b:93:44:b4:a2:e2:e1:60:f6:74:
b4:45:a7:61:c7:5b:76:3c:a4:bf:55:71:59:f7:c1:
58:17:65:7c:a0:f2:a0:57:3a:b6:28:ef:09:30:be:
a4:53:de:c8:87:b4:d9:8d:a5:19:62:5c:98:92:26:
0b:7b:70:f8:b3:9b:38:8b:79:49:9e:3c:55:c3:56:
25:7a:52:54:50:6c:fe:b3:0b:71:59:68:19:f9:94:
7a:2c:99:00:02:cb:ab:39:cf:1e:a9:10:27:e1:f4:
7e:2c:fd:e7:16:c2:37:82:b7:d4:79:ba:fc:f7:c5:
a3:3e:5d:d1:12:f2:07:ea:63:3e:99:64:6b:69:de:
26:c8:03:9f:5a:ef:cb:bf:07:55:c8:7f:40:9a:90:
1c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:E3:76:C6:DD:6E:66:DC:98:57:80:C8:E5:46:9C:18:4C:DF:15:DE
X509v3 Authority Key Identifier:
keyid:4F:3B:D5:6E:8B:54:E6:DA:27:BB:E6:62:2D:AC:67:CB:F0:2A:81:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TzvVbotU5tonu-ZiLaxny_Aqgeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/MuN2xt1uZtyYV4DI5UacGEzfFd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/6fe149-8a72-47fd-8735-7dc5bddf91b5/1/TzvVbotU5tonu-ZiLaxny_Aqgeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.204.0/22
IPv6:
2a0c:8fc0::/29
Signature Algorithm: sha256WithRSAEncryption
5b:80:9c:5d:22:20:67:0c:a0:c7:68:03:ae:77:ae:c0:ef:ac:
20:fd:da:e2:81:79:03:2c:65:56:40:de:71:6d:66:fc:24:af:
2b:51:1b:fa:84:e3:5f:8e:39:84:7a:06:c7:0d:60:02:7c:a0:
a4:91:d9:23:21:22:ce:c0:5e:d4:67:2e:02:40:aa:f9:91:e1:
19:13:ac:12:d0:e4:42:b9:ca:12:78:16:b3:33:b7:bf:be:62:
91:f8:9a:10:64:54:de:d7:33:6c:b0:4b:8c:0d:eb:9a:c7:9c:
c8:13:22:47:78:19:3b:12:97:04:4c:82:89:77:d1:8d:88:24:
fb:ad:a7:1f:c8:fa:7a:09:13:fe:5d:b4:f7:eb:33:d7:8e:e4:
03:2b:7a:19:d2:b3:9e:a3:32:b1:d4:6c:98:e8:30:3a:86:ea:
81:bc:07:d5:1e:cf:a3:84:ed:c4:ca:0d:96:3d:0a:2c:e5:6c:
ff:3b:7b:25:fc:65:0e:9b:9a:84:9a:ce:c2:b0:71:bf:3f:91:
2b:2a:08:80:cd:f5:b9:27:64:f9:30:d2:2d:64:d9:ab:81:b1:
54:63:cf:e9:15:e2:a7:bb:5b:fe:eb:f0:60:52:59:ea:10:c5:
a5:bb:1a:64:f3:7d:3e:91:c3:68:76:b7:59:2d:f7:8e:99:0f:
ed:7b:cc:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:52 2023 by rpki-client on console-fra.rpki-client.org