Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b63517-3f1e-451e-8850-8db0efb5620a/1/_nfvvcQRbZ0rKUyvGhaLmSE0oFk.roa
File: _nfvvcQRbZ0rKUyvGhaLmSE0oFk.roa (raw, json)
Hash identifier: dpSkT5vbXq6IP8ZpeO1YslD11JRk1PzXnNei+mECzbg=
Subject key identifier: FE:77:EF:BD:C4:11:6D:9D:2B:29:4C:AF:1A:16:8B:99:21:34:A0:59
Certificate issuer: /CN=a800ba639e65dbdcc690f58a5a740641b4ff88d4
Certificate serial: 05BA060D
Authority key identifier: A8:00:BA:63:9E:65:DB:DC:C6:90:F5:8A:5A:74:06:41:B4:FF:88:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qAC6Y55l29zGkPWKWnQGQbT_iNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b63517-3f1e-451e-8850-8db0efb5620a/1/_nfvvcQRbZ0rKUyvGhaLmSE0oFk.roa
Signing time: Sat 01 Jan 2022 13:59:55 +0000
ROA not before: Sat 01 Jan 2022 13:59:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60781
IP address blocks: 194.113.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96077325 (0x5ba060d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a800ba639e65dbdcc690f58a5a740641b4ff88d4
Validity
Not Before: Jan 1 13:59:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe77efbdc4116d9d2b294caf1a168b992134a059
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b1:47:0a:12:db:59:03:c7:68:ed:97:f7:2b:
b7:06:20:d8:e1:02:7e:94:55:5b:0b:0c:7c:02:75:
ad:ae:e4:5b:2b:d6:d3:df:a1:a8:ed:72:80:eb:f1:
18:45:4c:bf:7d:8b:70:71:49:ac:30:d2:91:15:b8:
37:c4:3e:28:f9:a0:e6:a3:bc:79:99:23:ac:e0:5a:
41:16:92:58:2d:5d:8b:90:c5:5a:9b:9f:88:ab:41:
c3:08:d4:64:64:a2:5f:dd:09:89:44:e4:63:61:3d:
67:2a:26:0f:7d:04:6f:ee:f3:0b:db:5a:93:33:7b:
8f:47:46:1e:ff:48:49:f8:3a:be:88:7f:c5:1a:75:
cd:97:23:71:ea:2a:fe:81:01:3e:21:dc:34:12:60:
e6:ed:16:b2:e0:cd:d8:74:ea:96:71:1a:7c:9c:64:
0b:33:20:a7:19:88:4d:ea:d9:79:ce:22:ed:24:27:
a4:9a:2d:98:3c:24:a9:8c:fa:d2:fc:23:e6:99:15:
7d:bb:4a:e2:5a:ff:fb:95:04:0d:57:05:ee:b0:f5:
17:64:88:70:74:a1:6e:8e:bb:0f:40:01:30:72:44:
af:02:83:1e:5f:b3:74:e4:c5:ab:09:05:4b:1a:60:
99:31:92:54:65:37:41:ed:e7:8a:fb:5d:19:c3:0f:
0c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:77:EF:BD:C4:11:6D:9D:2B:29:4C:AF:1A:16:8B:99:21:34:A0:59
X509v3 Authority Key Identifier:
keyid:A8:00:BA:63:9E:65:DB:DC:C6:90:F5:8A:5A:74:06:41:B4:FF:88:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qAC6Y55l29zGkPWKWnQGQbT_iNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b63517-3f1e-451e-8850-8db0efb5620a/1/_nfvvcQRbZ0rKUyvGhaLmSE0oFk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b63517-3f1e-451e-8850-8db0efb5620a/1/qAC6Y55l29zGkPWKWnQGQbT_iNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.113.142.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:41:e6:30:63:a3:c9:aa:42:0d:ce:ba:fd:51:f0:77:84:8d:
b7:13:a2:4d:e2:59:5b:07:08:63:78:66:95:f3:f7:85:d6:5c:
2a:61:9a:2a:2f:c6:15:00:f8:f4:d6:28:67:81:8f:a4:51:c6:
07:86:22:d9:fc:45:83:e0:15:24:f7:bd:b4:9f:2e:7f:24:18:
6c:18:77:b0:7e:8d:b5:0c:a1:be:07:f8:98:b8:12:cc:27:ec:
2a:2f:6e:f2:82:c6:d4:86:35:c3:f4:6c:72:57:bb:93:de:cc:
f0:94:8a:55:de:4c:5f:62:4a:b3:40:53:e8:f3:47:6d:2b:ab:
cd:4e:7b:93:ff:35:5c:dd:f4:2e:43:33:93:00:32:e1:c4:eb:
7b:26:09:88:5f:98:13:04:a0:62:d8:0c:d1:dc:5f:a8:ad:61:
e8:96:6a:72:17:8c:48:83:89:c0:10:f3:23:77:5c:ff:40:89:
8e:3f:fb:f2:1a:e4:82:e6:34:75:dd:dc:f0:ad:52:ef:c4:c9:
12:2c:75:ae:1c:8d:5b:03:87:a7:f5:5a:33:5d:c1:f5:46:fa:
92:63:e9:bc:3a:f3:40:c8:3f:d2:56:13:c7:a4:ec:69:5a:55:
d4:77:03:5a:57:d6:c6:15:18:80:1c:ec:a6:ea:72:1b:9b:55:
b9:23:30:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:18 2024 by rpki-client on console-fra.rpki-client.org