Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/lKI8qQJevY_qwevF7M5dBoSd2nk.roa
File: lKI8qQJevY_qwevF7M5dBoSd2nk.roa (raw, json)
Hash identifier: 90B1qeAdkTMO8gcMpBiyMpYV5qOGuRtmvgoejP6bXjk=
Subject key identifier: 94:A2:3C:A9:02:5E:BD:8F:EA:C1:EB:C5:EC:CE:5D:06:84:9D:DA:79
Certificate issuer: /CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Certificate serial: 36BDCA3F
Authority key identifier: D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/lKI8qQJevY_qwevF7M5dBoSd2nk.roa
Signing time: Mon 23 May 2022 08:01:31 +0000
ROA not before: Mon 23 May 2022 08:01:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199611
IP address blocks: 194.140.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 918407743 (0x36bdca3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d434f1686102876c6216bcea28a5e502ec0d7b6b
Validity
Not Before: May 23 08:01:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94a23ca9025ebd8feac1ebc5ecce5d06849dda79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c5:40:49:a3:10:08:2c:af:9a:74:47:05:eb:
8c:78:aa:21:83:93:ca:23:06:9c:8c:f1:24:a5:d3:
b9:4c:0b:1d:94:ab:d7:47:fc:4a:63:0b:ac:5c:c6:
71:a0:aa:98:5e:99:33:d4:73:d7:3f:1b:98:ba:64:
d9:66:83:f0:6a:24:33:38:61:60:f5:40:74:f4:50:
fc:21:1c:9a:1c:b9:a8:ad:b7:ec:aa:e7:7a:45:77:
6d:ca:b4:a3:ac:1c:cd:7d:f8:96:30:e9:b8:43:a4:
46:ab:31:c2:27:47:80:5f:a9:27:02:76:7e:c4:93:
b1:5a:6c:5c:5f:d5:c8:6f:8a:dd:b8:7e:b6:6c:2f:
d8:13:27:70:d9:79:b3:72:9b:27:9c:b0:da:3a:97:
70:8c:42:94:a4:b6:49:e0:60:6e:68:16:25:ee:8f:
ec:86:ae:16:c4:19:34:f4:3e:2f:79:af:8e:0b:41:
4b:59:7e:0c:36:e0:13:bf:75:de:e6:f4:3c:74:4c:
ec:dd:75:e2:e1:c4:5d:22:c3:29:b4:b3:a7:b7:34:
2d:7a:22:bd:82:66:88:a9:cb:0c:3b:0b:ad:14:3d:
0e:dc:2d:8a:ae:df:f0:de:96:c7:cb:e8:c5:db:dc:
78:c6:c4:49:b4:ac:64:0b:97:02:15:54:a7:42:8c:
7c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:A2:3C:A9:02:5E:BD:8F:EA:C1:EB:C5:EC:CE:5D:06:84:9D:DA:79
X509v3 Authority Key Identifier:
keyid:D4:34:F1:68:61:02:87:6C:62:16:BC:EA:28:A5:E5:02:EC:0D:7B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1DTxaGECh2xiFrzqKKXlAuwNe2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/lKI8qQJevY_qwevF7M5dBoSd2nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/726bb4-5d87-402d-91ce-5712d95ae638/1/1DTxaGECh2xiFrzqKKXlAuwNe2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.140.135.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:e8:e1:fe:93:55:a7:fa:56:bd:ff:4f:ef:b8:b2:5d:d4:88:
4e:a6:a1:73:2d:dc:9e:cb:eb:94:63:bf:da:db:38:bf:d6:40:
a2:af:17:13:02:89:15:9b:fd:1d:c1:bd:69:77:35:43:09:3e:
74:08:de:96:35:05:d1:4d:b7:73:59:6e:55:e1:b9:2e:2c:e8:
b5:34:a8:cd:78:f8:a8:e1:e8:d2:5e:f0:b2:2e:dd:32:09:3a:
15:99:93:00:c0:e4:52:ff:8f:fe:4a:ca:8c:1a:6a:89:e3:66:
52:f6:a6:d9:c2:01:7b:ca:cf:93:1b:82:29:3b:cb:3a:96:28:
cf:a6:ae:18:c8:25:03:1d:08:70:36:d0:c3:c3:03:ec:38:e5:
eb:44:5f:d3:e8:77:55:f2:1b:ac:3f:65:b4:e6:4c:3f:97:89:
d2:9d:64:85:e1:f5:45:b1:72:8d:73:f0:a2:17:7b:97:e5:19:
6b:6f:d3:93:23:9e:fe:52:d8:b9:b4:a3:01:ab:6e:84:40:65:
f6:4f:46:db:25:b0:b9:0f:e7:de:37:f9:f2:41:2c:2b:29:cb:
29:55:41:a7:e8:5a:7b:ad:63:85:58:d4:10:49:bc:18:5e:69:
00:01:4c:31:c6:80:e5:0c:a2:89:26:a4:f0:e6:9b:dd:d1:44:
89:47:1f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:57 2023 by rpki-client on console-fra.rpki-client.org