Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/clpcMNZVCTTlO7rQ-i00iauuRso.roa
File: clpcMNZVCTTlO7rQ-i00iauuRso.roa (raw, json)
Hash identifier: etLf/vm1EfkEW5LDWhcYF1aNTdqbl3iHufczDFhdxVI=
Subject key identifier: 72:5A:5C:30:D6:55:09:34:E5:3B:BA:D0:FA:2D:34:89:AB:AE:46:CA
Certificate issuer: /CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Certificate serial: 08773771
Authority key identifier: D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/clpcMNZVCTTlO7rQ-i00iauuRso.roa
Signing time: Sat 01 Jan 2022 04:51:35 +0000
ROA not before: Sat 01 Jan 2022 04:51:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211611
IP address blocks: 194.36.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142030705 (0x8773771)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0b849b9bc9042a1557331937e4ad71518af61cf
Validity
Not Before: Jan 1 04:51:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=725a5c30d6550934e53bbad0fa2d3489abae46ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:db:01:d9:35:12:4d:ad:a0:45:1b:c4:81:6b:
39:99:86:4a:e0:12:fe:2d:e0:6b:9b:d6:b9:e9:44:
6a:58:c8:bd:90:a6:a7:53:94:01:fc:56:89:fa:b5:
43:4b:df:52:80:01:85:c3:46:be:0f:9f:59:cb:b5:
28:3b:d3:02:52:81:94:95:19:4b:e7:10:ab:95:ba:
9e:32:f3:23:3a:58:3d:7d:41:8f:f3:49:00:56:f3:
f9:26:4d:aa:cd:e8:bf:57:0a:df:a1:3b:e7:71:58:
fd:f5:bf:d7:cb:40:a4:d1:aa:5a:52:0a:5a:d3:4d:
4d:97:23:43:21:ea:3b:f5:52:18:cb:83:88:2d:f3:
35:cb:0f:15:ff:2e:8f:b3:31:8e:15:5b:ae:fb:47:
48:ae:3f:c7:ab:d8:73:3d:8b:a9:4d:c6:61:c1:ac:
9a:81:65:3e:fb:08:a0:d8:23:0d:92:cf:0d:20:c8:
fa:05:84:a4:1e:6a:92:73:2d:7e:39:d0:2d:0a:30:
18:af:c0:32:47:78:fb:0a:dc:1b:39:19:f0:3a:f8:
a5:2f:ec:32:9d:5e:37:72:2f:5b:58:5e:bb:bc:c5:
fd:d8:6c:a3:26:5f:bd:1b:a5:11:35:bf:91:2c:2f:
63:95:ea:d5:36:13:5e:5e:8c:be:2a:90:d2:63:14:
1c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5A:5C:30:D6:55:09:34:E5:3B:BA:D0:FA:2D:34:89:AB:AE:46:CA
X509v3 Authority Key Identifier:
keyid:D0:B8:49:B9:BC:90:42:A1:55:73:31:93:7E:4A:D7:15:18:AF:61:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0LhJubyQQqFVczGTfkrXFRivYc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/clpcMNZVCTTlO7rQ-i00iauuRso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/a3fb67-d514-4aee-adb9-72bad9d73c80/1/0LhJubyQQqFVczGTfkrXFRivYc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.143.0/24
Signature Algorithm: sha256WithRSAEncryption
18:a7:c5:09:eb:0e:86:d8:a7:c3:bf:5f:72:57:a1:92:7c:08:
ad:d5:81:65:c8:0d:66:bb:03:e2:bf:9b:ef:9a:65:ca:26:d2:
65:d0:6a:3c:1e:06:ad:91:42:c7:36:48:2d:36:6e:00:af:dd:
2d:d7:76:47:7a:42:07:7d:1a:08:b2:ac:61:f8:72:59:ac:ee:
0e:11:ba:e8:33:e0:f1:20:ba:75:21:58:9d:6c:45:e1:7a:0a:
a1:36:83:1a:1a:6c:38:b7:27:ee:3b:2e:57:95:54:76:4b:66:
dc:87:dc:31:2e:4c:41:7a:5d:cd:f5:23:a9:bf:e4:52:25:23:
ac:ba:71:f5:51:03:76:44:eb:ea:2a:16:f1:3a:23:19:6f:c0:
c5:e9:21:b1:2c:16:3e:d5:c7:86:00:14:fc:7e:fe:15:f8:c7:
d6:f0:ed:24:2b:4d:f8:d5:41:c4:f9:6c:31:86:46:3d:dd:bd:
27:fc:99:29:ab:7d:d2:7b:04:76:fe:92:87:79:6d:68:1d:71:
57:4c:ca:ed:90:c1:7c:54:dd:27:1f:d9:1b:2e:63:c4:9d:b7:
99:59:43:65:c7:8e:af:f0:21:20:f1:4d:4d:64:10:ba:ff:a1:
93:fc:b9:c6:2e:d9:0b:2c:44:9c:77:45:18:ba:bd:79:47:13:
74:5e:3b:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net