Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/DacAFHL2wVaXmqj7pbD5VMIvBhQ.roa
File: DacAFHL2wVaXmqj7pbD5VMIvBhQ.roa (raw, json)
Hash identifier: eJQb8ovu7iT2bQE9zvtNgzYJcaYb53yV5CflxRq9ZxI=
Subject key identifier: 0D:A7:00:14:72:F6:C1:56:97:9A:A8:FB:A5:B0:F9:54:C2:2F:06:14
Certificate issuer: /CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Certificate serial: 0183F2070E45376C4EDA1467A163EF0C514F
Authority key identifier: 94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/DacAFHL2wVaXmqj7pbD5VMIvBhQ.roa
Signing time: Wed 19 Oct 2022 20:54:52 +0000
ROA not before: Wed 19 Oct 2022 20:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211895
IP address blocks: 194.61.120.0/24 maxlen: 24
2a10:1fc0:c::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f2:07:0e:45:37:6c:4e:da:14:67:a1:63:ef:0c:51:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=947320d030930178e6f7ceef91d2ab8784d3dc16
Validity
Not Before: Oct 19 20:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0da7001472f6c156979aa8fba5b0f954c22f0614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ff:c4:f1:64:3a:49:4c:cf:84:ef:d6:26:64:
de:a0:dd:44:1a:e1:29:df:7e:c0:f0:e2:41:73:2d:
3a:2e:7a:08:ac:d0:cf:4a:3b:a0:c0:d5:81:75:91:
62:8a:5a:19:6c:75:4f:57:87:57:42:25:69:f5:7a:
6a:7a:c8:80:2e:f5:40:08:73:f7:02:4c:34:2f:8e:
8d:e0:6e:36:b5:f2:34:f8:4a:9d:06:8f:ce:15:47:
2b:9c:76:bf:1c:42:75:83:c1:45:df:c7:92:13:d5:
a8:da:c0:6a:42:a1:5a:37:78:28:08:dd:c8:97:e7:
7d:d5:75:52:a9:c8:25:13:7c:fd:40:fa:ef:ed:64:
c9:57:69:34:4a:8a:27:08:50:8b:a0:e0:ad:24:e5:
1f:c9:e3:fd:96:90:3b:d3:31:14:43:58:49:ad:9e:
a3:76:32:f0:99:e7:74:12:7c:6b:c5:6c:f1:d2:c5:
73:58:30:d5:00:72:79:2f:05:4c:bf:3d:2a:88:80:
4d:c3:c3:35:58:98:dc:88:ce:b6:ce:98:6f:19:06:
1b:eb:4a:38:1e:0e:c0:a9:46:e3:4e:af:a8:87:d4:
bf:f2:2c:c4:a1:f9:21:99:66:3b:f7:05:c0:f8:bb:
6d:fc:81:bc:ba:55:c8:82:ec:4c:97:db:72:59:0d:
3c:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A7:00:14:72:F6:C1:56:97:9A:A8:FB:A5:B0:F9:54:C2:2F:06:14
X509v3 Authority Key Identifier:
keyid:94:73:20:D0:30:93:01:78:E6:F7:CE:EF:91:D2:AB:87:84:D3:DC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lHMg0DCTAXjm987vkdKrh4TT3BY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/DacAFHL2wVaXmqj7pbD5VMIvBhQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/82e876-c997-4605-87aa-8ac4a21938b4/1/lHMg0DCTAXjm987vkdKrh4TT3BY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.120.0/24
IPv6:
2a10:1fc0:c::/48
Signature Algorithm: sha256WithRSAEncryption
35:92:c0:d1:96:da:c0:37:63:18:75:c3:c6:0b:e4:c7:a7:fb:
16:6e:0e:59:80:1b:40:0b:a1:e4:af:7d:73:6e:d2:38:13:da:
be:e3:62:89:d0:ea:10:4b:4b:d8:0b:e7:67:68:c6:83:07:68:
2c:6c:aa:28:3b:91:b3:d2:7f:2a:1e:59:67:01:b5:76:1d:69:
49:ce:61:2c:b4:07:33:22:e5:e3:c4:25:4d:a4:8c:4a:f8:68:
d4:6d:93:3a:94:3f:86:b0:e1:de:f4:e3:b4:ab:ec:f9:1c:a5:
dc:c1:da:a4:7b:e8:5f:d4:76:0a:d4:c7:61:64:d5:89:86:a0:
43:fd:a0:c2:22:b2:b9:1d:d8:e9:6d:07:6b:16:88:b4:81:ae:
ca:67:8b:2e:fc:ab:32:87:8c:15:cb:9d:0e:23:b7:1b:4e:a2:
e2:c5:dc:d7:55:ee:49:25:7e:bb:cd:3b:1f:a6:3a:27:58:1d:
c8:a1:1d:5b:ef:e3:7b:ec:6a:f5:22:89:e2:ac:94:dd:ee:c4:
62:bd:6e:9b:29:da:6e:bf:9d:2d:02:dc:02:b2:63:34:23:3a:
b2:b3:8a:e2:6d:ce:9d:ab:20:8f:71:e0:31:e9:4c:ff:bd:f0:
a7:e3:f9:d5:16:58:23:57:66:27:9b:9c:2c:2e:52:be:e7:a6:
ac:ad:44:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:49 2023 by rpki-client on console-fra.rpki-client.org