Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/3McXDD4mOeHXd5zoSyjj5T3gH9w.roa
File: 3McXDD4mOeHXd5zoSyjj5T3gH9w.roa (raw, json)
Hash identifier: til6PwBN6LoDfK8yiXqfRjTNEzDB+b+Yx32po3U0c0Q=
Subject key identifier: DC:C7:17:0C:3E:26:39:E1:D7:77:9C:E8:4B:28:E3:E5:3D:E0:1F:DC
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 100017DB
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/3McXDD4mOeHXd5zoSyjj5T3gH9w.roa
Signing time: Fri 20 May 2022 11:23:31 +0000
ROA not before: Fri 20 May 2022 11:23:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272686
IP address blocks: 194.87.164.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 268441563 (0x100017db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: May 20 11:23:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcc7170c3e2639e1d7779ce84b28e3e53de01fdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:63:5d:eb:c0:d3:5f:01:bc:b4:10:2a:1b:29:
1e:dc:28:38:ab:03:9a:47:4c:a5:a8:e0:bb:77:06:
72:7b:79:fb:9d:46:c8:ea:ba:e3:8c:d4:fa:d7:88:
a9:f4:82:25:70:bc:07:96:83:e6:b3:4a:2a:88:5b:
25:fe:af:92:a1:3c:78:1c:87:e4:ce:0a:f0:f5:b5:
40:8c:aa:f9:b2:25:ef:43:31:cc:51:70:5e:80:71:
58:75:2b:83:3d:d8:46:06:6b:8d:82:d0:86:cf:12:
78:be:19:90:7b:78:4e:10:b3:11:ba:ef:40:98:1a:
90:2b:8d:0b:7e:16:df:a6:67:bd:bd:ce:7a:3e:37:
fb:96:8c:93:2a:19:ab:2c:e9:c5:59:85:82:b4:df:
46:5b:d5:ad:cc:b7:a2:e1:13:13:fe:bc:65:ae:15:
bf:ca:30:01:a9:b9:d7:32:56:ab:ae:37:98:90:c4:
46:32:51:04:7a:92:1e:73:93:90:e8:03:83:53:c9:
de:c5:5a:38:ae:a2:2a:c5:93:16:ea:dc:18:53:66:
79:e2:6a:b9:c5:5b:88:e6:89:ed:fd:9c:ca:d4:ae:
0c:9b:e2:5c:66:af:12:63:f4:e6:c4:6f:3f:32:67:
86:e9:32:36:01:1a:15:43:04:7b:7e:c4:22:53:38:
07:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:C7:17:0C:3E:26:39:E1:D7:77:9C:E8:4B:28:E3:E5:3D:E0:1F:DC
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/3McXDD4mOeHXd5zoSyjj5T3gH9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.87.164.0/23
Signature Algorithm: sha256WithRSAEncryption
90:9e:6c:81:ad:50:d8:c5:e4:8f:4a:82:f3:76:91:56:8d:b0:
60:d1:31:ab:a1:a9:73:26:44:03:32:27:33:08:3d:58:95:54:
b0:9f:85:b3:a8:7e:b7:55:63:19:09:6c:ff:7d:1e:00:8f:70:
33:71:0f:a4:ee:e8:a0:e9:52:b0:65:f1:29:ea:a7:0a:04:d6:
e5:48:31:fc:5e:e8:79:3e:c4:4f:d4:91:e5:d0:96:3f:d8:65:
e2:6a:20:30:0c:c3:1d:89:5b:29:c2:03:52:01:02:f1:19:8b:
a2:86:19:17:c2:6b:99:b3:a6:67:23:37:22:6c:03:2a:e0:aa:
91:32:05:e7:6a:d8:28:8d:04:8c:02:4c:2e:71:f1:dd:45:c4:
c4:ac:d8:fc:b8:5f:3f:fd:e3:16:5f:d9:84:f2:97:a8:c3:5b:
52:8a:31:2b:b1:7c:6d:b1:2e:00:17:64:f5:27:33:32:4a:91:
df:d9:31:1a:20:73:46:08:53:9b:46:5c:a0:26:e9:26:12:53:
68:0b:0b:a0:ef:00:91:a0:96:69:f6:2f:66:08:45:12:63:e1:
11:cf:9b:45:0b:a0:a4:37:5b:b0:d4:74:84:98:ca:b0:f0:ba:
89:b8:2b:4a:44:84:48:fe:15:3b:27:03:54:ad:1c:4c:b6:bf:
0b:97:cd:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-ams.rpki-client.org