Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/fDxS344uns4-nTPQv9hB-qwez88.roa
File: fDxS344uns4-nTPQv9hB-qwez88.roa (raw, json)
Hash identifier: ZhpLX5ArTk+7ePrHWeHWeexF90em3kwpUbCv2W4+A9w=
Subject key identifier: 7C:3C:52:DF:8E:2E:9E:CE:3E:9D:33:D0:BF:D8:41:FA:AC:1E:CF:CF
Certificate issuer: /CN=9c47ee73c28780b12f152cfa259ade3d8ae0d13b
Certificate serial: 0DA1E644
Authority key identifier: 9C:47:EE:73:C2:87:80:B1:2F:15:2C:FA:25:9A:DE:3D:8A:E0:D1:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEfuc8KHgLEvFSz6JZrePYrg0Ts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/fDxS344uns4-nTPQv9hB-qwez88.roa
Signing time: Sat 01 Jan 2022 03:57:42 +0000
ROA not before: Sat 01 Jan 2022 03:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58251
IP address blocks: 194.33.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 228714052 (0xda1e644)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c47ee73c28780b12f152cfa259ade3d8ae0d13b
Validity
Not Before: Jan 1 03:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c3c52df8e2e9ece3e9d33d0bfd841faac1ecfcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f2:87:24:f1:1b:48:69:b4:c7:ac:35:c4:bb:
79:b1:d3:83:2a:35:50:e3:6c:74:b3:79:b1:93:df:
44:86:f2:66:97:be:dc:9d:03:47:53:d0:37:62:f7:
f1:98:59:f7:03:0f:a3:e7:48:60:84:f6:d7:c8:22:
41:59:f4:bd:5f:9d:73:4f:38:38:d4:62:29:a5:17:
7c:bb:f5:7a:d9:af:a5:1d:b6:5b:84:7f:67:6e:e2:
06:3e:43:2e:93:96:22:8c:cb:57:b8:af:0d:ae:fb:
55:81:99:1f:f1:b2:3a:c9:d2:02:ad:90:f5:f3:3c:
d1:e9:be:aa:ce:87:77:70:67:3c:67:45:fe:2c:ab:
c5:bd:20:d6:97:96:c3:f9:22:cf:ff:9d:52:8e:d2:
ea:e4:a0:c7:8a:ab:98:7f:ed:6f:21:e9:09:89:f9:
43:bc:98:ab:e2:c7:96:6b:ee:e6:50:a9:7d:56:ed:
5a:b7:d9:d6:8c:4e:8f:93:7c:5d:c5:b2:b8:37:ab:
6c:7e:9c:81:04:57:e3:01:e4:51:76:b0:cc:8c:d3:
f8:b0:22:32:54:6d:66:ee:65:d6:29:f8:e3:9e:6a:
f0:54:6f:e9:06:7e:6e:94:10:4b:d8:ac:0c:0b:dd:
2e:c6:ab:8f:aa:fc:20:33:ad:fd:80:f5:68:c0:70:
7c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:3C:52:DF:8E:2E:9E:CE:3E:9D:33:D0:BF:D8:41:FA:AC:1E:CF:CF
X509v3 Authority Key Identifier:
keyid:9C:47:EE:73:C2:87:80:B1:2F:15:2C:FA:25:9A:DE:3D:8A:E0:D1:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEfuc8KHgLEvFSz6JZrePYrg0Ts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/fDxS344uns4-nTPQv9hB-qwez88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7c51d-4f90-4087-a13a-f3c1a9a11d73/1/nEfuc8KHgLEvFSz6JZrePYrg0Ts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.105.0/24
Signature Algorithm: sha256WithRSAEncryption
79:4e:28:25:8f:8d:fe:a8:f9:c1:24:fd:7c:2b:a8:de:a1:3e:
5f:7c:59:5a:58:70:5c:d9:8d:df:a4:17:47:c0:cf:ba:5b:ad:
d3:45:74:a8:92:a5:61:e3:6f:5f:a5:42:6b:6a:4f:22:f5:32:
42:f8:a8:82:99:d1:9b:c8:09:7d:a6:cf:5a:af:38:10:d5:76:
f2:ab:9a:79:6e:00:c6:ab:55:78:03:c9:46:d1:15:c1:f5:e7:
a9:93:af:84:c1:cc:db:34:e7:61:4a:38:da:2e:06:5c:f9:92:
04:78:12:0c:9a:b0:29:21:41:b9:8f:41:5e:c0:5b:b8:ba:c2:
f9:bf:6d:b9:31:e2:7c:bb:61:5e:45:c4:3f:d5:6c:94:79:3d:
84:01:70:44:1b:6f:a5:c4:8e:a4:1f:7e:15:c7:97:c6:c5:e9:
6b:a3:f6:b4:86:03:71:b3:4b:0e:b9:5f:e2:c1:a0:ad:9f:8f:
2b:72:af:8d:50:2a:58:d9:19:ea:f6:18:3d:47:05:fc:42:13:
b2:3d:2b:75:c6:95:0e:29:ae:5a:88:ae:14:7f:3a:f1:08:e7:
a9:09:a0:6c:d5:21:93:b5:6e:80:db:82:fd:cb:cb:2e:1d:9d:
11:da:7e:5a:92:d0:b0:db:b3:7e:8a:70:d7:25:fc:0b:97:86:
87:ce:e4:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:02 2024 by rpki-client on console-ams.rpki-client.org