Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/IpkkL17eVkkk1GJVMflFT2aqyi4.roa
File: IpkkL17eVkkk1GJVMflFT2aqyi4.roa (raw, json)
Hash identifier: 7E2LUIgly6kgpI2HjtsiqIV1FOEUmZSGXrXvTs9KF3A=
Subject key identifier: 22:99:24:2F:5E:DE:56:49:24:D4:62:55:31:F9:45:4F:66:AA:CA:2E
Certificate issuer: /CN=ad4955f1cdbde7ed9e69de11dea5c560f60456a9
Certificate serial: 05116A50
Authority key identifier: AD:49:55:F1:CD:BD:E7:ED:9E:69:DE:11:DE:A5:C5:60:F6:04:56:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUlV8c295-2ead4R3qXFYPYEVqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/IpkkL17eVkkk1GJVMflFT2aqyi4.roa
Signing time: Sat 01 Jan 2022 07:59:36 +0000
ROA not before: Sat 01 Jan 2022 07:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 194.49.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85027408 (0x5116a50)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad4955f1cdbde7ed9e69de11dea5c560f60456a9
Validity
Not Before: Jan 1 07:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2299242f5ede564924d4625531f9454f66aaca2e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:d3:44:9c:15:f4:23:ed:94:21:01:ad:b0:62:
84:f5:7e:07:2b:5d:4e:fd:68:b7:d5:c9:b8:cc:fb:
7e:30:55:8d:de:41:2c:37:df:2f:0b:f8:b8:1e:7e:
7f:94:4d:9e:a8:96:11:6d:14:0d:fa:06:f1:ae:e7:
cb:af:fe:d1:80:cd:ae:64:cb:a3:87:18:d4:61:f8:
83:94:b6:15:68:05:68:f6:f7:87:c5:99:90:3a:15:
1a:3a:17:7e:75:01:8f:b1:40:3b:cf:b6:d5:d7:fc:
86:e9:d2:93:38:f7:ca:e3:90:47:5c:25:f9:f2:af:
3c:f8:3f:8d:d5:7e:ba:8f:80:31:fc:7c:4b:3c:0d:
43:37:45:03:12:af:d4:39:b5:c3:cd:f6:c9:fa:4e:
22:23:dc:d7:eb:a5:ed:8f:39:e6:fd:1c:47:bf:9e:
b9:49:95:da:73:2e:fb:9d:0e:95:4a:cb:81:59:83:
82:9c:bf:5e:99:4d:ea:01:b3:c2:99:00:00:5a:4d:
9b:02:10:a1:f0:2a:41:4b:55:21:f7:f9:ec:7f:78:
3e:e6:c7:fb:e5:22:6c:58:ea:40:eb:c2:0e:4b:43:
db:e2:84:81:0b:e7:81:c7:5e:49:f5:37:3d:a9:fd:
80:c0:85:57:2c:fb:e3:2b:2c:05:c7:30:3e:67:77:
ca:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:99:24:2F:5E:DE:56:49:24:D4:62:55:31:F9:45:4F:66:AA:CA:2E
X509v3 Authority Key Identifier:
keyid:AD:49:55:F1:CD:BD:E7:ED:9E:69:DE:11:DE:A5:C5:60:F6:04:56:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUlV8c295-2ead4R3qXFYPYEVqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/IpkkL17eVkkk1GJVMflFT2aqyi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/rUlV8c295-2ead4R3qXFYPYEVqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.68.0/24
Signature Algorithm: sha256WithRSAEncryption
19:d9:0b:4f:42:cc:08:fa:f5:d8:82:5b:55:73:7c:ac:2f:5d:
ae:61:09:40:f1:76:66:b9:67:13:b7:f6:bd:74:8f:97:19:6b:
b5:61:2c:b8:ae:7d:2d:08:d4:ee:8c:de:e9:41:e1:f5:a7:fb:
91:c3:19:0a:14:8d:d8:7a:62:5d:4e:20:c4:18:79:8f:c5:cd:
6a:84:e7:a4:da:12:5b:52:fc:94:d1:22:01:3a:54:c7:4d:7a:
a4:d3:94:a4:8d:65:54:9d:1f:95:4c:d7:76:b4:a7:c3:37:59:
37:2a:79:86:21:cc:47:d3:29:30:f4:47:47:e8:b3:0a:dc:b3:
e8:e4:21:60:1d:56:73:38:7f:6d:d0:9a:fa:d9:4c:ed:e8:0a:
01:ac:cc:e6:69:dc:be:1c:57:52:f5:9f:99:5b:f7:64:04:d1:
a1:89:ba:7a:f2:e6:05:b6:f0:cb:14:83:3f:ec:0d:00:de:a5:
f3:85:ab:a8:b5:8a:b4:3b:6e:93:95:b1:ea:e5:7d:f1:15:b2:
19:14:25:50:9c:45:cd:05:75:24:06:48:78:66:df:0b:48:c5:
e3:fb:5a:18:be:45:96:15:aa:cc:47:2f:4d:a1:29:11:11:d4:
8b:b6:b0:23:9a:5f:65:df:4e:8a:27:ab:e6:42:ef:82:c8:a2:
09:26:e9:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:46 2023 by rpki-client on console-ams.rpki-client.org