Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/k2wv8cKvJ5knU_yeAImVtlC2Pjg.roa
File: k2wv8cKvJ5knU_yeAImVtlC2Pjg.roa (raw, json)
Hash identifier: ksPbKEW5Wlv5cmCRb2mLMIqAY7x3BxZRb3uxQcuGrkA=
Subject key identifier: 93:6C:2F:F1:C2:AF:27:99:27:53:FC:9E:00:89:95:B6:50:B6:3E:38
Certificate issuer: /CN=ad4955f1cdbde7ed9e69de11dea5c560f60456a9
Certificate serial: 05117DEE
Authority key identifier: AD:49:55:F1:CD:BD:E7:ED:9E:69:DE:11:DE:A5:C5:60:F6:04:56:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rUlV8c295-2ead4R3qXFYPYEVqk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/k2wv8cKvJ5knU_yeAImVtlC2Pjg.roa
Signing time: Sat 01 Jan 2022 07:59:37 +0000
ROA not before: Sat 01 Jan 2022 07:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213122
IP address blocks: 194.49.68.0/24 maxlen: 24
194.49.69.0/24 maxlen: 24
194.49.78.0/24 maxlen: 24
194.49.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85032430 (0x5117dee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad4955f1cdbde7ed9e69de11dea5c560f60456a9
Validity
Not Before: Jan 1 07:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=936c2ff1c2af27992753fc9e008995b650b63e38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:37:a9:0e:d7:b8:bf:d8:80:82:49:3b:c5:97:
e5:3f:1d:f4:e6:79:2c:ff:e4:a7:c6:34:c4:45:a9:
4d:b0:45:5e:92:a2:cd:2d:15:a8:33:52:11:2e:66:
d6:d9:8e:72:46:44:7f:49:8a:c4:8e:4c:42:eb:b0:
ab:7d:af:aa:ca:20:ea:27:71:5c:b3:82:ad:55:59:
d8:da:b4:e3:ac:fa:64:e3:86:25:f7:6d:06:28:a2:
12:b4:ad:72:23:5f:cb:ff:b7:43:11:16:ed:2f:0c:
27:37:98:ed:23:78:13:1b:ed:e1:fe:73:2f:51:2e:
16:be:d4:87:f6:d3:6c:73:76:5d:dd:0c:95:e6:e6:
28:41:c2:44:a5:2c:4f:fc:46:1e:0c:3a:12:62:47:
1f:97:37:21:16:91:29:e1:5b:44:0b:1a:f0:d0:78:
98:cf:9b:b1:ea:f5:b6:2b:29:e2:04:ea:a4:d6:93:
88:29:d0:ff:4e:d8:00:07:08:50:ae:11:93:da:19:
f7:22:6e:00:20:6a:9c:de:f3:81:ad:2f:ce:8f:5e:
a5:04:40:08:5f:05:22:70:26:3d:bc:9f:8f:d1:44:
a3:8e:48:32:61:7e:91:ab:d3:33:32:81:d9:85:9f:
ae:0c:0a:32:c0:0c:36:4a:45:57:ee:1c:3f:3e:ac:
24:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:6C:2F:F1:C2:AF:27:99:27:53:FC:9E:00:89:95:B6:50:B6:3E:38
X509v3 Authority Key Identifier:
keyid:AD:49:55:F1:CD:BD:E7:ED:9E:69:DE:11:DE:A5:C5:60:F6:04:56:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rUlV8c295-2ead4R3qXFYPYEVqk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/k2wv8cKvJ5knU_yeAImVtlC2Pjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/1994da-fbd0-4333-b419-e56fbe3a512a/1/rUlV8c295-2ead4R3qXFYPYEVqk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.68.0/23
194.49.78.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:f4:6e:2e:bb:f7:c2:55:71:69:d3:8b:ef:f5:06:1c:38:a0:
48:4e:05:b1:69:e2:3c:9c:04:4e:d4:dd:11:ab:34:98:3e:66:
8a:1f:d4:36:72:88:e6:57:3d:7d:51:d4:9f:9c:fc:76:89:d2:
3b:6d:05:1d:a9:62:b5:05:8b:03:0b:db:2c:59:28:1a:60:1a:
fc:0b:2c:b2:9e:be:2d:df:28:03:26:73:e5:32:32:66:30:bb:
18:c7:7d:a9:58:db:bf:2e:a1:93:b9:18:e9:fe:be:60:7b:43:
14:34:5c:b0:09:61:5d:ed:6c:ec:69:0e:f1:5b:09:15:f2:92:
8a:fb:7f:a4:a8:93:f4:99:ff:75:ee:32:b3:cd:b5:c5:f1:62:
9e:83:9d:24:ef:6a:e1:26:3f:22:6c:60:b1:31:34:02:f8:f1:
6f:51:fc:4f:7b:07:0a:e9:e1:b0:a0:84:31:5b:57:e8:bd:0b:
5f:bd:90:66:67:3e:ea:a7:d5:d6:1b:d1:d0:ce:30:04:f0:65:
03:ed:b4:b0:c2:4c:3e:90:44:c3:8c:22:92:93:d8:79:96:4e:
bc:6b:0b:59:d0:3b:3a:6d:e4:70:d9:54:01:08:01:eb:1c:70:
0f:b0:9b:16:52:bc:e9:29:6a:16:fc:98:c5:5e:9a:75:b6:19:
2b:18:f9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:46 2023 by rpki-client on console-ams.rpki-client.org