Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/1_igbOO8R1At57WZMRS-GMTd-fs.roa
File: 1_igbOO8R1At57WZMRS-GMTd-fs.roa (raw, json)
Hash identifier: JCpvYFeLoD3lJH6huQeFLsGAdofpbBQke5cE+jjzpR0=
Subject key identifier: D7:F8:A0:6C:E3:BC:47:50:2D:E7:B5:99:31:14:BE:18:C4:DD:F9:FB
Certificate issuer: /CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Certificate serial: 358654
Authority key identifier: D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/1_igbOO8R1At57WZMRS-GMTd-fs.roa
Signing time: Sat 01 Jan 2022 03:53:58 +0000
ROA not before: Sat 01 Jan 2022 03:53:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197016
IP address blocks: 194.8.236.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3507796 (0x358654)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1bf176af8dba30fef325365ef3404812ce2d84a
Validity
Not Before: Jan 1 03:53:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7f8a06ce3bc47502de7b5993114be18c4ddf9fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:c1:ce:f9:44:4d:8b:84:81:06:b1:f1:e9:d7:
71:93:24:42:5a:3c:5c:3e:8b:eb:29:38:70:94:ee:
fc:9f:54:fd:7c:c7:fb:70:d7:b2:cf:c2:db:ea:fd:
3a:8a:a8:01:35:db:be:71:35:48:ec:22:d9:54:b2:
11:2b:67:31:73:90:8e:de:66:e1:d0:55:ec:3c:22:
a0:fc:84:05:64:d8:43:50:65:da:a7:df:4a:2e:ab:
81:9a:19:2d:e2:ce:06:e7:63:06:7b:98:af:6d:c6:
5f:c0:76:e0:f6:42:0b:19:2a:ca:6d:fa:cf:82:c2:
4a:7b:15:de:c0:0a:67:f3:6e:3a:89:df:c6:4b:7e:
97:47:a5:55:a0:84:fa:5b:a5:79:a0:2a:77:18:1c:
2c:68:08:50:13:3c:a4:23:36:1a:f0:6e:9d:25:a5:
2f:10:94:5f:8c:91:e7:3d:56:d8:55:03:0f:94:c9:
4d:e3:f5:fe:99:3b:45:47:d8:9f:fe:80:19:27:5b:
dd:80:fc:23:2d:a4:1f:bb:c0:6f:66:83:dd:85:8a:
26:6f:2f:38:fc:15:aa:ef:5e:cf:4f:68:aa:cb:0c:
b5:a6:f7:a4:f1:ff:2a:db:83:7b:c1:da:89:a7:4f:
61:02:fc:7b:6b:92:2a:5a:8e:7d:b3:16:cc:f8:e7:
d8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:F8:A0:6C:E3:BC:47:50:2D:E7:B5:99:31:14:BE:18:C4:DD:F9:FB
X509v3 Authority Key Identifier:
keyid:D1:BF:17:6A:F8:DB:A3:0F:EF:32:53:65:EF:34:04:81:2C:E2:D8:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b8Xavjbow_vMlNl7zQEgSzi2Eo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/1_igbOO8R1At57WZMRS-GMTd-fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/abcd8e-b04b-48e8-8dac-fd559242d471/1/0b8Xavjbow_vMlNl7zQEgSzi2Eo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.236.0/23
Signature Algorithm: sha256WithRSAEncryption
03:f0:6c:c7:6e:bc:c1:96:71:c5:98:dd:66:af:18:81:80:ee:
69:7e:26:36:f5:aa:df:a1:2b:c9:c0:17:79:c8:cb:4f:a1:d6:
bb:13:a9:bf:63:bd:6b:ef:29:7c:40:a9:0e:d2:cc:60:e4:9b:
33:e3:bb:a2:56:e0:b7:96:4b:57:d6:98:2c:af:9c:46:50:22:
0f:ed:16:b8:98:7f:8c:cb:64:86:e8:6e:2d:d2:36:a0:bd:84:
59:39:b3:6a:14:62:fb:4e:e3:dc:cb:f1:96:2d:90:ac:db:ef:
35:5c:59:78:f8:e2:10:c4:87:db:52:4a:06:8e:73:e0:01:08:
b2:b2:d8:f6:21:d1:a5:5e:02:fe:aa:15:6c:0e:42:7a:ba:6c:
58:14:39:88:79:3a:e5:30:aa:52:51:25:40:41:f5:e4:1e:e8:
61:43:3d:82:45:a7:b0:e6:89:5d:2b:94:fb:b2:54:8d:1a:d5:
4f:fe:1f:78:21:20:36:3d:32:78:6c:8a:f5:e8:74:f5:ed:01:
17:30:c7:e5:ff:57:f2:b8:41:44:fb:ab:0f:33:38:eb:26:20:
f2:4b:84:ff:9d:f8:7f:a5:1f:60:6d:ca:1f:3d:fc:72:5e:fe:
a0:6d:8f:e0:8a:7d:a6:14:4b:2f:3a:5f:16:9b:03:48:5b:91:
33:f1:74:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:49 2023 by rpki-client on console-ams.rpki-client.org