Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/R-v9xlZXE1z-MM74NMUI16umj8I.roa
File: R-v9xlZXE1z-MM74NMUI16umj8I.roa (raw, json)
Hash identifier: vuGgfFp+tWvKNYS3knzo+9e6ReknwHz7ykOe4DZEHQ0=
Subject key identifier: 47:EB:FD:C6:56:57:13:5C:FE:30:CE:F8:34:C5:08:D7:AB:A6:8F:C2
Certificate issuer: /CN=0807601bc44422c8d23a3cd72bfea1bbf2a0563a
Certificate serial: 148C6D6B
Authority key identifier: 08:07:60:1B:C4:44:22:C8:D2:3A:3C:D7:2B:FE:A1:BB:F2:A0:56:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAdgG8REIsjSOjzXK_6hu_KgVjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/R-v9xlZXE1z-MM74NMUI16umj8I.roa
Signing time: Sat 01 Jan 2022 02:54:35 +0000
ROA not before: Sat 01 Jan 2022 02:54:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8823
IP address blocks: 194.180.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344747371 (0x148c6d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0807601bc44422c8d23a3cd72bfea1bbf2a0563a
Validity
Not Before: Jan 1 02:54:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47ebfdc65657135cfe30cef834c508d7aba68fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:83:a9:b6:e0:8a:4f:54:e2:d0:ee:1a:11:a5:
e8:41:02:01:e0:f0:6e:fd:01:36:6b:0b:fb:bb:02:
c9:f6:65:9c:97:79:57:70:e1:b2:ab:3d:9b:bc:92:
80:f6:70:e0:d6:7b:71:4b:80:84:5f:96:8e:0b:46:
b2:84:15:d9:79:03:7f:e8:80:8d:6b:1a:19:c3:44:
71:9c:a5:3b:a4:1e:e3:c2:35:95:d6:3e:41:ec:99:
6b:4f:5d:5f:01:70:a9:0d:0b:1b:28:ce:27:28:6d:
89:b2:e9:96:b6:2c:84:ab:4d:43:d9:8b:40:17:36:
4c:73:24:25:02:ed:8a:9c:df:b6:4f:a1:ad:27:a3:
33:dc:13:68:bb:8f:d1:7d:7f:a0:bd:e7:25:17:c2:
15:99:3f:d8:2f:52:e5:0f:19:e3:78:dc:96:96:26:
2c:fb:0e:e0:10:33:c2:ed:2a:62:58:03:f5:6f:d1:
92:ea:68:e0:7f:93:22:45:7d:e9:38:b8:87:d9:8f:
2c:63:b1:13:a6:78:ec:e8:35:93:b7:76:d4:43:86:
0f:77:51:ab:c3:9f:0c:14:61:b1:af:e8:cc:e5:b4:
60:ef:22:e1:ff:4b:2f:a4:a8:1a:00:a0:a1:c8:db:
f3:65:27:42:ec:94:99:31:8c:9f:d2:4a:39:d6:e2:
42:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:EB:FD:C6:56:57:13:5C:FE:30:CE:F8:34:C5:08:D7:AB:A6:8F:C2
X509v3 Authority Key Identifier:
keyid:08:07:60:1B:C4:44:22:C8:D2:3A:3C:D7:2B:FE:A1:BB:F2:A0:56:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAdgG8REIsjSOjzXK_6hu_KgVjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/R-v9xlZXE1z-MM74NMUI16umj8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/182621-cc99-4385-9368-5d61fe2631d0/1/CAdgG8REIsjSOjzXK_6hu_KgVjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.199.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:f1:4b:62:c0:66:28:62:40:97:c2:f8:87:da:03:d5:79:65:
52:e5:ec:6c:6a:28:41:2d:32:ad:99:55:f3:69:fc:8e:2b:b6:
cb:d8:e4:1e:18:c0:f6:85:dd:d3:94:95:ff:34:2b:5f:b7:e4:
42:7d:0e:36:9a:06:67:a2:23:a3:8d:6b:6f:0d:da:8d:dc:60:
61:7b:03:90:e5:71:dc:d6:ac:27:cf:21:f1:c1:a2:37:8e:56:
f0:03:e0:58:5a:9d:9c:d4:51:24:43:75:4b:61:27:53:a7:c5:
aa:82:ad:ba:1a:8b:77:53:69:c8:12:96:9c:16:a8:d1:63:de:
47:72:77:33:b9:72:85:85:83:ef:96:a8:48:fa:ad:ab:30:e5:
09:cd:c0:2c:26:c9:96:64:ed:76:03:55:48:e3:ad:51:37:48:
5b:d6:0c:f6:ad:31:a0:68:ff:44:8c:ac:15:7f:61:7b:94:e1:
38:48:e9:3d:8c:0a:d2:ac:28:b6:b4:53:ab:11:1f:07:4d:c2:
d5:6d:94:7f:11:b1:6e:88:65:9c:12:aa:ce:37:d2:b0:71:ad:
61:46:54:2b:40:5c:75:64:56:1a:6f:3b:4d:48:ea:ac:ed:77:
96:a8:d0:04:fd:54:5d:aa:11:c9:8d:19:b3:8b:b7:90:14:42:
11:4e:78:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:26 2023 by rpki-client on console-fra.rpki-client.org