Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/pGnvK2Tr4W_ZF2AGDYaKC1R9-j8.roa
File: pGnvK2Tr4W_ZF2AGDYaKC1R9-j8.roa (raw, json)
Hash identifier: DOGZRhlRHur7RnnNrDY9YHAf2A7iMwbovnhDRgKuczA=
Subject key identifier: A4:69:EF:2B:64:EB:E1:6F:D9:17:60:06:0D:86:8A:0B:54:7D:FA:3F
Certificate issuer: /CN=437a5c7e7c7eab2392372fc38d48c7a977b24abd
Certificate serial: 02055B05
Authority key identifier: 43:7A:5C:7E:7C:7E:AB:23:92:37:2F:C3:8D:48:C7:A9:77:B2:4A:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q3pcfnx-qyOSNy_DjUjHqXeySr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/pGnvK2Tr4W_ZF2AGDYaKC1R9-j8.roa
Signing time: Sat 01 Jan 2022 04:02:06 +0000
ROA not before: Sat 01 Jan 2022 04:02:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9211
IP address blocks: 194.76.62.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33905413 (0x2055b05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437a5c7e7c7eab2392372fc38d48c7a977b24abd
Validity
Not Before: Jan 1 04:02:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a469ef2b64ebe16fd91760060d868a0b547dfa3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:55:3b:9a:55:97:9e:02:a0:ff:90:98:81:80:
95:02:00:de:1f:09:ca:d5:62:0c:ee:9e:07:ae:7b:
1b:31:46:95:33:81:13:1b:78:c3:e7:e9:01:6c:3d:
d0:3e:2c:ce:b8:ef:27:d1:88:d1:ef:24:a5:44:9c:
df:03:92:59:f6:fa:57:a3:30:98:4f:21:ba:3a:f6:
a3:5a:c9:09:55:d4:bf:92:b2:52:1d:fb:08:b3:df:
f6:cb:c9:58:0e:fe:b2:73:3e:73:80:a2:07:cc:a8:
60:36:35:08:d6:0d:8b:32:36:da:c7:ba:97:10:e0:
c7:6d:40:cd:65:a6:7a:6a:3b:ad:27:40:98:d5:68:
03:c7:69:4e:b2:44:1c:d2:6f:79:27:44:cc:e2:db:
82:c2:f0:ff:ba:ba:da:db:da:03:29:4d:13:1a:c2:
1f:de:cf:26:bc:ca:f5:14:6a:7e:50:c7:68:3c:e6:
30:2c:05:93:6e:8c:1e:ce:56:23:2d:d3:05:c7:d8:
85:86:7e:2c:cb:0a:1e:61:5d:46:3f:a8:cc:ac:e6:
d3:85:2b:56:d8:e1:41:cf:a7:d7:0b:81:db:17:61:
5f:0f:84:f0:bd:6c:03:e0:d5:64:09:1a:91:99:87:
23:2f:11:7d:b6:37:04:57:17:bd:d5:34:0b:59:fb:
ad:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:69:EF:2B:64:EB:E1:6F:D9:17:60:06:0D:86:8A:0B:54:7D:FA:3F
X509v3 Authority Key Identifier:
keyid:43:7A:5C:7E:7C:7E:AB:23:92:37:2F:C3:8D:48:C7:A9:77:B2:4A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q3pcfnx-qyOSNy_DjUjHqXeySr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/pGnvK2Tr4W_ZF2AGDYaKC1R9-j8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/Q3pcfnx-qyOSNy_DjUjHqXeySr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.62.0/23
Signature Algorithm: sha256WithRSAEncryption
56:41:0a:39:57:46:d7:54:08:9f:b7:1a:a9:58:14:c9:fa:02:
eb:55:f9:5b:1d:6d:6d:59:ab:68:86:55:97:14:a4:d0:e3:d3:
07:1e:75:07:f3:1d:79:6d:5e:76:d3:40:07:3e:ff:12:c4:ef:
71:c1:46:a9:14:2e:ea:5f:59:9a:de:c1:cd:31:e3:4a:54:35:
87:97:78:73:60:93:d7:23:53:0b:49:78:27:20:db:cd:e5:70:
38:05:c3:39:00:8c:72:3a:50:6f:77:28:e7:c5:fa:d3:8c:65:
79:25:fa:40:91:0c:d3:f2:b8:e0:ee:27:ca:78:d6:14:62:3a:
d0:a9:b2:d9:f2:d2:b0:2f:6f:a6:a5:46:d5:5f:3a:46:8c:74:
af:ef:85:0c:5f:6f:cf:c9:90:e0:97:5d:c2:98:72:6e:47:b4:
c6:bc:bb:ca:eb:f1:9c:ee:9b:e9:aa:0b:b0:64:21:0a:f6:8d:
11:87:a4:57:2d:87:b9:b9:52:8d:22:ce:91:eb:cb:c0:a9:34:
67:79:86:ef:03:ab:56:b1:8a:35:97:ef:69:e7:6e:5f:3e:6f:
c4:68:08:e7:3b:e0:db:78:b3:7a:fb:99:2d:b4:63:73:bf:55:
e1:8d:2c:3a:48:68:bf:31:4d:01:6b:af:9c:aa:3a:2d:f7:82:
8a:f6:ac:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:25 2024 by rpki-client on console-ams.rpki-client.org