Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/dyVxTLkahb1tGM-KrKrQFlSsn0M.roa
File: dyVxTLkahb1tGM-KrKrQFlSsn0M.roa (raw, json)
Hash identifier: isYERxrAaLpeANStQCQ36oK0kGkPignwqq/h7a/eW7Y=
Subject key identifier: 77:25:71:4C:B9:1A:85:BD:6D:18:CF:8A:AC:AA:D0:16:54:AC:9F:43
Certificate issuer: /CN=f21d5f37506de4905e173c0f581150817250efe1
Certificate serial: 0184A95A490B079C017B263AC9BF32AA94EB
Authority key identifier: F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/dyVxTLkahb1tGM-KrKrQFlSsn0M.roa
Signing time: Thu 24 Nov 2022 11:16:17 +0000
ROA not before: Thu 24 Nov 2022 11:16:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 142430
IP address blocks: 194.69.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a9:5a:49:0b:07:9c:01:7b:26:3a:c9:bf:32:aa:94:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f21d5f37506de4905e173c0f581150817250efe1
Validity
Not Before: Nov 24 11:16:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7725714cb91a85bd6d18cf8aacaad01654ac9f43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:19:f3:28:a1:9a:43:1f:38:51:51:77:05:3c:
bc:4a:e0:be:64:be:ea:1e:b6:f7:ae:86:6a:a9:63:
39:4f:08:02:a2:d6:17:db:54:fa:e6:ad:52:5c:da:
37:35:e3:1f:89:d4:38:81:47:57:b7:18:ca:46:48:
f8:6f:f7:aa:4e:b8:64:a1:8f:84:46:9c:e9:21:86:
f6:fb:15:7f:de:89:97:c0:a6:d9:e6:1d:cf:78:68:
7b:98:cb:ea:33:fb:06:71:b8:84:fe:28:dc:34:e7:
81:ec:81:d1:db:ce:65:7e:1a:74:51:48:5e:f4:cf:
bd:86:84:29:98:0b:58:2f:4b:5c:65:a4:1e:6a:de:
1b:83:6a:e8:3f:15:76:e8:80:52:78:e2:d4:c8:bb:
75:a0:60:cf:d2:ce:91:f3:1b:98:58:5e:5d:84:7b:
c9:98:6a:f0:9a:37:cb:1f:50:f5:de:c3:17:b8:e9:
b0:e3:fb:bf:32:ba:96:5a:aa:58:d1:9a:fd:68:da:
5a:7a:b5:f4:ca:f5:df:41:93:78:43:a6:4f:f7:0a:
79:de:d0:eb:5d:a4:49:06:75:5d:76:f4:4f:b7:64:
16:04:9e:04:68:e1:96:ae:aa:f9:6a:e1:5d:f7:42:
40:15:d5:c6:6a:92:48:f5:62:1d:a8:71:a5:d7:ee:
e1:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:25:71:4C:B9:1A:85:BD:6D:18:CF:8A:AC:AA:D0:16:54:AC:9F:43
X509v3 Authority Key Identifier:
keyid:F2:1D:5F:37:50:6D:E4:90:5E:17:3C:0F:58:11:50:81:72:50:EF:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/dyVxTLkahb1tGM-KrKrQFlSsn0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/6c4d22-8ed7-4844-a298-21259dfb6ac0/1/8h1fN1Bt5JBeFzwPWBFQgXJQ7-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.160.0/24
Signature Algorithm: sha256WithRSAEncryption
18:51:6b:95:9c:a3:0c:a0:0c:20:96:dc:0a:4b:53:91:13:9a:
26:7d:a8:ff:a3:04:64:a5:75:c8:a2:33:b7:13:31:2f:35:85:
42:d0:1a:cb:07:75:21:16:95:fb:57:0f:97:c5:1f:0d:dc:bd:
e0:da:d2:8d:d3:11:16:f2:40:7b:01:60:d5:cd:a1:06:69:7e:
4f:57:0e:f1:f8:11:d6:ee:7a:ea:d5:ff:7f:d4:7c:54:07:1e:
c7:68:b3:ac:49:a5:45:f6:9c:2d:2e:a4:60:31:e4:e7:36:08:
14:97:dd:e9:c1:95:40:03:b2:c3:c6:c8:09:a6:03:3d:f4:ad:
22:0d:0a:8f:3f:ef:1d:0f:43:26:ab:e4:84:30:4f:d6:da:27:
02:02:f5:4f:35:4f:12:f5:eb:25:df:18:43:dd:3e:2c:8e:83:
88:3e:cc:09:23:41:f8:e7:f7:54:2a:96:33:38:42:a3:17:9e:
53:bf:69:8c:e3:fa:cd:41:73:60:4a:fc:50:ad:d3:58:ee:3f:
7d:2d:f0:18:ec:ac:6d:60:59:03:ba:d3:31:c2:ab:69:b6:d3:
78:96:47:f9:6e:bf:69:8b:e7:9e:81:0c:eb:f7:26:46:a4:4d:
b8:19:7a:9e:9f:95:d2:1a:4f:50:6e:33:69:ab:64:0e:cd:57:
92:e4:34:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:27 2023 by rpki-client on console-fra.rpki-client.org