Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/V-R0U-QckHzXEsjms4WmQ_LkRC4.roa
File: V-R0U-QckHzXEsjms4WmQ_LkRC4.roa (raw, json)
Hash identifier: 9W7KqTxD1XV+qB+A7M2cU1O5kGz/cyTuaP+Klb59T3w=
Subject key identifier: 57:E4:74:53:E4:1C:90:7C:D7:12:C8:E6:B3:85:A6:43:F2:E4:44:2E
Certificate issuer: /CN=3b1f8da9cb0e362c424196b20e604e94a83bc850
Certificate serial: 012A3268
Authority key identifier: 3B:1F:8D:A9:CB:0E:36:2C:42:41:96:B2:0E:60:4E:94:A8:3B:C8:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ox-NqcsONixCQZayDmBOlKg7yFA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/V-R0U-QckHzXEsjms4WmQ_LkRC4.roa
Signing time: Sat 01 Jan 2022 01:56:54 +0000
ROA not before: Sat 01 Jan 2022 01:56:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 194.56.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19542632 (0x12a3268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b1f8da9cb0e362c424196b20e604e94a83bc850
Validity
Not Before: Jan 1 01:56:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57e47453e41c907cd712c8e6b385a643f2e4442e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:56:ac:54:c9:33:07:43:25:f4:21:23:62:8c:
0b:a8:66:c2:97:95:ed:67:67:a6:d9:a4:f1:e5:7f:
64:f4:7b:5a:54:45:db:d0:85:50:7d:21:5e:81:33:
47:f3:62:32:4d:c5:b1:c7:26:71:4c:c8:b9:1f:35:
c1:77:69:85:b3:85:39:b5:aa:c3:71:c7:45:17:e5:
dd:be:25:16:4e:be:b8:2a:23:2c:e1:82:27:60:71:
33:76:bc:18:86:40:73:55:c4:de:e1:70:0e:3c:22:
7a:7b:9e:e7:e1:40:37:84:b8:48:fa:3a:e9:88:07:
78:8c:f8:cb:14:ed:9b:0b:4e:d3:95:16:ca:03:ed:
c5:f8:fc:b9:d2:f2:08:c1:34:38:8e:b5:7e:9b:65:
20:d3:26:f4:58:3f:ee:50:24:bf:47:20:d4:31:76:
16:04:ab:ed:77:e7:8b:73:91:f9:56:9f:40:da:a2:
66:d8:bf:9c:02:9d:9b:a3:e4:d8:0a:63:4b:82:74:
ca:1d:25:4b:b1:ef:81:1f:94:ab:25:3b:37:88:29:
14:c8:9b:4a:0c:3c:dd:c0:7d:f6:18:d8:a7:c5:db:
65:c3:9c:0f:0d:62:de:7f:4b:36:13:87:e9:9d:b3:
ff:b7:18:21:84:6a:f6:7a:67:16:35:a7:e6:38:42:
24:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E4:74:53:E4:1C:90:7C:D7:12:C8:E6:B3:85:A6:43:F2:E4:44:2E
X509v3 Authority Key Identifier:
keyid:3B:1F:8D:A9:CB:0E:36:2C:42:41:96:B2:0E:60:4E:94:A8:3B:C8:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ox-NqcsONixCQZayDmBOlKg7yFA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/V-R0U-QckHzXEsjms4WmQ_LkRC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/2e9456-37c3-4274-bc31-64ee464b6404/1/Ox-NqcsONixCQZayDmBOlKg7yFA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.56.149.0/24
Signature Algorithm: sha256WithRSAEncryption
82:79:b9:e7:a4:28:9c:09:60:2c:ad:65:35:c7:8d:45:cd:55:
08:7e:be:38:ca:a3:64:42:f2:60:45:de:8d:c1:e3:76:59:99:
b2:e1:e1:87:7e:40:69:d7:78:d9:8a:3b:0d:3a:2d:4f:ed:5b:
ac:4b:13:b2:0a:9d:85:e0:28:37:72:3f:70:ca:d3:d4:8d:df:
74:9e:4a:fd:72:3d:a8:7e:b5:33:09:1e:89:b6:15:76:d4:ad:
e9:e3:82:5a:85:3a:61:48:ef:a6:e0:bd:3f:ba:e0:a8:94:33:
57:e6:92:9f:2d:32:c0:99:8b:ca:19:45:5d:07:87:6f:ba:f2:
30:66:17:6a:ce:2f:c4:82:f5:b5:d8:9c:87:5a:a6:94:0a:51:
81:af:49:b2:b7:d6:65:89:6d:4b:7d:cb:e9:12:22:a2:e2:23:
86:80:24:39:8d:37:d5:e7:13:de:d3:a1:7f:91:7f:4c:fa:1c:
b1:80:ad:41:13:69:2c:01:64:13:7a:46:ef:5d:52:05:07:c3:
99:57:9c:41:e1:a2:69:f4:89:cc:55:7c:fa:d1:7d:70:a7:90:
b8:e9:22:a9:f7:f7:2e:06:39:89:26:19:d3:0e:7b:e4:f9:0d:
a2:91:28:81:d9:ad:77:70:cf:63:6d:b5:d5:04:7a:68:fb:3a:
d2:b1:2e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org