Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XM3JFs0t6avcQ2e37H9SHCoC_K8.roa
File: XM3JFs0t6avcQ2e37H9SHCoC_K8.roa (raw, json)
Hash identifier: mbZ7XtefJ29ASelIh5ml+Fl/5gw1rzz2XqGzjMUwgUE=
Subject key identifier: 5C:CD:C9:16:CD:2D:E9:AB:DC:43:67:B7:EC:7F:52:1C:2A:02:FC:AF
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 0184359641DBC9EB67EF48205E870ED3965E
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XM3JFs0t6avcQ2e37H9SHCoC_K8.roa
Signing time: Tue 01 Nov 2022 23:45:50 +0000
ROA not before: Tue 01 Nov 2022 23:45:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46664
IP address blocks: 194.31.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:35:96:41:db:c9:eb:67:ef:48:20:5e:87:0e:d3:96:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Nov 1 23:45:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ccdc916cd2de9abdc4367b7ec7f521c2a02fcaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:fc:a8:fe:e6:f7:4a:45:4b:84:5f:10:59:e9:
60:53:ad:60:14:35:22:ba:f9:14:02:a2:11:4a:5d:
1c:54:a6:1a:b3:af:6d:db:e9:0e:20:ee:b2:0a:e3:
2c:7a:02:d3:79:9a:1c:93:42:28:9e:60:4f:03:bc:
62:13:e7:1e:48:77:fd:ca:90:49:2a:7b:74:99:d5:
99:47:ed:ed:66:1c:2a:fe:36:d8:cc:73:c6:99:c7:
0a:17:45:78:06:ef:b9:b8:18:54:1c:47:0b:4f:bf:
d8:ed:d1:a1:5b:74:b2:84:fb:44:6f:50:54:a4:e4:
81:3f:6e:65:83:8c:92:a5:31:10:4a:e0:5c:7e:e8:
8a:d4:08:26:73:d2:2d:47:d3:64:18:c4:3f:d0:9b:
d3:e1:65:43:fe:94:4a:f8:1c:f2:77:4e:38:80:e4:
2e:40:37:37:6a:a7:02:dc:87:b6:7d:14:f8:ae:b5:
b3:62:d2:92:b0:ef:1e:5d:52:02:46:84:90:2b:24:
31:aa:4b:e1:49:9f:57:0f:ed:1b:30:cf:9c:bc:0e:
cd:2a:de:08:c0:0b:66:6b:31:bd:68:66:05:c2:17:
cc:8e:4a:e7:19:65:06:5a:bd:b9:e7:94:de:93:3a:
1a:51:4b:58:b5:66:c7:7f:73:52:6b:ed:b6:2e:ca:
2f:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:CD:C9:16:CD:2D:E9:AB:DC:43:67:B7:EC:7F:52:1C:2A:02:FC:AF
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XM3JFs0t6avcQ2e37H9SHCoC_K8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.31.141.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:12:5a:70:17:f7:67:34:2f:f5:91:1e:1c:0c:37:c4:75:26:
6d:63:41:77:b1:a4:72:53:79:8e:e8:b9:f0:2d:32:84:06:b4:
91:67:0b:f9:2f:21:94:88:4b:0b:79:17:2f:20:e5:a9:49:1c:
3a:e5:df:7c:fa:23:50:54:0a:55:1f:74:2b:02:84:d0:99:1d:
f1:d6:d8:16:10:cf:5b:f3:23:e6:e0:05:be:95:78:59:ba:b2:
d5:4b:38:e2:e2:5b:68:1e:43:2f:c2:f1:8a:54:a0:31:6f:54:
fd:d2:38:60:72:56:f8:a9:0f:d3:f8:20:bd:7f:d2:a9:51:89:
50:e7:8e:66:7b:ec:4f:1f:cc:5f:51:f5:ec:23:8a:09:63:b2:
f1:d6:78:cd:95:90:63:f8:6d:4e:bf:8d:df:c6:c9:dc:e5:ab:
3e:d5:35:f7:55:c5:6f:75:d0:90:12:8e:d6:ca:98:5f:ce:2f:
79:32:89:8d:38:9f:75:eb:3c:5d:a9:dc:93:f3:38:08:e4:bf:
01:e1:28:7e:58:03:85:4b:1a:4e:b6:12:2c:9e:70:07:78:08:
f1:96:96:6b:3b:3b:4b:c8:8f:e4:eb:58:a1:ad:80:d3:6c:0c:
fc:9e:3b:62:01:cd:b5:08:2f:7e:eb:53:77:8a:84:03:1e:81:
f1:37:f6:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:26 2023 by rpki-client on console-ams.rpki-client.org