Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/dNfSWGvnUrjgcAEt1oqliZMDqog.roa
File: dNfSWGvnUrjgcAEt1oqliZMDqog.roa (raw, json)
Hash identifier: /pPx17V+kOUj1/xPdr+WnVEFh+Ck76VuidAA89wQDvg=
Subject key identifier: 74:D7:D2:58:6B:E7:52:B8:E0:70:01:2D:D6:8A:A5:89:93:03:AA:88
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 08F8D2AF
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/dNfSWGvnUrjgcAEt1oqliZMDqog.roa
Signing time: Sat 01 Jan 2022 16:00:19 +0000
ROA not before: Sat 01 Jan 2022 16:00:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23959
IP address blocks: 194.50.18.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150524591 (0x8f8d2af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=74d7d2586be752b8e070012dd68aa5899303aa88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:62:05:76:03:f0:6e:71:b7:2e:87:75:08:ba:
cf:dd:4e:4d:57:07:cc:56:35:e9:cd:82:06:a4:a3:
49:9a:b1:a5:c9:a2:39:c5:b6:a5:37:a3:f1:3e:14:
f9:88:bd:9c:70:51:f7:05:1a:0d:2a:b1:78:8a:15:
74:a6:41:7c:20:fb:cd:35:09:8a:60:f8:e3:b6:42:
b7:64:fa:3b:b4:75:10:d4:46:a5:0a:1f:ea:b1:44:
a3:fa:6f:02:f5:a6:05:0c:04:20:03:61:8d:23:86:
a1:f1:c1:01:f9:f8:a6:08:53:ab:3d:16:55:e9:3f:
dd:6a:80:07:0e:98:f9:b8:57:88:7c:a7:a0:86:28:
04:33:87:b5:56:5e:61:42:6c:2b:1c:d8:01:43:74:
d5:af:c7:01:41:d3:a2:ef:79:7e:f8:7e:cc:e7:a9:
55:94:e9:bf:76:6c:a4:cd:c6:6a:23:ca:03:50:3f:
b6:18:b1:b6:dc:21:36:58:35:63:1a:8b:fd:f3:29:
bc:66:a6:18:7f:f4:14:b1:fc:fb:0a:30:8e:06:5e:
11:4f:c6:9c:f0:6e:92:39:32:ef:a8:5a:1e:8d:06:
8d:a4:21:ed:e7:b5:a4:2d:67:33:08:ef:05:d5:55:
44:c2:44:46:30:21:e4:e4:04:df:75:42:91:10:c0:
5e:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:D7:D2:58:6B:E7:52:B8:E0:70:01:2D:D6:8A:A5:89:93:03:AA:88
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/dNfSWGvnUrjgcAEt1oqliZMDqog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.18.0/24
Signature Algorithm: sha256WithRSAEncryption
81:67:5c:49:bd:bd:08:86:6c:d0:60:f9:68:b4:3e:48:a4:a6:
ce:77:da:43:28:19:83:d9:06:03:e9:23:5b:e5:93:62:5a:ad:
64:ab:10:06:95:25:7d:84:15:72:35:01:70:06:38:60:f0:c6:
37:91:4e:b8:ba:06:88:21:10:89:58:b0:ec:7c:b7:50:e7:d1:
f6:23:e0:1f:d1:7c:7d:7e:14:a0:45:82:ee:92:de:54:85:bc:
4b:52:86:d9:57:b8:67:96:1c:32:3f:fe:30:a9:33:1d:0d:66:
3e:40:86:fe:27:69:61:4c:46:2c:79:b4:40:2d:b9:d2:af:a2:
f1:b7:5b:f2:01:91:d9:3e:4a:43:fa:21:db:71:f8:4d:a0:e9:
07:f4:63:48:fb:20:58:6b:37:af:dc:30:6b:86:12:15:e8:2b:
54:f2:23:80:8b:4f:6a:b6:47:a0:3e:21:73:1a:3f:57:f7:6d:
71:b3:e2:da:33:12:59:8e:ef:2b:48:60:6c:84:16:7c:5d:10:
59:46:af:97:7c:7c:40:77:3c:09:48:5d:75:24:ed:9a:43:32:
c9:07:e9:08:27:c9:0a:14:24:89:a8:82:a6:da:48:e8:a7:bb:
b9:b8:4f:d7:2f:1f:df:34:b2:62:60:0f:98:19:45:3f:ea:89:
cd:25:ca:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:39 2023 by rpki-client on console-fra.rpki-client.org