Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/7NggUtdPfVKml8xQ7WUa6cnUzVI.roa
File: 7NggUtdPfVKml8xQ7WUa6cnUzVI.roa (raw, json)
Hash identifier: 2AN+VSkzxDz6mFiGzzqoEgJeWtvToTTOWHzAJ4x8ftQ=
Subject key identifier: EC:D8:20:52:D7:4F:7D:52:A6:97:CC:50:ED:65:1A:E9:C9:D4:CD:52
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CCDA408
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/7NggUtdPfVKml8xQ7WUa6cnUzVI.roa
Signing time: Thu 07 Apr 2022 20:30:20 +0000
ROA not before: Thu 07 Apr 2022 20:30:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 194.233.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 214803464 (0xccda408)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 7 20:30:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecd82052d74f7d52a697cc50ed651ae9c9d4cd52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:da:a3:a8:25:9b:95:83:7a:19:32:c5:c5:87:
ae:da:31:3a:90:f9:8a:9f:e2:b2:57:05:e8:9d:92:
99:67:da:d3:56:4d:83:86:1a:5f:57:67:72:75:b2:
36:6b:68:d3:55:a7:c1:67:11:6f:fd:2d:79:a1:42:
57:f0:f8:a4:50:48:8a:47:8b:bf:97:85:16:e7:32:
99:2d:db:25:1e:a1:11:07:5d:1b:6f:28:99:a8:91:
3d:47:4b:56:2e:8e:a2:ae:b7:39:3c:42:43:4c:bc:
d1:ea:6d:60:f0:91:73:42:52:fd:74:cd:ad:ca:6c:
76:ec:84:81:0e:ff:04:e7:3f:c2:9b:40:a0:02:75:
a2:19:ee:ed:5a:6a:67:98:04:ec:12:b7:4b:be:30:
7f:cc:3d:2e:f0:f9:86:76:99:84:ec:1f:30:3a:a5:
18:d5:94:4b:72:cc:33:4a:06:25:20:9a:da:28:f9:
96:04:85:c3:44:97:6c:38:23:8d:d8:eb:3f:7d:c1:
19:b2:1a:76:c3:fb:8f:b9:78:44:43:a1:b5:f7:86:
ef:93:e1:fb:cd:0b:89:52:e4:8d:98:23:a3:88:01:
70:27:7a:ae:29:33:3a:f3:8d:3d:9e:1c:f2:d8:13:
73:fc:e0:80:8d:44:46:c5:48:19:73:f6:19:21:19:
18:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:D8:20:52:D7:4F:7D:52:A6:97:CC:50:ED:65:1A:E9:C9:D4:CD:52
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/7NggUtdPfVKml8xQ7WUa6cnUzVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.8.0/22
Signature Algorithm: sha256WithRSAEncryption
59:35:fe:f8:26:6a:ed:1e:90:ee:09:3a:bd:c8:16:a1:fb:38:
c6:6f:e7:66:f8:96:05:85:fa:4c:72:76:05:7d:a3:ce:57:3e:
87:6b:a4:1c:56:d7:c0:cf:ed:db:17:a0:49:ea:1e:2a:97:7f:
25:a5:9f:71:55:2f:85:85:fd:3d:60:09:51:f2:5c:97:9d:57:
da:93:69:95:e0:a9:87:34:f2:8c:67:33:01:c6:11:c0:c6:71:
b7:d8:4c:c8:ca:26:e8:e3:05:2b:93:42:08:93:7a:3f:49:21:
6d:4d:5c:e6:5f:d3:f6:01:62:8e:88:60:9a:53:b6:f9:22:c6:
c1:ff:bf:f7:54:bf:9b:14:d7:a5:ea:07:15:8b:70:c9:95:28:
d7:f2:cf:ed:c7:3b:c3:b8:33:96:79:eb:fa:fd:6e:de:2f:af:
ae:22:0a:55:1b:12:08:2d:29:ba:ef:ee:c7:19:11:6b:0a:64:
ee:57:81:e5:f6:c3:93:aa:1e:86:5f:fa:a5:c3:a2:6c:46:a3:
87:4c:61:52:2e:90:b5:8a:41:05:c2:7d:b9:4c:33:b3:29:a4:
1b:2f:d2:df:2a:f3:44:62:66:a2:23:22:62:d1:b2:17:b3:34:
d1:d6:99:30:71:b9:c2:3c:94:e4:46:38:45:f2:30:c7:4a:d8:
11:89:9e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org