Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/8kn0zVz3pB2P_7JSXkMNXK8dJi4.roa
File: 8kn0zVz3pB2P_7JSXkMNXK8dJi4.roa (raw, json)
Hash identifier: RDmpb6MpIm7qw1WM3/CfQCKvftSVVRWE5yypWi2aBrg=
Subject key identifier: F2:49:F4:CD:5C:F7:A4:1D:8F:FF:B2:52:5E:43:0D:5C:AF:1D:26:2E
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0C0F4685
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/8kn0zVz3pB2P_7JSXkMNXK8dJi4.roa
Signing time: Thu 03 Feb 2022 12:35:33 +0000
ROA not before: Thu 03 Feb 2022 12:35:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.233.144.0/24 maxlen: 24
194.233.151.0/24 maxlen: 24
194.163.90.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 202327685 (0xc0f4685)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Feb 3 12:35:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f249f4cd5cf7a41d8fffb2525e430d5caf1d262e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:77:06:13:ce:d1:44:d2:aa:0a:96:7f:91:35:
d1:68:50:58:5a:68:4b:a8:75:79:bd:67:b0:b0:7a:
f9:56:80:6c:14:23:d4:20:04:f3:ad:75:70:9e:4d:
3a:73:7f:00:77:92:48:64:ac:ae:35:6d:b4:df:37:
ae:d5:f3:6d:51:b3:76:90:61:b1:c0:34:d5:fe:27:
c0:2f:e5:ce:9c:6e:85:25:8a:0b:dc:e4:6e:49:af:
df:6c:7c:dd:08:22:6c:da:fb:dd:d2:22:1e:99:36:
59:ad:94:eb:45:5a:44:60:26:17:17:aa:67:98:62:
c0:9f:cc:28:f6:75:ea:c6:00:8c:45:f7:9e:f5:86:
c3:78:de:39:eb:2d:6a:64:80:63:5d:43:21:c5:a5:
6d:ec:e2:0b:57:61:91:98:b6:7c:38:da:ab:da:b2:
94:78:07:9a:30:cb:fe:11:2e:a6:f4:9b:5f:21:e3:
82:c6:c3:09:7c:10:29:3b:a0:f3:44:b8:ac:e9:52:
82:e8:aa:c4:67:5c:d2:00:f9:24:06:c3:b2:6e:00:
a5:52:9e:21:93:c6:e2:02:0b:a7:04:c0:40:f9:83:
d8:b5:b3:08:6c:71:24:d6:fc:a9:da:11:1f:ca:3b:
74:85:d7:e5:0b:87:73:c3:7b:45:3d:bd:1e:1c:29:
71:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:49:F4:CD:5C:F7:A4:1D:8F:FF:B2:52:5E:43:0D:5C:AF:1D:26:2E
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/8kn0zVz3pB2P_7JSXkMNXK8dJi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.163.90.0/24
194.233.144.0/24
194.233.151.0/24
Signature Algorithm: sha256WithRSAEncryption
80:32:21:d7:c6:a4:b8:b2:0d:fd:63:af:7f:c2:6a:9f:bd:2b:
bf:c3:64:b9:2f:c7:dc:33:e6:fc:bd:8e:ee:f9:33:71:15:3d:
a2:96:37:e4:eb:26:82:fa:66:10:63:3e:61:20:c8:5b:6c:7f:
bc:23:3d:6c:ed:3d:cd:b5:5e:6a:af:39:5d:ef:95:0f:31:45:
9f:d5:98:84:06:8b:85:42:8b:c3:70:e3:ca:b9:9f:7a:04:fb:
4f:17:73:f1:b1:f6:cb:83:e5:34:b1:1d:86:f5:09:a5:68:08:
cb:17:2d:f1:93:cf:11:30:c3:75:7d:45:52:e0:54:71:b7:86:
da:3f:2d:28:c5:c7:91:9a:0b:31:6b:e2:af:36:db:e4:58:6e:
25:b5:f7:60:f2:72:76:e8:4a:0a:1f:f9:01:d5:ac:60:f7:8b:
fa:d4:71:86:c6:10:39:8f:f1:e3:2e:9f:5e:d0:0c:af:88:1a:
1c:7d:ef:36:d2:27:04:07:8e:c0:45:fc:cf:35:52:29:83:b2:
63:ef:d2:e5:60:67:23:62:b0:b6:ea:c2:34:ff:1d:3d:61:c6:
ff:58:d4:9b:f7:ed:2b:96:7a:25:89:4a:37:74:e1:c5:5a:f5:
45:d6:8e:c6:cf:c2:a9:35:1e:49:0c:ae:62:b1:37:49:40:e4:
70:d6:7e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:41 2023 by rpki-client on console-fra.rpki-client.org