Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Kd9J97sMNxE2gyKi7cess0RXMXU.roa
File: Kd9J97sMNxE2gyKi7cess0RXMXU.roa (raw, json)
Hash identifier: +IAHLIRaq5X7y+3jtCrOHbx77FMEDGadKylamMpK3Ng=
Subject key identifier: 29:DF:49:F7:BB:0C:37:11:36:83:22:A2:ED:C7:AC:B3:44:57:31:75
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01830C42B7F008D60D2D8CE3F3F84875FCF1
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Kd9J97sMNxE2gyKi7cess0RXMXU.roa
Signing time: Mon 05 Sep 2022 06:07:22 +0000
ROA not before: Mon 05 Sep 2022 06:07:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 194.233.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:42:b7:f0:08:d6:0d:2d:8c:e3:f3:f8:48:75:fc:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Sep 5 06:07:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=29df49f7bb0c3711368322a2edc7acb344573175
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:22:76:2b:ea:a3:b2:b8:5b:ce:99:bb:19:d0:
5a:be:99:7d:47:93:dd:84:00:4f:d6:fe:e3:c2:7f:
de:f8:96:1e:4a:45:1f:e1:ac:28:28:55:c5:88:b7:
76:9f:ee:54:41:aa:bd:1b:f9:90:07:eb:87:a7:d5:
eb:67:40:dc:7f:94:77:0d:bb:22:77:cd:13:2e:4f:
e2:fe:8e:7c:7a:9d:cf:17:4c:a9:84:e5:58:af:ff:
41:58:34:8e:12:ab:8c:60:6a:b2:c6:2c:f7:92:f1:
dd:29:da:9d:20:ec:25:da:3e:31:d4:bd:8e:9f:87:
0a:c8:73:d4:7e:83:90:bd:5f:d3:cb:f2:10:c7:a6:
3b:4d:39:70:a6:ae:d4:e5:9c:48:60:01:fa:9e:02:
c3:33:45:39:78:d1:7b:de:f4:08:e5:94:92:f2:64:
db:9d:9d:67:3c:07:51:79:7b:24:41:5b:de:aa:cc:
93:59:60:c6:b9:1e:72:22:d1:f2:6b:45:9e:72:d0:
76:ec:d5:40:57:ca:19:db:31:d1:b0:17:6f:73:5a:
66:2e:50:ca:96:1b:28:38:99:ab:ef:38:c4:c3:8c:
5d:76:df:59:da:e6:9b:df:0b:0a:2b:07:2f:60:10:
b4:4c:3a:09:cd:75:63:ea:ad:20:99:09:ed:b6:c3:
5d:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:DF:49:F7:BB:0C:37:11:36:83:22:A2:ED:C7:AC:B3:44:57:31:75
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/Kd9J97sMNxE2gyKi7cess0RXMXU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.12.0/22
Signature Algorithm: sha256WithRSAEncryption
8f:77:c0:f1:a2:12:5b:90:f7:95:5e:85:96:84:2c:6f:c4:8c:
d6:c4:91:0a:e5:cf:db:5e:8b:2c:c1:83:a8:d2:11:b4:be:51:
22:76:f5:f9:a1:d0:80:93:94:cc:ed:d1:53:64:0e:99:1f:fa:
5b:bb:d3:ee:26:17:cb:9b:f3:7e:d9:16:b7:d8:0a:fb:f6:12:
da:b7:da:cf:c4:e7:ac:6d:5b:e6:2f:32:d2:5b:bb:e0:44:17:
46:a0:9d:9d:6d:38:cb:11:24:f8:80:59:4a:df:aa:bf:13:63:
a8:6b:c4:23:20:e6:93:7b:dc:e0:ef:5e:5d:e0:19:76:25:91:
b6:3b:ef:b3:0a:7d:02:22:54:13:e3:01:e1:e5:0b:30:c2:7d:
1c:e8:b2:14:a1:0b:bd:1c:8e:e0:81:55:ba:8b:fb:ac:36:d8:
dd:98:4c:f2:19:9d:67:60:c2:b4:d3:9c:6a:bc:1c:58:12:4b:
a2:c4:6a:42:ef:77:21:49:b1:34:d5:db:e1:72:22:ad:35:a8:
8d:86:d5:9a:be:e3:86:74:cd:4c:17:ec:a1:69:67:19:39:a6:
26:ac:7a:92:c0:1f:08:de:9f:a2:14:b6:5e:07:41:d5:70:66:
f7:d7:0c:ab:80:22:e0:25:6f:72:d9:6e:79:09:c2:18:c2:0e:
4a:36:8b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org