Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/R13XxadQz2bwAYSCZBsfHYmHnII.roa
File: R13XxadQz2bwAYSCZBsfHYmHnII.roa (raw, json)
Hash identifier: 1CZicCJeFcUrn25X5TPzRnVg7dl++mSzrRJW9C241LE=
Subject key identifier: 47:5D:D7:C5:A7:50:CF:66:F0:01:84:82:64:1B:1F:1D:89:87:9C:82
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0CD8AC56
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/R13XxadQz2bwAYSCZBsfHYmHnII.roa
Signing time: Tue 12 Apr 2022 12:45:07 +0000
ROA not before: Tue 12 Apr 2022 12:45:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 194.64.88.0/24 maxlen: 24
194.233.8.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 215526486 (0xcd8ac56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Apr 12 12:45:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=475dd7c5a750cf66f0018482641b1f1d89879c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:eb:e0:d4:c3:76:63:43:7c:7a:ab:fe:eb:8a:
8e:8f:dc:cf:44:26:9b:3b:10:71:7c:61:65:9e:82:
07:0e:56:ba:51:dc:04:77:11:53:85:a9:80:43:74:
52:66:e5:36:c1:bb:11:19:3b:07:5d:76:2d:62:e3:
2b:2e:98:23:72:90:e8:8c:50:bf:55:ed:e5:cd:ff:
1b:c5:68:da:c0:a4:72:76:b7:22:d8:d1:a8:34:bc:
12:f4:1c:94:77:93:bc:a6:c8:bb:5d:e1:3f:1d:93:
0d:07:29:68:a6:e6:67:03:21:9d:9b:f6:76:f1:4a:
eb:4f:ba:1b:68:59:9d:32:cd:94:3c:2a:ec:7f:79:
cb:74:53:b4:de:20:56:c8:9e:4a:f8:14:96:87:16:
f3:0b:aa:eb:b4:18:92:9d:7a:ed:c0:b1:29:a2:0f:
b1:1e:43:73:5b:9a:8f:f4:bc:67:70:a6:c5:85:be:
a0:70:2d:44:6d:6f:34:10:7f:b8:0e:63:28:f6:dd:
5f:6a:41:66:48:d2:55:5c:7b:2d:7a:07:b2:d6:72:
07:6b:4c:00:50:3a:d2:26:6b:33:a2:71:db:1d:d8:
de:77:1f:68:11:4f:51:d5:64:1a:0d:1e:4b:5b:33:
bc:a8:91:61:92:d2:12:be:a7:9c:d5:4b:72:4d:7c:
10:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:5D:D7:C5:A7:50:CF:66:F0:01:84:82:64:1B:1F:1D:89:87:9C:82
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/R13XxadQz2bwAYSCZBsfHYmHnII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.64.88.0/24
194.233.8.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:36:4d:3b:d3:b5:c3:29:26:50:7c:cc:f9:1c:e8:0c:82:f3:
ec:fd:f2:5f:fd:29:82:d8:59:1f:6e:88:cb:ea:38:64:ab:52:
14:5e:3c:ea:16:2c:58:5c:94:8b:93:06:d5:6c:e8:dd:c0:49:
25:21:7d:37:2e:44:48:58:93:65:d5:13:5c:79:d1:ae:cf:a8:
f6:47:46:5f:37:85:5f:92:96:bc:fa:60:68:2b:9b:2e:4c:e8:
aa:db:1b:54:bc:b5:72:24:03:06:8e:a7:e7:b4:3a:db:13:81:
5d:b4:7d:46:05:04:fe:cf:00:1f:98:ac:8e:56:c5:93:30:8c:
07:58:64:3e:66:73:3a:b3:1a:f5:13:bf:fe:b9:94:47:63:6b:
78:f2:f6:7f:f4:89:a7:ed:50:04:34:ee:a8:83:f1:cd:6b:92:
9b:81:d5:cb:f6:07:bd:df:0d:f0:bb:33:66:84:f3:f3:1d:86:
35:bc:71:df:a4:bc:b2:8f:7c:11:80:cf:aa:db:60:81:d3:e8:
3b:1f:e0:ff:ed:06:d8:bb:ce:0b:60:fb:c7:a4:4f:2f:9a:8b:
fb:08:30:c9:74:ae:ba:39:30:38:30:de:bc:64:15:db:fb:5c:
60:ad:08:cf:6e:42:94:f9:50:8d:e5:c7:4a:b6:60:63:a1:74:
d9:28:69:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org