Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/cjVIiV-nrKxQA9r4-NUSyeHtm6I.roa
File: cjVIiV-nrKxQA9r4-NUSyeHtm6I.roa (raw, json)
Hash identifier: pOjXrVeP1cZupaiCtKGiYPPLc/sBmpN3e6vyJ6ePI/w=
Subject key identifier: 72:35:48:89:5F:A7:AC:AC:50:03:DA:F8:F8:D5:12:C9:E1:ED:9B:A2
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 0BE1A25D
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/cjVIiV-nrKxQA9r4-NUSyeHtm6I.roa
Signing time: Mon 24 Jan 2022 07:18:10 +0000
ROA not before: Mon 24 Jan 2022 07:18:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46573
IP address blocks: 194.233.146.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 199336541 (0xbe1a25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 24 07:18:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=723548895fa7acac5003daf8f8d512c9e1ed9ba2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:25:52:70:a4:6d:d0:2b:43:1f:41:4d:59:bc:
91:06:fb:89:f7:8b:6c:2e:0e:47:a3:50:43:5f:59:
d2:66:37:22:18:09:f9:8c:f3:ca:cc:f2:b6:08:2d:
b1:cf:01:29:31:9f:ec:a7:57:53:a7:54:3f:88:bc:
39:f6:6c:44:28:29:55:9b:66:2a:96:56:fc:64:74:
36:ad:1d:92:82:08:d5:26:6e:4f:0e:ee:d0:24:20:
7a:37:a3:a4:f4:51:fa:5c:ab:1d:bd:6b:1c:ed:df:
e4:6c:72:8f:72:2b:03:b1:b3:df:d8:8d:77:b4:01:
20:64:34:d9:a5:b0:ae:a5:62:f4:2d:ea:15:3c:c0:
1c:d3:9c:b8:ed:59:43:7d:4f:aa:9f:e1:35:4c:32:
7a:94:92:a2:f5:25:ee:97:91:a9:24:0f:df:88:f4:
21:df:c8:f1:cb:e6:23:c3:1d:0f:43:eb:11:13:4c:
1a:8a:f0:e9:9a:4b:99:d5:b6:32:22:b6:e0:12:21:
93:62:c5:e0:1b:10:4f:76:66:73:63:51:29:ba:5e:
44:a7:10:cb:f8:91:c9:87:e5:90:45:12:49:76:d9:
ec:bf:4b:98:c0:53:72:58:d9:06:a4:37:61:ec:56:
55:03:08:38:07:32:f9:67:a1:98:9e:f2:a8:f8:a0:
7e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:35:48:89:5F:A7:AC:AC:50:03:DA:F8:F8:D5:12:C9:E1:ED:9B:A2
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/cjVIiV-nrKxQA9r4-NUSyeHtm6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.233.146.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:bd:8d:e6:6c:16:9e:12:f6:de:c7:8d:10:05:36:8f:77:cb:
2f:92:c1:15:09:2c:b6:9c:d3:db:81:8d:bb:6d:b1:59:5f:a4:
e3:8b:11:63:62:8a:57:16:19:9d:d8:70:0a:cd:ed:46:bd:41:
c5:ee:97:1d:68:79:97:48:6d:b2:2c:26:00:b2:99:b8:49:65:
03:61:da:d8:fc:1b:2d:5e:f0:b0:be:cd:1c:cb:8f:d5:ff:51:
4e:17:84:23:6a:eb:99:49:f1:7e:16:e2:3f:d1:ed:7e:fd:df:
b2:12:ea:ea:91:de:09:ee:1f:c9:95:94:76:ad:47:19:c5:c8:
72:17:58:96:70:af:3b:5d:b6:96:31:5f:da:bc:d1:cc:d0:f1:
8a:38:a9:a0:f6:31:5d:c6:a2:13:e0:4b:97:01:94:68:a2:aa:
7c:2f:b6:63:3c:ad:3d:b5:c5:e5:58:d5:02:33:b4:d1:3c:da:
d0:31:9d:4f:bf:09:15:5c:7f:0f:21:15:fb:fb:d6:be:c1:cd:
d4:ae:a1:5b:3e:78:fe:ea:9b:4b:06:b5:95:4a:9f:5e:02:3c:
bf:cb:51:a5:42:76:ba:df:3a:f6:4b:d7:ae:0f:40:61:96:17:
a2:52:56:52:27:f8:cd:a4:2e:9b:63:33:36:63:7e:4a:d7:9d:
b8:dd:2b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-ams.rpki-client.org