Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/n5KcKx55wEfSXFfZ2GO4UFjzxT0.roa
File: n5KcKx55wEfSXFfZ2GO4UFjzxT0.roa (raw, json)
Hash identifier: 8pE2D+vj9UCTQ/n8IJq8XBR2Vx9eDGusF8GTSZQSX+I=
Subject key identifier: 9F:92:9C:2B:1E:79:C0:47:D2:5C:57:D9:D8:63:B8:50:58:F3:C5:3D
Certificate issuer: /CN=fd261d45319e8375187436da44bf5b9adb044a7f
Certificate serial: 37A15C2E
Authority key identifier: FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/n5KcKx55wEfSXFfZ2GO4UFjzxT0.roa
Signing time: Sat 01 Jan 2022 13:55:53 +0000
ROA not before: Sat 01 Jan 2022 13:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20560
IP address blocks: 194.50.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 933321774 (0x37a15c2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd261d45319e8375187436da44bf5b9adb044a7f
Validity
Not Before: Jan 1 13:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f929c2b1e79c047d25c57d9d863b85058f3c53d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:72:ec:19:39:8a:78:1b:9f:6c:dd:70:87:1e:
44:da:a3:cf:fe:a3:91:38:6a:29:da:b7:84:70:e1:
d0:96:f3:4d:1a:8c:14:3f:1a:3c:0d:d4:2c:33:80:
fc:6c:df:4f:52:1b:55:78:c5:38:a2:68:dc:aa:e6:
d6:ab:ea:17:65:18:b4:b9:ea:e2:be:30:da:72:cd:
91:ef:2b:5b:29:09:36:dc:38:5a:f8:cd:9f:97:e7:
36:99:b1:af:d0:f8:86:18:04:90:7f:ac:73:34:9b:
a9:60:36:43:51:cc:63:12:63:97:1d:56:d5:21:36:
ec:ac:f3:32:d5:82:14:da:c0:40:ec:04:de:ec:5e:
d1:99:ca:4f:17:5e:e6:34:20:d8:3b:60:1f:ab:e8:
4a:50:44:6c:99:74:c1:6e:16:78:8c:e6:54:f1:16:
86:c7:a1:f9:5d:f6:59:30:89:f2:c6:c7:03:d6:8b:
9c:0b:75:6c:4f:ec:28:d1:88:80:f4:b5:54:c0:6c:
cb:bf:bf:aa:ab:36:0a:71:b9:1f:9c:96:4a:22:51:
11:7f:a0:c1:23:6c:80:ce:c5:54:7b:83:53:90:3a:
c3:33:69:54:92:33:31:77:09:22:1b:32:93:8a:42:
85:74:38:54:dd:95:eb:07:b8:b7:eb:02:47:bd:f8:
8e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:92:9C:2B:1E:79:C0:47:D2:5C:57:D9:D8:63:B8:50:58:F3:C5:3D
X509v3 Authority Key Identifier:
keyid:FD:26:1D:45:31:9E:83:75:18:74:36:DA:44:BF:5B:9A:DB:04:4A:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_SYdRTGeg3UYdDbaRL9bmtsESn8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/n5KcKx55wEfSXFfZ2GO4UFjzxT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/582b17-f46f-41eb-8fd4-eb5093b231c1/1/_SYdRTGeg3UYdDbaRL9bmtsESn8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.34.0/24
Signature Algorithm: sha256WithRSAEncryption
46:68:70:b6:4e:2f:5c:da:2c:ee:c3:75:7e:ce:ec:95:3c:d4:
da:f0:3c:95:7b:e7:b9:69:be:06:6e:43:5f:87:00:f5:b1:2b:
86:a8:26:3b:73:12:3b:21:e2:e4:4a:05:8a:45:62:7f:82:f8:
98:36:43:b8:09:d4:6d:ed:70:b1:c6:b9:82:ee:01:81:21:ef:
dc:24:d7:87:94:54:75:96:4d:32:a1:f3:e4:86:0d:d7:97:ff:
bd:5d:e4:99:3b:28:99:15:05:3c:03:92:ca:8b:a3:59:d3:65:
0f:48:8e:ce:1f:68:48:69:17:c2:1c:fe:94:71:7a:5c:24:cc:
e0:09:3e:2f:3a:37:ef:ca:01:b3:fb:99:e1:4d:13:e1:27:d9:
bb:d0:ee:35:90:45:3a:69:7d:8f:ca:7e:60:c8:a9:ef:28:f1:
c9:5b:20:2f:dd:04:38:c1:ae:14:7b:f8:3f:05:6b:26:93:62:
08:49:54:65:bc:48:fa:b4:ff:81:a7:e6:80:54:11:27:b5:1c:
7b:82:26:86:ce:18:73:c0:70:3a:eb:ba:6b:49:51:cf:ce:cc:
40:5c:ee:78:ab:13:f3:bc:38:e7:ae:24:a4:c2:6c:8b:4c:a1:
35:73:ab:66:1a:7e:94:96:2c:cd:7b:0c:cf:20:ad:b3:2c:c5:
f9:5d:50:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:58 2023 by rpki-client on console-ams.rpki-client.org