Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/80b8cf-576d-4044-a624-ae72bfd3f782/1/n3zT1VvO1_LY-G0Y7DFF2Uju1-0.roa
File: n3zT1VvO1_LY-G0Y7DFF2Uju1-0.roa (raw, json)
Hash identifier: SQ/TMy+dAZ04pCVbfj20o1u1mWStrJfjeoa2NrGMFS8=
Subject key identifier: 9F:7C:D3:D5:5B:CE:D7:F2:D8:F8:6D:18:EC:31:45:D9:48:EE:D7:ED
Certificate issuer: /CN=186590ee4a796301c422e033f944d263d6adeebc
Certificate serial: 02514945
Authority key identifier: 18:65:90:EE:4A:79:63:01:C4:22:E0:33:F9:44:D2:63:D6:AD:EE:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GGWQ7kp5YwHEIuAz-UTSY9at7rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/80b8cf-576d-4044-a624-ae72bfd3f782/1/n3zT1VvO1_LY-G0Y7DFF2Uju1-0.roa
Signing time: Sat 01 Jan 2022 15:59:56 +0000
ROA not before: Sat 01 Jan 2022 15:59:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212536
IP address blocks: 194.8.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38881605 (0x2514945)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=186590ee4a796301c422e033f944d263d6adeebc
Validity
Not Before: Jan 1 15:59:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9f7cd3d55bced7f2d8f86d18ec3145d948eed7ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2f:c7:52:f7:68:77:81:91:55:27:26:53:0b:
87:94:92:63:75:3c:4a:4b:c3:02:12:84:eb:98:d0:
db:b7:79:1b:d6:bb:82:00:53:49:12:be:75:7b:be:
6d:77:b6:15:8e:a9:ae:c5:86:b9:b3:71:fb:e4:68:
5a:11:4d:7c:df:c4:49:e7:28:43:79:c7:1c:d1:c3:
df:aa:64:7f:46:a2:47:1f:da:ca:2e:6c:8f:5a:13:
a2:5d:44:f2:99:41:85:1c:76:da:39:3d:bb:a6:fc:
34:3f:df:a1:f1:6a:32:ef:ca:b0:6c:d2:8e:40:51:
5d:2a:36:5e:8c:7a:25:34:fe:b1:f8:71:cd:f0:7b:
83:17:6e:01:6f:d2:63:3c:5f:e1:ee:25:36:22:45:
7a:38:71:41:5c:24:c8:3a:8a:b7:34:83:99:8a:16:
d7:4e:d6:a6:02:53:ab:33:08:3b:c9:12:b5:28:43:
40:32:90:35:a4:2c:f9:de:70:a8:f4:06:cf:da:67:
58:b8:e4:74:06:2c:de:6a:d1:2d:ba:40:0a:b8:e6:
0a:24:5b:a1:b8:ad:3a:55:38:61:52:4f:b6:0f:8c:
a8:1e:78:7c:e4:af:86:f2:f2:54:79:57:a5:2b:e1:
92:ac:2a:de:b4:94:3b:70:f9:98:0a:cb:4a:73:22:
8b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:7C:D3:D5:5B:CE:D7:F2:D8:F8:6D:18:EC:31:45:D9:48:EE:D7:ED
X509v3 Authority Key Identifier:
keyid:18:65:90:EE:4A:79:63:01:C4:22:E0:33:F9:44:D2:63:D6:AD:EE:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GGWQ7kp5YwHEIuAz-UTSY9at7rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/80b8cf-576d-4044-a624-ae72bfd3f782/1/n3zT1VvO1_LY-G0Y7DFF2Uju1-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/80b8cf-576d-4044-a624-ae72bfd3f782/1/GGWQ7kp5YwHEIuAz-UTSY9at7rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.74.0/24
Signature Algorithm: sha256WithRSAEncryption
15:f7:48:13:c0:9c:71:3f:79:8b:63:18:e9:ec:f9:e1:4e:9f:
8b:3c:71:56:60:07:0e:bd:04:34:c7:d9:35:6e:cd:1c:08:aa:
d1:4b:5e:87:b2:c9:dc:35:a6:f7:94:93:70:17:a6:92:23:ab:
00:42:08:3e:54:7b:33:cf:f4:f0:97:d3:c0:1f:75:98:22:ca:
52:13:93:01:1a:93:c1:db:14:d9:09:5e:a4:3b:74:92:bf:7d:
8c:8a:54:d8:44:67:fe:ff:bc:96:4a:fa:fd:18:b7:71:b9:6b:
a6:b3:f3:f3:c2:9a:a9:a5:5b:de:7e:3d:57:27:e0:6b:aa:c0:
81:7e:f4:ce:11:34:3a:b0:10:e8:ec:3a:31:31:40:97:51:41:
ff:62:ac:7c:63:82:7b:45:a8:73:d4:f0:02:84:d8:38:e5:8b:
32:b5:81:22:93:67:2f:29:2f:06:34:9e:f0:75:c8:ae:c4:33:
b7:73:01:b5:a4:2e:55:14:19:31:f6:b8:03:cb:f3:69:4c:4d:
9a:0c:9c:51:be:5c:7e:60:c9:6b:ad:7d:41:ce:12:fd:1e:58:
97:56:39:0d:6c:c2:0c:be:40:fe:62:49:23:8d:47:b9:cc:25:
fb:06:d7:69:73:0a:d4:96:2f:f6:cc:68:bf:45:a8:41:31:05:
7c:81:38:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-ams.rpki-client.org