Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/1-PwLSW_fdKCCrmV2-l9zOTNb7NY.roa
File: 1-PwLSW_fdKCCrmV2-l9zOTNb7NY.roa (raw, json)
Hash identifier: aogJwmmTxNZlM/hn24QWJo83/mYiWunoAkxO2bSHBT0=
Subject key identifier: F8:FC:0B:49:6F:DF:74:A0:82:AE:65:76:FA:5F:73:39:33:5B:EC:D6
Certificate issuer: /CN=17802133d98b655a9f5411b700ec79347e1eb490
Certificate serial: 15A923
Authority key identifier: 17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/1-PwLSW_fdKCCrmV2-l9zOTNb7NY.roa
Signing time: Mon 13 Jun 2022 13:02:44 +0000
ROA not before: Mon 13 Jun 2022 13:02:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207713
IP address blocks: 176.97.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1419555 (0x15a923)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17802133d98b655a9f5411b700ec79347e1eb490
Validity
Not Before: Jun 13 13:02:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8fc0b496fdf74a082ae6576fa5f7339335becd6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:cf:39:a8:73:bc:b8:b6:8a:49:1c:c1:a4:1b:
5a:87:75:76:7d:a4:49:fb:5e:1b:a8:ea:c0:4f:a7:
a9:ca:ae:e0:31:37:69:1b:58:14:8c:5b:57:8a:00:
44:92:58:23:e5:f3:da:1b:66:c7:d3:bf:7c:27:59:
a0:35:4e:73:ca:97:23:8b:92:8d:09:5e:27:4d:c9:
b1:88:49:96:7c:7b:59:13:1e:e0:69:79:15:7d:f7:
db:0f:81:8d:6a:47:39:88:46:54:2e:10:3e:a2:e0:
e1:75:e3:da:1e:98:61:bb:5e:9b:75:a3:4a:ab:94:
fc:08:8c:be:4d:5a:10:15:26:f5:29:53:c1:a9:f3:
59:70:c1:a4:26:ef:e0:6f:74:75:89:8a:95:08:7d:
2e:32:96:6a:a3:9d:eb:2a:1e:7e:97:5b:52:79:76:
94:fc:64:f0:11:3f:07:a7:65:88:d6:22:4a:73:4e:
d7:b3:93:cb:f6:13:d3:7a:37:f8:b7:e7:00:c4:e8:
77:fc:3d:a4:d4:a3:be:71:90:aa:14:06:79:40:d4:
a2:fc:82:fa:af:83:df:ff:c0:1c:e7:93:dd:c8:7f:
67:e5:9c:fe:08:00:41:41:9c:2f:a7:38:91:89:23:
0c:81:f8:d4:e1:3d:dd:73:14:b6:94:a4:bd:a7:33:
5c:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:FC:0B:49:6F:DF:74:A0:82:AE:65:76:FA:5F:73:39:33:5B:EC:D6
X509v3 Authority Key Identifier:
keyid:17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/1-PwLSW_fdKCCrmV2-l9zOTNb7NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/F4AhM9mLZVqfVBG3AOx5NH4etJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.194.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:3c:d5:2c:8a:69:d9:27:fb:a8:ed:c4:26:61:d0:45:25:01:
21:7a:91:9d:c7:06:44:f1:da:b8:09:20:33:4d:58:9f:73:8a:
12:d6:40:91:8f:77:5d:45:04:89:c3:0e:65:3f:43:14:2a:e7:
be:13:c7:9e:9f:d9:bf:6e:82:50:15:df:95:91:1d:30:51:10:
b4:cb:03:b6:ec:cf:41:39:e0:d2:90:4d:ea:3e:50:56:15:72:
33:6c:5b:d2:26:0e:24:6e:b5:bc:35:3e:ea:d9:ce:1a:a7:53:
50:cc:54:a3:c0:e8:8d:99:a2:dd:bf:f6:21:10:57:f0:8e:77:
5a:4c:0e:74:aa:ff:9a:7f:5e:7b:6e:87:5d:30:52:c2:d6:fb:
40:86:76:98:50:41:ec:ed:3b:67:e3:1a:91:5a:c1:6e:8d:20:
15:ff:37:e0:50:16:66:67:cd:0f:73:9f:ce:34:22:cf:e4:c9:
8f:e7:17:0a:21:a4:fd:47:74:ec:19:02:5a:2d:c6:d0:ae:40:
94:32:61:f9:71:59:6e:9f:80:5d:9e:b9:86:f2:ee:f8:f9:b2:
04:d9:b0:b7:0b:87:16:1d:69:02:72:6c:d9:07:21:b6:6e:dc:
07:e9:d6:80:3f:0e:f7:bf:8a:47:09:c1:f7:7f:ba:08:fa:36:
91:77:d0:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org