Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/OcRkPGjNsTSkWH9HL6efjXp3Gkc.roa
File: OcRkPGjNsTSkWH9HL6efjXp3Gkc.roa (raw, json)
Hash identifier: ZBPp9jc/2hwdD6EP+2Wdk5oI29uP/zLE5b6azAcooLs=
Subject key identifier: 39:C4:64:3C:68:CD:B1:34:A4:58:7F:47:2F:A7:9F:8D:7A:77:1A:47
Certificate issuer: /CN=17802133d98b655a9f5411b700ec79347e1eb490
Certificate serial: 0183A2DBED8201798292235C11C98C56712D
Authority key identifier: 17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/OcRkPGjNsTSkWH9HL6efjXp3Gkc.roa
Signing time: Tue 04 Oct 2022 11:57:45 +0000
ROA not before: Tue 04 Oct 2022 11:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207967
IP address blocks: 176.97.194.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a2:db:ed:82:01:79:82:92:23:5c:11:c9:8c:56:71:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17802133d98b655a9f5411b700ec79347e1eb490
Validity
Not Before: Oct 4 11:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39c4643c68cdb134a4587f472fa79f8d7a771a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5f:d4:cd:74:66:ea:3d:eb:2f:d5:02:a0:4f:
64:6d:ac:f6:e6:06:32:9f:b5:58:d4:fa:77:46:87:
4b:4b:08:56:88:fc:1c:2e:42:f2:5b:11:8f:92:76:
b4:b7:82:cd:23:b5:a0:5b:48:d7:1b:6b:46:ab:4e:
cc:b1:39:23:9d:ec:c4:61:7a:55:e1:97:1a:39:66:
b6:49:af:f7:29:58:95:a7:8a:f6:3d:53:de:93:a4:
7e:1e:84:49:a1:6e:5e:0d:03:58:38:0c:5d:7e:21:
00:0f:5c:6b:53:a0:c1:a9:7b:de:93:12:90:cd:6e:
f5:2e:d1:c9:67:b9:68:d7:43:c9:26:e0:9c:3a:03:
e8:ec:25:dc:2e:0d:e5:3b:76:ef:ad:2a:60:44:dd:
35:80:db:0e:dc:16:ee:7d:0e:ab:f4:bc:9f:a1:f2:
8e:e8:a9:0f:c2:09:e1:5b:d2:00:b5:73:28:1d:db:
9f:08:40:fb:50:9d:5d:51:38:1f:f4:30:8a:7c:6a:
92:16:5f:33:af:65:2d:e5:5f:94:7b:68:78:73:d2:
de:55:62:59:dc:bc:62:22:13:34:a2:0f:fa:7a:64:
df:09:09:94:5c:89:2b:de:b8:e2:c0:92:ac:5e:36:
43:53:40:43:9f:19:fb:9e:02:fa:0b:de:a2:fb:93:
0d:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C4:64:3C:68:CD:B1:34:A4:58:7F:47:2F:A7:9F:8D:7A:77:1A:47
X509v3 Authority Key Identifier:
keyid:17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/OcRkPGjNsTSkWH9HL6efjXp3Gkc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/F4AhM9mLZVqfVBG3AOx5NH4etJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.194.0/24
Signature Algorithm: sha256WithRSAEncryption
34:79:ce:bd:ce:05:97:f4:bf:b9:d7:87:1a:ec:67:40:54:7e:
d5:bb:0f:72:f4:40:60:82:75:ca:ba:31:c4:37:05:31:ff:b7:
1d:d8:9f:c4:91:7e:cc:46:0d:1c:74:da:d5:2c:f5:5e:0f:6b:
0e:f0:67:4f:e0:44:61:43:a2:bf:17:70:7c:20:d9:55:00:a8:
88:88:89:b5:ab:62:0d:fd:00:6f:4b:63:c2:9d:fc:89:e5:34:
1c:c5:66:41:c6:6e:e7:2f:db:42:08:14:a2:a8:69:60:6e:ef:
f3:5f:5f:5c:ee:54:dd:49:16:7b:bf:60:27:39:7d:f8:09:53:
70:55:ab:b8:ff:57:40:17:83:b3:31:42:a4:ae:46:b8:9d:da:
88:23:c6:27:50:cb:c9:37:05:ec:49:e6:7c:66:42:16:e2:23:
88:bf:cd:5f:36:f5:56:26:14:11:42:3b:e9:d5:76:cd:fc:f7:
5a:62:6f:84:c7:a1:5c:d5:ee:fa:d0:e4:8c:b5:a8:fd:61:0b:
89:f8:41:03:8f:0a:85:d1:f0:f5:22:35:c2:36:cb:cb:75:7f:
29:f5:6a:cb:8f:1f:df:54:61:d7:03:78:e5:c6:02:1d:66:d5:
59:54:19:94:6d:5f:fc:7f:47:9c:81:24:d3:10:ff:3d:d7:8a:
8f:d1:0f:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:54 2023 by rpki-client on console-ams.rpki-client.org