Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/1-h1Wf1imP3f41sMHwN28WsWJHS0.roa
File: 1-h1Wf1imP3f41sMHwN28WsWJHS0.roa (raw, json)
Hash identifier: U4Kjt9I67Hf763hHLrVSDvglykgVL+HAtcefaiP0XJ8=
Subject key identifier: FA:1D:56:7F:58:A6:3F:77:F8:D6:C3:07:C0:DD:BC:5A:C5:89:1D:2D
Certificate issuer: /CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Certificate serial: 030A4F67
Authority key identifier: AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/1-h1Wf1imP3f41sMHwN28WsWJHS0.roa
Signing time: Sat 01 Jan 2022 08:54:04 +0000
ROA not before: Sat 01 Jan 2022 08:54:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 194.124.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51007335 (0x30a4f67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac53cbeb715084b322a1a149c96e09c40ed6d883
Validity
Not Before: Jan 1 08:54:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa1d567f58a63f77f8d6c307c0ddbc5ac5891d2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c2:c5:06:19:ab:06:e7:d6:2e:86:06:6c:72:
4b:12:a6:86:e6:60:4e:42:5a:13:78:8b:de:98:f5:
f8:b7:23:9d:75:c9:45:a1:6d:a0:61:a2:6c:c1:4a:
12:ec:e8:83:d7:c6:8a:f8:ee:cc:cf:79:6b:6a:d6:
40:5d:9d:fe:bd:4c:42:1b:dc:6e:cb:c1:ae:12:6c:
2c:3f:9c:94:1a:7e:77:16:20:39:58:19:1d:32:0d:
f5:5e:19:fa:e5:f0:38:7c:cf:e8:3e:fb:9f:2c:62:
ba:76:ed:1e:db:c6:65:08:02:e8:72:48:fa:47:fd:
26:c8:76:c5:31:77:ca:0e:22:f3:4a:3b:4a:be:cd:
1d:c0:ee:85:91:3b:32:77:84:11:37:f7:ec:02:f3:
6f:85:34:80:98:37:a1:7e:c7:94:ef:76:00:b6:a9:
07:23:97:97:d0:99:35:0e:17:5a:4b:9c:74:db:00:
e0:0a:cf:46:2e:8b:98:7c:2a:6f:8f:fb:f3:e1:58:
9e:ed:e8:32:12:ae:12:51:64:aa:39:23:31:a0:ab:
e0:af:84:ff:9a:0c:42:62:25:5f:cd:00:2a:0e:5e:
e5:05:a2:17:90:4b:12:be:68:ae:22:90:7c:2f:a3:
fe:37:13:e8:8a:d4:67:68:37:71:c0:6a:f9:03:69:
54:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:1D:56:7F:58:A6:3F:77:F8:D6:C3:07:C0:DD:BC:5A:C5:89:1D:2D
X509v3 Authority Key Identifier:
keyid:AC:53:CB:EB:71:50:84:B3:22:A1:A1:49:C9:6E:09:C4:0E:D6:D8:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rFPL63FQhLMioaFJyW4JxA7W2IM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/1-h1Wf1imP3f41sMHwN28WsWJHS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/7ec8cb-369e-4bbb-b8b4-7aeadb45a237/1/rFPL63FQhLMioaFJyW4JxA7W2IM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.254.0/24
Signature Algorithm: sha256WithRSAEncryption
55:0f:4a:8a:5f:f2:75:80:47:be:87:82:e9:33:df:ac:ed:1c:
18:32:d0:2b:d8:82:f0:13:c8:83:32:7c:85:70:b2:7f:2b:c7:
45:87:b1:aa:2b:43:1c:69:f5:2e:d8:84:6e:04:2d:d9:61:87:
87:c4:39:d7:89:7b:b8:34:d6:56:37:cf:88:01:6d:59:56:66:
50:34:73:09:f8:5c:a1:75:88:c7:0f:b1:0a:fe:4a:cf:61:bc:
ac:c8:4a:d8:1a:08:17:a8:b9:47:23:b7:9a:53:3e:e0:1d:64:
7c:09:7f:4f:ab:32:2f:d9:f0:10:d9:74:e2:a4:9f:f3:05:34:
a3:5e:4a:7b:9a:9d:56:91:62:77:82:46:22:fa:79:63:89:75:
91:d8:d1:e4:0c:1e:a9:b9:92:15:c6:13:ec:ac:d7:94:fe:40:
da:54:cb:62:f7:00:05:89:35:91:c1:cd:59:01:3f:84:43:b8:
e4:f9:67:fd:5c:31:86:54:3e:60:6f:49:32:b5:66:8a:7e:26:
d5:e0:a6:4f:76:84:fc:f7:50:4e:a2:d1:8e:3e:ba:2f:82:23:
b5:ad:a5:1a:ae:e5:8f:aa:0e:c4:44:f4:78:f5:d4:8b:cd:d4:
00:ac:7c:25:a7:38:10:ca:5e:22:3f:da:8f:76:60:ba:98:a7:
41:41:e4:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:17 2023 by rpki-client on console-ams.rpki-client.org