Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/cijWwz4xK8gynqMRrm7X41IaGBk.roa
File: cijWwz4xK8gynqMRrm7X41IaGBk.roa (raw, json)
Hash identifier: COkrRrnR5PbhP9jiu8Wzi3mJl/10Bq9yfqYmH5j/4VA=
Subject key identifier: 72:28:D6:C3:3E:31:2B:C8:32:9E:A3:11:AE:6E:D7:E3:52:1A:18:19
Certificate issuer: /CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Certificate serial: 0185431843F91C5B90E1A5D50ED6D9E9F3C7
Authority key identifier: E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/cijWwz4xK8gynqMRrm7X41IaGBk.roa
Signing time: Sat 24 Dec 2022 07:45:41 +0000
ROA not before: Sat 24 Dec 2022 07:45:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14576
IP address blocks: 194.110.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:43:18:43:f9:1c:5b:90:e1:a5:d5:0e:d6:d9:e9:f3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c2b834fbc91af0ec6b1d34fd64054d2269a1fd
Validity
Not Before: Dec 24 07:45:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7228d6c33e312bc8329ea311ae6ed7e3521a1819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:f3:a2:97:58:42:ad:0f:4d:a7:5d:24:99:47:
d6:fc:81:9b:34:95:ea:82:b4:4c:08:77:95:70:c5:
8d:11:3c:52:93:7f:d7:75:0c:45:be:03:51:4c:9f:
19:1e:12:e3:ef:da:a8:3d:bf:ed:2b:19:09:d0:49:
f7:ae:75:16:f3:3a:46:97:03:a2:b9:19:33:71:0f:
40:97:53:70:fa:36:f2:5f:ce:26:ee:64:29:e9:6a:
81:a4:0d:09:af:4f:b2:d9:90:19:9c:fb:8c:4c:49:
5e:4d:0e:da:41:a6:bc:24:25:bf:c6:f2:6f:90:2e:
dc:cd:a8:7b:fb:5c:3b:38:c8:10:9a:2e:a9:15:60:
d4:fc:67:a7:d9:5e:21:76:5c:c8:58:82:05:c9:6c:
8e:a4:f0:00:cf:d2:b4:1c:2f:17:f8:cf:8f:d0:17:
ff:11:a6:03:9b:1c:74:6f:5b:b3:18:75:99:e3:7e:
3f:6c:7e:67:4d:87:d1:a5:88:48:ca:66:6e:e8:e4:
80:3c:91:df:fc:18:e9:81:b4:63:a5:d7:5a:24:3d:
ed:60:43:ce:c5:55:25:5e:26:cc:9b:98:a7:09:b9:
c5:dd:66:36:fe:91:95:83:e2:76:23:b0:61:3f:7f:
d7:20:c0:5e:cd:b9:e8:65:4a:fc:b7:62:fa:86:5b:
28:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:28:D6:C3:3E:31:2B:C8:32:9E:A3:11:AE:6E:D7:E3:52:1A:18:19
X509v3 Authority Key Identifier:
keyid:E2:C2:B8:34:FB:C9:1A:F0:EC:6B:1D:34:FD:64:05:4D:22:69:A1:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sK4NPvJGvDsax00_WQFTSJpof0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/cijWwz4xK8gynqMRrm7X41IaGBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/3f249b-e836-41b4-9a3a-994806f081f0/1/4sK4NPvJGvDsax00_WQFTSJpof0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.110.150.0/24
Signature Algorithm: sha256WithRSAEncryption
77:12:b8:47:17:86:2e:62:00:3d:8c:ae:33:8f:ab:f0:22:b5:
d8:3d:2a:d0:01:73:69:50:b3:d8:7d:ff:f8:03:6e:bb:ed:60:
e0:c3:d6:fa:34:2b:3b:c9:8b:d3:39:a6:38:82:d2:f3:e1:35:
fd:85:50:9c:10:f3:40:f1:a5:bd:85:98:67:cd:b4:44:69:5f:
31:f0:17:7c:c5:46:bb:44:26:c3:46:12:e3:d1:aa:7c:86:20:
93:e7:6b:50:c2:fd:10:a3:c3:4c:90:ea:0b:6c:db:4b:71:2c:
c4:57:39:18:66:40:ee:d4:30:6f:e9:b1:64:22:4b:44:53:a9:
e7:4a:4c:34:90:af:ef:93:3f:51:38:17:3b:0c:1d:91:35:cf:
14:50:1e:fe:d8:db:88:65:cf:a3:34:3c:6d:f9:76:cc:4a:54:
4f:d0:78:5a:0b:ad:5b:d2:74:8c:bc:c7:4a:3f:e0:3e:37:28:
c7:60:14:7c:64:6c:5f:6d:da:a2:fa:d1:cf:20:30:1c:ab:57:
70:9b:bc:25:d0:6f:9b:8d:75:4e:5f:95:af:38:0a:87:84:a9:
d6:0c:b0:fc:76:79:a6:1f:54:fb:1e:17:76:dc:c4:ca:9b:dc:
9d:60:e8:ea:ae:58:50:a2:42:2c:4a:77:40:2d:66:70:44:6a:
a7:a0:68:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org