Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/c2c271-171a-4190-bfd5-47220d318b4c/1/aVG1YupJulUQTGTococMi8wllFU.roa
File: aVG1YupJulUQTGTococMi8wllFU.roa (raw, json)
Hash identifier: M4F5K5Q/c5J9W3qUhRZ6mCNU/I0hEs/5xABu2dSaxqQ=
Subject key identifier: 69:51:B5:62:EA:49:BA:55:10:4C:64:E8:72:87:0C:8B:CC:25:94:55
Certificate issuer: /CN=0b61d0a1d7953cf3b8608adc1020b26a1b6d6ae7
Certificate serial: 014E7350
Authority key identifier: 0B:61:D0:A1:D7:95:3C:F3:B8:60:8A:DC:10:20:B2:6A:1B:6D:6A:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C2HQodeVPPO4YIrcECCyahttauc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/c2c271-171a-4190-bfd5-47220d318b4c/1/aVG1YupJulUQTGTococMi8wllFU.roa
Signing time: Sat 01 Jan 2022 15:59:11 +0000
ROA not before: Sat 01 Jan 2022 15:59:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 194.62.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21918544 (0x14e7350)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b61d0a1d7953cf3b8608adc1020b26a1b6d6ae7
Validity
Not Before: Jan 1 15:59:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6951b562ea49ba55104c64e872870c8bcc259455
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:51:00:8f:49:f0:0f:a2:c8:a2:55:a2:fa:4f:
e9:01:2c:13:04:2d:db:a2:27:37:3a:48:04:e4:4e:
cd:a9:7e:bb:d0:9e:ee:21:34:c6:2a:75:94:ae:2b:
38:ef:a9:0e:eb:df:65:dd:5e:85:58:32:ed:b2:47:
26:1c:e3:a6:b4:47:ed:f2:8b:be:e7:88:09:17:90:
54:66:dc:a5:02:26:db:5c:cd:ad:bb:22:26:a7:c1:
1d:51:ff:72:ac:43:61:9b:17:48:93:5f:79:1e:df:
bf:14:cb:bf:f6:15:ef:8a:8e:af:5a:5d:27:e6:fb:
75:41:61:a7:cb:c7:f6:c4:20:7d:7d:f7:df:32:e8:
e5:ec:b1:f3:04:31:9b:32:c6:df:be:29:de:1f:09:
01:32:48:51:63:7f:ba:c8:b0:86:98:ee:4e:5d:b8:
51:75:bf:f0:62:6e:09:93:41:4b:1c:7b:4f:e7:b0:
01:87:e5:dc:16:d7:b1:3c:58:93:63:59:e2:35:d5:
6b:bf:6f:e9:02:71:9c:a9:bb:c7:79:b8:49:31:33:
44:05:06:c9:1e:5a:af:d1:af:77:ef:91:42:9f:a2:
92:1d:ba:26:86:eb:9d:f5:6b:de:dc:1b:29:e8:8b:
d8:f7:be:f3:2d:9f:bb:2d:b7:5b:bd:79:9e:76:b1:
78:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:51:B5:62:EA:49:BA:55:10:4C:64:E8:72:87:0C:8B:CC:25:94:55
X509v3 Authority Key Identifier:
keyid:0B:61:D0:A1:D7:95:3C:F3:B8:60:8A:DC:10:20:B2:6A:1B:6D:6A:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C2HQodeVPPO4YIrcECCyahttauc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/c2c271-171a-4190-bfd5-47220d318b4c/1/aVG1YupJulUQTGTococMi8wllFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/c2c271-171a-4190-bfd5-47220d318b4c/1/C2HQodeVPPO4YIrcECCyahttauc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.62.43.0/24
Signature Algorithm: sha256WithRSAEncryption
66:66:10:b0:68:8b:b0:82:5f:3c:f3:30:d6:55:c7:62:0a:26:
a1:af:c4:9c:23:a7:4c:1f:7a:f5:d3:0a:79:c5:39:2a:af:4c:
d9:4d:8f:d1:9c:46:7b:7c:67:f9:70:16:3c:63:88:3c:9e:86:
a4:87:9a:df:a2:bc:5e:3d:60:f0:56:59:24:51:e3:dc:17:02:
a9:ac:d7:82:7b:14:9c:8a:51:e2:63:4e:67:26:77:89:50:b1:
72:8c:2d:e8:12:ee:cb:06:4b:f5:42:a0:bc:85:e2:08:0c:64:
9e:a4:ff:04:31:ee:bf:60:29:35:23:29:3e:ab:54:ad:7d:ca:
fa:74:41:10:d1:5a:8c:06:f9:cc:1e:5a:35:60:e5:c2:5e:bb:
c7:2c:35:6c:2a:ea:10:a8:a6:58:75:85:c6:0b:b3:e8:7c:52:
70:29:57:30:4d:9a:2e:a4:46:84:d4:65:d1:18:76:b8:b3:ab:
1e:e4:e3:81:3f:55:74:74:9c:b3:f6:d7:ff:80:30:5b:63:04:
80:a5:2b:16:a2:ef:b1:86:93:e3:d7:51:b4:82:21:a6:48:02:
c1:d0:08:3f:f9:d4:a1:15:c0:c3:44:92:c1:81:6a:e6:52:8f:
d5:5b:83:b2:6c:a3:7d:f2:e2:f2:32:eb:cb:25:b8:8a:5a:bf:
9a:a3:1a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:53 2023 by rpki-client on console-fra.rpki-client.org