Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/Z5d3uVXxJ9IO8umdfiWrWyScwys.roa
File: Z5d3uVXxJ9IO8umdfiWrWyScwys.roa (raw, json)
Hash identifier: rLi59mQGQGO6ODCkXXdynLcME342jOvbL7oNXSbdkfg=
Subject key identifier: 67:97:77:B9:55:F1:27:D2:0E:F2:E9:9D:7E:25:AB:5B:24:9C:C3:2B
Certificate issuer: /CN=74e3c336972094b1a8c13d41816857d197a3aae9
Certificate serial: 03A83D83
Authority key identifier: 74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/Z5d3uVXxJ9IO8umdfiWrWyScwys.roa
Signing time: Sat 01 Jan 2022 15:58:13 +0000
ROA not before: Sat 01 Jan 2022 15:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60298
IP address blocks: 194.183.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61357443 (0x3a83d83)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74e3c336972094b1a8c13d41816857d197a3aae9
Validity
Not Before: Jan 1 15:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=679777b955f127d20ef2e99d7e25ab5b249cc32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:92:7b:27:a4:5b:d3:c4:70:dd:dc:99:8a:52:
39:ab:20:9f:b4:ee:3b:48:d0:8d:e3:26:2a:9e:0c:
62:8c:67:d3:36:3a:5d:ed:8d:5b:12:12:ef:9f:a8:
34:2a:7c:8c:6b:d8:84:33:b6:c7:cd:f4:2f:90:c7:
a1:71:c2:e3:58:01:f9:d1:53:16:58:2b:72:f6:5b:
ee:c7:9f:39:5a:b3:f6:09:5d:81:d9:0a:9e:30:3f:
5c:e3:05:1a:56:c3:5a:3f:fb:80:8e:ca:9a:2b:28:
bd:88:73:b8:55:3c:9b:13:3a:b2:90:d2:da:22:ec:
5a:cc:bb:c2:6e:3f:14:01:3e:ba:c5:5b:34:fb:fe:
92:3e:32:05:f9:7f:6a:2c:58:88:f8:91:cb:08:4a:
35:66:25:aa:15:cb:45:fa:9d:9c:c8:53:82:e0:99:
fe:f8:ab:5e:51:1b:8e:8b:d5:fe:70:3b:f3:90:c8:
e2:ce:be:3a:82:20:76:1a:73:1e:41:67:b0:68:b5:
0e:c3:47:20:e9:7c:03:22:68:65:b6:d3:2c:3f:67:
e4:c0:22:10:a3:8a:88:f9:6e:da:6c:42:c2:9e:e7:
a5:08:4a:7f:d5:93:73:7f:f9:78:05:07:92:5c:7a:
bd:d4:ad:87:db:b6:97:86:3b:6f:ff:5f:eb:b2:e6:
d1:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:97:77:B9:55:F1:27:D2:0E:F2:E9:9D:7E:25:AB:5B:24:9C:C3:2B
X509v3 Authority Key Identifier:
keyid:74:E3:C3:36:97:20:94:B1:A8:C1:3D:41:81:68:57:D1:97:A3:AA:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dOPDNpcglLGowT1BgWhX0Zejquk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/Z5d3uVXxJ9IO8umdfiWrWyScwys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/18c498-2171-4e1c-8d80-a6c49eb28287/1/dOPDNpcglLGowT1BgWhX0Zejquk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.183.190.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:8b:3a:c3:34:b3:b8:5d:98:ef:90:01:a3:dc:85:63:09:04:
dc:3b:8e:96:d4:48:b9:68:a3:35:bb:78:5a:97:2f:b8:90:f1:
59:a4:08:15:79:86:0c:54:e0:81:07:2e:82:b7:44:e0:c3:75:
f6:21:f0:67:6a:4b:56:c4:52:03:58:cc:e2:b6:41:88:23:b8:
a3:f0:ef:f8:ff:74:54:e5:32:6f:1d:8a:15:4b:9b:20:9b:3c:
3f:f5:a0:09:49:e3:48:75:65:ef:f1:2e:e2:69:3b:54:9a:8a:
e6:14:08:15:4f:c7:5a:7b:35:af:d1:cb:cb:9e:82:3d:c2:73:
2c:92:72:ef:43:7d:b3:26:13:3f:dc:00:5a:ca:c3:52:7c:11:
a7:5c:09:23:35:a6:4b:1f:a4:0d:91:81:da:a5:07:81:42:00:
6e:b7:64:36:00:70:1c:70:20:a2:dc:d7:2b:69:95:9e:29:ae:
0d:7d:e8:53:9b:76:38:37:d9:9b:39:15:8b:5a:a6:5c:ca:f0:
1d:be:78:d4:ee:2b:84:b7:4a:b4:f4:e3:3a:31:b2:d8:cc:b0:
9f:eb:80:3d:11:10:a1:0b:8c:67:fc:bc:b1:d4:c6:f8:a6:f7:
57:58:6e:3f:9e:25:89:57:a0:59:ed:23:5a:0b:9a:a4:63:e5:
6e:a7:41:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:42 2023 by rpki-client on console-ams.rpki-client.org