Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/a89644-9316-4e8b-81a4-1f19a8bda3ed/1/lORcR3nJtazr6egsXhEVQra6stY.roa
File: lORcR3nJtazr6egsXhEVQra6stY.roa (raw, json)
Hash identifier: u8wgR2yxMYfrL8cZHgm6rY0bi8Jla9ujPnYdn1wNqyQ=
Subject key identifier: 94:E4:5C:47:79:C9:B5:AC:EB:E9:E8:2C:5E:11:15:42:B6:BA:B2:D6
Certificate issuer: /CN=576d59494a0a927f7a68f909ecef577cd503db1c
Certificate serial: 0D038C3C
Authority key identifier: 57:6D:59:49:4A:0A:92:7F:7A:68:F9:09:EC:EF:57:7C:D5:03:DB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V21ZSUoKkn96aPkJ7O9XfNUD2xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/a89644-9316-4e8b-81a4-1f19a8bda3ed/1/lORcR3nJtazr6egsXhEVQra6stY.roa
Signing time: Tue 24 May 2022 16:17:13 +0000
ROA not before: Tue 24 May 2022 16:17:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39072
IP address blocks: 194.116.202.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 218336316 (0xd038c3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=576d59494a0a927f7a68f909ecef577cd503db1c
Validity
Not Before: May 24 16:17:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94e45c4779c9b5acebe9e82c5e111542b6bab2d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:c9:a4:18:2a:41:3c:13:d5:db:bf:3c:2e:bf:
a6:88:65:71:a0:40:9a:15:e3:82:1c:8e:74:48:42:
b9:24:99:a2:a9:67:99:b6:4b:25:b7:b8:f5:e0:cb:
a0:e2:2f:a1:d1:20:f3:53:f1:f7:2a:95:6a:20:1e:
d3:b9:1e:7d:46:73:1f:67:ce:ef:60:b3:d2:95:40:
9a:a2:34:d1:c2:46:b8:47:77:2f:44:9b:37:59:0c:
54:2f:84:66:fe:bd:ed:e1:0a:5a:ae:f5:d8:d4:bf:
d2:b4:ff:05:62:57:ea:20:2c:89:d4:b1:1d:a4:bb:
26:49:7d:8c:c3:98:c1:5d:e8:5b:76:d2:21:ca:bd:
c3:28:3e:b0:98:6c:7f:f7:c4:49:3a:1f:39:36:f9:
70:1f:a6:a4:a4:be:70:63:6e:21:9e:32:41:d6:72:
1d:38:1c:8e:6b:43:78:3d:29:33:f2:ba:03:87:d3:
b8:88:a9:07:bc:df:77:f2:90:a1:b5:20:50:de:f7:
55:64:b5:a4:38:d3:52:fb:ec:c4:54:c2:61:60:1b:
3e:4a:f2:1d:cc:b1:85:64:66:db:cc:f5:70:59:af:
41:c8:dc:da:7f:34:7f:2a:84:9c:61:f1:5e:0a:15:
f1:16:99:0e:66:6a:95:f7:46:07:43:ea:40:28:0f:
5b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:E4:5C:47:79:C9:B5:AC:EB:E9:E8:2C:5E:11:15:42:B6:BA:B2:D6
X509v3 Authority Key Identifier:
keyid:57:6D:59:49:4A:0A:92:7F:7A:68:F9:09:EC:EF:57:7C:D5:03:DB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V21ZSUoKkn96aPkJ7O9XfNUD2xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a89644-9316-4e8b-81a4-1f19a8bda3ed/1/lORcR3nJtazr6egsXhEVQra6stY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/a89644-9316-4e8b-81a4-1f19a8bda3ed/1/V21ZSUoKkn96aPkJ7O9XfNUD2xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.116.202.0/23
Signature Algorithm: sha256WithRSAEncryption
47:60:d3:9f:9c:88:ad:fc:0c:bc:6e:41:3a:8f:0a:06:45:3d:
a0:21:f3:2c:ee:ce:e7:c2:5a:b4:03:67:1e:bc:c3:c4:35:96:
88:83:5c:15:b1:cd:1c:95:c8:72:59:52:8f:ed:6b:22:87:ff:
2d:78:f6:07:3f:52:82:11:a5:0a:dd:c4:aa:98:0f:7e:b2:e6:
06:5a:0f:fa:03:02:8f:d1:e0:d0:51:20:8a:14:57:59:6a:a7:
4f:42:87:7b:6c:17:2c:e5:e7:e2:72:66:3a:8b:08:e3:d8:fc:
8d:28:a0:31:be:0c:e1:85:d6:1e:5b:59:ac:95:b1:54:3d:a5:
41:99:ac:17:f5:6e:bd:2c:59:ff:04:95:fb:da:1d:ed:14:18:
22:d0:b7:d2:e3:fd:36:13:78:5b:b8:56:5a:0a:e2:12:da:24:
1f:85:72:45:b0:77:93:ea:77:ed:d3:12:21:94:50:c6:99:39:
b1:17:e1:18:51:cb:b0:ef:f3:b3:e5:36:d1:8c:8c:e9:68:29:
79:28:51:1d:34:d1:28:ba:c9:62:05:f3:f1:b9:2c:15:e4:e0:
9f:c4:d8:38:3a:99:95:04:5b:3c:78:30:52:b9:20:5c:6a:6a:
9a:d3:2f:dc:6b:d7:3d:ca:b5:0e:ba:9c:6b:df:ee:57:6f:a0:
f4:a4:1b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:52 2023 by rpki-client on console-ams.rpki-client.org