Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/D9yyzqoBORTrmz-jzT8bBgk-K14.roa
File: D9yyzqoBORTrmz-jzT8bBgk-K14.roa (raw, json)
Hash identifier: OvnERplzsK1avF+jJ4dsvSiw4vC6BeR+6iH0Jcm/pV4=
Subject key identifier: 0F:DC:B2:CE:AA:01:39:14:EB:9B:3F:A3:CD:3F:1B:06:09:3E:2B:5E
Certificate issuer: /CN=1f739d213a438f678b322a8f8f84e2d8c7814aca
Certificate serial: 06FD654D
Authority key identifier: 1F:73:9D:21:3A:43:8F:67:8B:32:2A:8F:8F:84:E2:D8:C7:81:4A:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H3OdITpDj2eLMiqPj4Ti2MeBSso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/D9yyzqoBORTrmz-jzT8bBgk-K14.roa
Signing time: Sat 01 Jan 2022 07:02:18 +0000
ROA not before: Sat 01 Jan 2022 07:02:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3334
IP address blocks: 194.148.40.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117269837 (0x6fd654d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f739d213a438f678b322a8f8f84e2d8c7814aca
Validity
Not Before: Jan 1 07:02:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0fdcb2ceaa013914eb9b3fa3cd3f1b06093e2b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5b:fb:e4:61:63:22:49:23:f1:62:bf:43:3b:
b2:42:b8:82:5d:a6:54:77:74:b1:70:85:d5:e2:f4:
af:1b:f6:4c:3f:23:18:74:29:64:2e:48:38:1b:cf:
85:e0:5b:e3:a9:09:5b:9f:38:ea:54:89:ce:3d:cc:
67:de:d0:a4:aa:df:ea:6f:92:2d:8b:ff:29:dd:bc:
de:c1:f3:50:06:bb:52:4c:56:06:b6:0d:fc:a9:c8:
30:f5:4f:49:67:24:15:cb:98:81:ee:fd:b9:79:d1:
9e:30:a0:61:9c:97:9b:a8:02:6b:1e:4a:19:94:99:
77:fe:df:8e:30:74:79:23:52:e6:9a:d6:cf:6e:14:
91:66:44:e4:43:b1:12:ad:38:c3:e4:99:65:0c:f6:
f8:9b:16:06:5d:ad:1d:f9:ea:74:88:d1:d1:11:bf:
b9:ad:1d:b2:ce:8c:84:a1:a5:06:0e:52:2e:27:33:
b0:0b:df:ad:c9:15:84:38:ab:94:03:57:c6:eb:96:
ec:35:61:a9:c5:0e:8d:ed:bf:25:95:39:26:90:69:
1c:b7:ef:4a:cf:1e:5c:bf:ac:65:ba:12:3a:7f:ab:
98:ff:6a:39:80:de:49:4c:c6:d8:c1:09:b8:51:28:
b8:a0:02:a4:bd:9a:f8:12:dc:f7:61:a7:98:27:dc:
bf:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:DC:B2:CE:AA:01:39:14:EB:9B:3F:A3:CD:3F:1B:06:09:3E:2B:5E
X509v3 Authority Key Identifier:
keyid:1F:73:9D:21:3A:43:8F:67:8B:32:2A:8F:8F:84:E2:D8:C7:81:4A:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H3OdITpDj2eLMiqPj4Ti2MeBSso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/D9yyzqoBORTrmz-jzT8bBgk-K14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/81bc95-1444-408a-92f1-392e05a84277/1/H3OdITpDj2eLMiqPj4Ti2MeBSso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.148.40.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:0e:69:ca:74:ef:f0:ed:8b:37:bf:02:b7:46:c6:88:f8:3f:
4c:a7:ce:24:c7:a9:50:86:d4:88:7f:12:6d:c8:91:55:ba:3f:
93:48:b9:0c:21:fc:ce:73:ca:92:46:4a:f1:b3:23:27:a8:dc:
14:1e:91:c1:cb:37:d3:18:f7:49:1c:41:6e:ca:ba:b7:15:1b:
7c:4f:28:9d:8a:8f:25:a6:07:ae:8e:41:0c:60:a4:b9:82:0e:
0c:e4:70:bf:99:a2:97:7e:aa:e7:68:f8:fe:6f:66:cd:e3:48:
8c:26:2a:9b:14:ac:d6:9b:d1:c7:e4:7a:d2:c9:53:6c:4b:01:
7a:20:0c:f0:dd:6d:2b:f0:50:dd:a3:14:94:15:df:e1:0c:59:
38:0e:63:f5:f8:d9:8e:83:09:c8:06:23:5d:84:64:c8:00:bc:
08:5d:68:25:45:94:f5:d4:5c:a9:4d:22:44:4d:1d:71:3f:06:
66:7e:76:f0:5d:92:2c:a7:43:1b:e6:43:75:d4:e1:eb:f2:9c:
8c:44:91:43:8f:95:0d:e8:b1:ed:4d:ec:fb:47:a6:bb:97:8e:
b5:19:7f:11:e5:e7:92:69:ab:17:7a:b4:2a:0d:5b:96:83:ae:
1d:80:b6:76:b8:a9:25:bc:cf:82:34:dc:cb:57:27:fd:93:b1:
19:9c:72:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:19 2023 by rpki-client on console-ams.rpki-client.org