Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/cea886-4678-46cd-bea0-b5e188174755/1/g4SAPMj8E7OJqAgXvSCwWiv4L6M.roa
File: g4SAPMj8E7OJqAgXvSCwWiv4L6M.roa (raw, json)
Hash identifier: dO+b/yQEYUV0lfhol+3aE8rvP/5o9cyRvWkhby3BqiE=
Subject key identifier: 83:84:80:3C:C8:FC:13:B3:89:A8:08:17:BD:20:B0:5A:2B:F8:2F:A3
Certificate issuer: /CN=dbcab601ebb26d579ea87acfffb763ce81c98131
Certificate serial: 3AEE3A
Authority key identifier: DB:CA:B6:01:EB:B2:6D:57:9E:A8:7A:CF:FF:B7:63:CE:81:C9:81:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/28q2AeuybVeeqHrP_7djzoHJgTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/cea886-4678-46cd-bea0-b5e188174755/1/g4SAPMj8E7OJqAgXvSCwWiv4L6M.roa
Signing time: Sat 01 Jan 2022 00:58:13 +0000
ROA not before: Sat 01 Jan 2022 00:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34294
IP address blocks: 194.146.68.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3862074 (0x3aee3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dbcab601ebb26d579ea87acfffb763ce81c98131
Validity
Not Before: Jan 1 00:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8384803cc8fc13b389a80817bd20b05a2bf82fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:64:96:8d:fc:66:b0:ed:1e:ea:0e:ec:4d:74:
cf:ca:43:43:e4:4b:1b:12:4b:fb:d9:67:bb:0b:9b:
d5:ed:31:07:3d:2a:6f:d7:31:c0:8c:c9:03:ab:68:
ff:be:3b:4a:76:07:18:1a:7f:ad:18:b6:5f:a8:12:
ab:76:17:bc:68:47:51:b3:22:bf:1d:7e:1c:0b:50:
1d:94:18:db:98:b0:b9:be:1a:ce:6b:a8:82:8a:a0:
06:5f:e4:a7:5a:37:05:f4:d6:53:83:1e:be:50:92:
17:05:74:54:6a:c9:ed:1d:71:50:82:f0:35:13:a8:
76:3f:ac:79:f2:45:46:6b:1d:0c:de:e5:4f:99:b2:
67:eb:58:d7:6a:0d:51:1d:c3:d0:74:70:57:ce:a3:
44:e7:9e:80:09:a2:2f:4d:5d:87:d0:a7:aa:46:34:
5f:46:36:2d:92:71:a8:7d:b6:43:55:01:73:72:73:
66:65:a4:18:87:56:6d:f1:bf:c5:41:3f:9d:ca:8e:
6c:f5:23:c2:3b:b2:8b:5b:47:58:c9:bd:2f:a5:d0:
f9:7e:be:76:38:a2:07:a3:c4:cd:93:ec:45:eb:96:
64:0f:3b:4f:71:05:8b:e8:26:fc:4d:7e:86:69:94:
17:74:29:21:b5:a4:b7:13:4e:19:a6:4a:de:20:1d:
56:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:84:80:3C:C8:FC:13:B3:89:A8:08:17:BD:20:B0:5A:2B:F8:2F:A3
X509v3 Authority Key Identifier:
keyid:DB:CA:B6:01:EB:B2:6D:57:9E:A8:7A:CF:FF:B7:63:CE:81:C9:81:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/28q2AeuybVeeqHrP_7djzoHJgTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cea886-4678-46cd-bea0-b5e188174755/1/g4SAPMj8E7OJqAgXvSCwWiv4L6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/cea886-4678-46cd-bea0-b5e188174755/1/28q2AeuybVeeqHrP_7djzoHJgTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.68.0/23
Signature Algorithm: sha256WithRSAEncryption
cc:b7:44:4a:fc:6b:d9:9a:88:ee:90:21:bf:26:83:65:ec:b8:
bd:15:92:95:33:ce:fb:c4:30:ed:e2:9a:97:b2:9a:99:71:c9:
34:4c:87:fd:d6:97:f6:21:ae:96:98:11:14:f6:e6:4f:9f:33:
ee:aa:a8:6c:c2:3e:fe:d3:53:f6:75:22:83:af:d4:4b:ee:24:
17:9d:d5:ea:5e:8a:85:00:88:d5:9b:6e:1c:7e:ff:54:07:2d:
02:3c:6a:bf:fc:50:9c:46:95:73:05:24:fa:40:83:60:2b:51:
d3:7d:21:68:82:3f:7b:eb:45:fd:39:92:2f:2b:94:c7:c0:ec:
e5:f3:a2:14:c3:19:38:7c:60:71:0d:c6:bc:a3:fd:fd:1d:d3:
e9:9b:c6:54:bb:b2:b3:e2:ad:ad:6e:2a:a1:2a:86:9c:44:b8:
e8:a5:c5:b3:26:39:83:05:dd:43:8b:15:b2:23:cd:f0:d1:aa:
cb:19:31:4b:55:c7:fe:e4:d6:fe:ce:c9:95:b1:db:cf:fb:d0:
d7:73:fc:41:6d:89:29:c0:b9:b9:9a:16:6a:da:07:69:b1:9d:
5c:f6:e0:3b:40:61:9e:8a:bf:50:38:f6:0a:c7:96:a9:01:6b:
95:41:1c:11:8b:25:e1:b3:1d:fe:13:c7:0e:5e:a8:80:e0:80:
fe:42:7d:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:53 2023 by rpki-client on console-fra.rpki-client.org