Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/c2n4fP1Jxj5Y3UmIme46-5a7Dpk.roa
File: c2n4fP1Jxj5Y3UmIme46-5a7Dpk.roa (raw, json)
Hash identifier: 7zJld7YInTXUon3ueGnalkYa0veqVR1Ykqozt9B9940=
Subject key identifier: 73:69:F8:7C:FD:49:C6:3E:58:DD:49:88:99:EE:3A:FB:96:BB:0E:99
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 01839D147C6B1E387E55E8F5223CD145E1CF
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/c2n4fP1Jxj5Y3UmIme46-5a7Dpk.roa
Signing time: Mon 03 Oct 2022 09:01:48 +0000
ROA not before: Mon 03 Oct 2022 09:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 194.15.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:14:7c:6b:1e:38:7e:55:e8:f5:22:3c:d1:45:e1:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: Oct 3 09:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7369f87cfd49c63e58dd498899ee3afb96bb0e99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:d8:27:42:4c:cd:95:7f:b8:3c:19:b4:4d:60:
fc:68:8e:86:d5:9f:dd:9a:1d:f3:38:ad:14:f2:62:
13:00:75:9d:31:83:b8:ba:71:c5:80:7c:96:75:6d:
d5:26:51:57:b4:68:af:90:80:f0:9e:5c:72:7c:1c:
e6:d7:4e:fa:e3:3a:05:5d:bb:f7:d6:50:cb:01:07:
03:65:92:16:d0:29:63:a0:d1:ca:27:4b:35:28:ec:
45:0e:be:b4:36:41:c6:5a:45:d4:0d:73:6a:51:8e:
47:bc:5d:94:68:b7:e6:07:ad:0b:50:6b:62:98:e5:
2d:dc:07:0e:0f:d5:73:d1:af:ec:31:98:55:62:fb:
30:cc:d5:a2:16:5c:97:59:7d:e4:1a:af:a6:37:15:
7f:58:1b:d9:fb:7c:be:ca:de:6c:0d:fc:d3:f2:6d:
f0:97:bc:79:97:25:9f:0e:3a:e3:c7:99:2d:3c:ee:
d1:48:9a:4e:66:d1:6d:cd:a4:04:fa:c0:b0:6c:41:
77:96:9b:a4:4a:09:38:4f:28:f3:16:ef:11:30:01:
50:4b:52:a6:0e:dd:27:bd:72:82:63:42:b0:e6:cd:
7b:a5:ae:b0:f9:4a:b2:ea:ae:5e:1c:8f:21:62:6d:
5a:58:3c:be:cd:52:d1:3b:dd:7f:30:b3:43:9a:30:
f4:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:69:F8:7C:FD:49:C6:3E:58:DD:49:88:99:EE:3A:FB:96:BB:0E:99
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/c2n4fP1Jxj5Y3UmIme46-5a7Dpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.155.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:6d:ff:9d:3a:8d:9c:d6:1b:8f:b6:3e:c4:47:c8:dc:ee:ff:
3c:63:6d:4c:17:bf:24:5c:73:91:e1:cd:66:6e:90:42:1d:ad:
d0:f9:c7:52:21:99:0e:4b:44:39:68:a7:a9:09:9c:a8:ff:f5:
fd:a0:99:b9:6d:5a:73:ff:6d:23:7a:4f:cc:0b:4f:d7:12:56:
23:32:a5:08:3f:f2:a6:14:b0:c0:35:e0:3b:09:b3:d2:4a:8c:
6e:a1:13:1b:15:e6:e5:54:28:9a:63:f3:ff:6b:32:1a:c1:01:
60:04:d4:76:54:59:c2:b6:fa:77:71:53:53:89:df:0d:09:c1:
ca:de:13:6d:22:e6:d7:8e:e3:18:7e:06:ba:ba:22:73:a5:61:
0d:d5:4e:61:0a:35:38:3e:42:15:96:90:01:32:af:a8:8d:aa:
f2:a3:96:fe:a3:2d:04:b5:75:08:bf:a4:77:d3:1b:c5:2b:36:
b6:d4:b7:c2:73:f1:d2:4a:dc:e0:9b:c5:10:16:43:a5:5a:a0:
91:44:b2:84:f3:14:b1:ac:a7:61:33:25:32:73:56:71:11:d3:
77:35:e5:aa:ee:2c:a0:1f:22:29:48:82:58:6f:42:52:6e:29:
b8:ed:03:4a:25:9a:93:5c:c7:4a:71:a2:30:44:5a:ad:b1:45:
df:9f:03:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:54 2023 by rpki-client on console-ams.rpki-client.org