Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/w6GSzVqi6vFnRLjO3L3Nz2c21xA.roa
File: w6GSzVqi6vFnRLjO3L3Nz2c21xA.roa (raw, json)
Hash identifier: P0pH3IQ8rf7VEc5FogVmfcylzkzc1TxQuI+zZvdvPLw=
Subject key identifier: C3:A1:92:CD:5A:A2:EA:F1:67:44:B8:CE:DC:BD:CD:CF:67:36:D7:10
Certificate issuer: /CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Certificate serial: 02EE4776
Authority key identifier: 3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/w6GSzVqi6vFnRLjO3L3Nz2c21xA.roa
Signing time: Thu 12 May 2022 05:27:01 +0000
ROA not before: Thu 12 May 2022 05:27:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207588
IP address blocks: 194.15.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49170294 (0x2ee4776)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c4ed942e5c742e77bfb9beb954f872534f52848
Validity
Not Before: May 12 05:27:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c3a192cd5aa2eaf16744b8cedcbdcdcf6736d710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ea:fb:23:06:86:ac:d1:f1:49:43:b4:7e:fb:
91:84:f1:b4:74:54:d5:1b:e5:a0:bc:62:bb:cd:4a:
73:b9:ce:b6:77:85:d1:b4:c5:8c:a5:f3:de:86:28:
65:94:0b:7c:38:93:ad:bc:ec:00:13:43:7f:11:16:
09:fd:cf:4f:f8:73:b7:b0:39:6d:79:32:04:3a:44:
c9:bc:02:07:ff:99:8f:73:d4:a4:ca:61:47:97:4a:
8a:c6:42:52:66:a1:93:08:e3:fe:a6:1a:46:68:a8:
f3:ee:a0:96:42:1b:58:cf:b4:7a:89:0e:3c:5e:41:
3b:b7:7d:d9:a8:79:8f:c9:42:0d:35:bd:95:f8:f4:
02:bf:82:52:96:d5:7b:a7:53:31:55:27:f9:3c:f3:
0c:0b:e5:56:c7:93:35:2e:c5:7b:e3:da:ab:bb:55:
cd:62:28:98:41:60:22:9e:4e:aa:44:f7:b4:23:01:
22:40:20:a9:fc:3f:24:22:8e:c3:56:46:bf:63:55:
1c:c1:2d:3b:fd:2e:4f:4d:0b:ee:01:60:7a:9a:c0:
8b:11:13:7b:9e:26:c1:1b:b3:36:24:ee:12:5f:9a:
7a:4f:11:1d:ef:a5:cf:31:80:2f:35:8b:ef:eb:b0:
58:7c:1e:68:0c:15:37:a8:e9:52:93:f0:b9:e8:5e:
78:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:A1:92:CD:5A:A2:EA:F1:67:44:B8:CE:DC:BD:CD:CF:67:36:D7:10
X509v3 Authority Key Identifier:
keyid:3C:4E:D9:42:E5:C7:42:E7:7B:FB:9B:EB:95:4F:87:25:34:F5:28:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PE7ZQuXHQud7-5vrlU-HJTT1KEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/w6GSzVqi6vFnRLjO3L3Nz2c21xA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1bb45a-551c-4967-95ca-77344bcc9191/1/PE7ZQuXHQud7-5vrlU-HJTT1KEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.15.154.0/24
Signature Algorithm: sha256WithRSAEncryption
22:49:c2:33:cf:b2:60:c8:55:d3:08:5f:29:9e:f9:4b:b0:d0:
5d:4e:8d:51:c0:9f:2a:b3:73:57:c5:e6:ee:ed:2b:13:57:b7:
2c:0c:87:13:38:ec:95:c3:55:a0:f6:a5:77:d5:df:92:a4:d1:
9f:b1:49:89:16:14:93:0e:e5:26:16:83:01:fb:fe:80:90:31:
77:b1:34:99:a3:da:8a:c5:11:e9:31:b7:d8:b5:74:ec:72:81:
b8:06:4d:e7:cf:a4:ff:b5:8c:25:6f:70:65:6d:95:77:ae:4f:
d9:4f:94:ab:29:3d:f7:69:07:47:2a:63:d5:12:9f:a0:4c:e7:
e8:9d:4e:1d:12:9b:26:7a:10:22:b9:cf:55:3c:cd:43:c7:1b:
38:05:51:78:6f:20:f4:ce:11:d1:be:7c:d4:f9:bf:19:6d:93:
97:04:2a:82:fc:57:f8:9b:00:ea:60:80:2d:6f:d1:d4:ed:05:
14:4f:5a:d0:ad:02:e6:23:71:03:96:f3:84:f4:7a:7c:16:8a:
34:4c:bd:e1:e9:02:c9:b9:db:91:56:72:3a:f1:a4:52:86:fc:
26:32:be:fe:2e:7e:b6:55:62:c8:54:18:6d:ab:18:25:c3:f1:
38:e2:d5:32:1b:a6:e2:fb:5b:5a:e3:4b:34:3c:d8:8f:cc:d0:
12:74:1b:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:13 2023 by rpki-client on console-fra.rpki-client.org