Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/a-RK7QyzjhWOB7fXkkk9PCicX7E.roa
File: a-RK7QyzjhWOB7fXkkk9PCicX7E.roa (raw, json)
Hash identifier: 4FwhYn9FjRThhNyauZeycrB5Vwhdxokz+igKKDUDJvU=
Subject key identifier: 6B:E4:4A:ED:0C:B3:8E:15:8E:07:B7:D7:92:49:3D:3C:28:9C:5F:B1
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 0B5D51CF
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/a-RK7QyzjhWOB7fXkkk9PCicX7E.roa
Signing time: Sat 01 Jan 2022 10:56:18 +0000
ROA not before: Sat 01 Jan 2022 10:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28717
IP address blocks: 194.50.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190665167 (0xb5d51cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jan 1 10:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6be44aed0cb38e158e07b7d792493d3c289c5fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:86:d2:45:a2:d6:34:51:b8:8d:f2:06:f0:28:
2a:f4:f3:2a:96:43:31:7d:b0:d2:b7:42:77:fd:24:
33:2d:0a:1f:cd:86:46:45:57:a5:bc:3f:19:2f:fd:
d6:a6:f2:99:62:0c:0c:21:f4:fd:b7:fe:48:27:b2:
0d:97:51:7b:03:ee:5b:85:6a:24:d9:cc:12:f1:3c:
ae:05:ae:bd:54:44:e4:39:7c:dc:e4:59:d4:35:f3:
74:fe:93:bf:c9:7d:7c:77:e0:72:8d:f5:40:d3:4e:
f7:42:d0:69:58:0e:ed:5b:ab:65:ee:b1:59:01:f2:
0e:93:92:ea:5b:7c:bf:d2:20:97:67:db:8a:c0:8a:
e7:dd:07:7d:79:f4:bb:be:ea:1f:2c:bd:9d:64:77:
59:12:33:7f:90:a7:a0:07:e0:cd:a5:0e:70:b1:61:
e0:57:f0:c6:6e:47:35:f3:ea:01:7e:1e:93:27:85:
d9:94:d2:af:09:dc:78:93:e8:f4:d0:aa:98:aa:3c:
f1:90:da:5e:76:1d:38:35:8f:cc:4c:38:95:c8:12:
3c:e1:3a:0a:e1:c8:8d:7f:d6:6d:e6:7c:26:f6:bb:
34:d7:b1:2d:bf:0c:f7:0f:e3:51:8c:29:af:0d:fe:
98:5b:76:7e:30:61:6c:31:16:62:d3:3c:7b:bb:1f:
81:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:E4:4A:ED:0C:B3:8E:15:8E:07:B7:D7:92:49:3D:3C:28:9C:5F:B1
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/a-RK7QyzjhWOB7fXkkk9PCicX7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.57.0/24
Signature Algorithm: sha256WithRSAEncryption
55:b4:6f:a4:93:fb:d9:e2:33:91:c0:2c:ed:b3:24:06:c5:0c:
79:59:83:fc:b5:69:ad:f4:65:4c:85:02:7f:0e:e3:c3:b5:de:
3c:c0:6f:b5:37:e0:98:a6:37:db:7a:03:81:df:7c:76:d2:57:
ef:72:77:a8:2c:4f:fb:1e:36:15:f0:f9:ec:92:3d:71:05:1c:
d8:39:1f:70:39:1d:eb:44:b5:59:8c:bc:ef:81:bb:38:29:c8:
bd:a6:58:b5:ea:7e:15:17:31:18:bf:b0:be:55:6a:a5:92:f8:
ec:77:17:56:19:73:4d:5f:d2:da:6f:8f:eb:af:76:70:fc:f3:
4f:f2:d9:d5:c8:df:9d:d6:a6:7a:7c:17:43:50:90:43:98:cb:
46:7c:1c:48:f3:d4:b7:fa:e4:73:11:c4:e0:e9:cd:07:7b:eb:
c7:57:09:1d:f7:4b:08:aa:f2:20:e5:fa:40:da:82:a9:0c:a0:
57:de:8c:ba:a3:35:fe:fa:c8:38:c2:dc:43:ab:b2:15:e6:c8:
a9:93:1e:40:6a:cf:8b:21:06:6d:b7:39:b9:32:e4:e8:b0:81:
b1:83:ee:1d:4a:b0:1f:6a:53:be:b8:98:f3:39:16:7b:8f:68:
94:5b:8e:99:fd:ec:e2:00:e5:32:cc:b8:60:be:91:6d:88:66:
97:b4:b1:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:17 2023 by rpki-client on console-fra.rpki-client.org