Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/sADl1JkAV6JZTpqmX2fFWY3Jwy8.roa
File: sADl1JkAV6JZTpqmX2fFWY3Jwy8.roa (raw, json)
Hash identifier: wdCOdUOmFYNG5HHzX8prpERcc7MBQmQgMxqqj0VfNoU=
Subject key identifier: B0:00:E5:D4:99:00:57:A2:59:4E:9A:A6:5F:67:C5:59:8D:C9:C3:2F
Certificate issuer: /CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Certificate serial: 0B5EA8F8
Authority key identifier: 00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/sADl1JkAV6JZTpqmX2fFWY3Jwy8.roa
Signing time: Sat 01 Jan 2022 10:56:19 +0000
ROA not before: Sat 01 Jan 2022 10:56:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31027
IP address blocks: 194.50.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 190753016 (0xb5ea8f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0072c08f74d2a842a71f23ab61499b52694fc7a5
Validity
Not Before: Jan 1 10:56:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b000e5d4990057a2594e9aa65f67c5598dc9c32f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:72:79:6d:e4:03:89:d8:24:8c:ef:11:3d:a1:
b6:1b:f0:8d:0f:79:78:a2:7b:22:6c:66:79:ac:ab:
b9:1d:bf:9f:e8:b1:60:52:70:81:d1:dc:8a:94:d2:
a0:9a:3f:0c:3d:21:73:81:cb:29:3e:df:dd:42:95:
03:aa:05:57:bc:db:d4:98:19:33:dd:68:89:d4:cc:
47:ad:30:ba:5e:0d:aa:b8:67:16:8e:3c:7a:e8:8e:
72:21:df:0d:cb:5a:6e:39:b5:4b:45:f5:3f:f3:9c:
48:2f:01:4d:1e:0d:77:72:ba:da:a8:62:63:2a:54:
5f:d5:81:2b:e9:bf:8a:47:68:14:1c:ed:22:8c:15:
c9:6d:dc:62:ba:68:85:a0:24:05:2e:73:6a:c2:e8:
3e:c3:e7:dc:36:6b:44:a8:63:ce:0a:b0:20:2c:66:
0e:d2:92:e6:55:ac:dd:df:9c:0f:fe:ee:9e:c4:fc:
9d:70:26:25:57:76:b4:1c:25:42:c6:69:de:1e:d9:
68:c2:15:fd:b5:00:d9:45:d6:e1:3f:1c:f5:5c:16:
bc:09:21:b1:55:19:c1:1f:e2:a4:1c:c2:22:7c:7a:
17:b2:3a:b1:45:96:c3:a4:f3:d4:ae:97:12:79:84:
b7:99:69:bc:f6:53:dc:9b:62:39:5c:c3:dc:22:f2:
e9:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:00:E5:D4:99:00:57:A2:59:4E:9A:A6:5F:67:C5:59:8D:C9:C3:2F
X509v3 Authority Key Identifier:
keyid:00:72:C0:8F:74:D2:A8:42:A7:1F:23:AB:61:49:9B:52:69:4F:C7:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AHLAj3TSqEKnHyOrYUmbUmlPx6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/sADl1JkAV6JZTpqmX2fFWY3Jwy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/ac8e7c-4174-480e-bfaf-667d66469cd9/1/AHLAj3TSqEKnHyOrYUmbUmlPx6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.57.0/24
Signature Algorithm: sha256WithRSAEncryption
24:49:ed:7b:5e:27:61:a3:fd:2f:75:c9:2b:ca:a4:92:08:86:
42:f5:ce:b0:cf:ce:ec:46:e1:e9:12:60:dc:0d:2d:0c:8d:a5:
52:34:e1:d8:b0:42:29:4d:2a:12:ab:58:d8:2a:fd:83:6f:46:
29:40:6a:d8:46:90:f3:6e:9a:88:19:8d:a3:77:38:43:eb:b1:
06:41:0c:10:fd:1c:3b:e8:91:b6:32:c3:6f:74:1c:3f:25:d0:
3c:5a:86:11:a8:e5:f1:1d:4a:e0:ef:0d:99:e7:d6:26:5b:06:
fa:3c:fa:5c:d3:06:d0:00:7f:a9:43:5d:a6:76:92:14:cb:17:
2d:3c:84:70:bf:86:1b:cd:2f:0c:71:b9:b0:c6:72:44:fd:05:
32:c8:19:c8:ae:23:06:89:42:92:09:99:d7:71:b2:d5:a6:24:
84:c5:83:38:65:0f:06:75:b5:7a:05:1f:3d:c9:b1:94:3b:b1:
48:c9:43:ac:77:53:88:49:6f:bf:40:61:41:a9:4d:52:01:6e:
0c:11:6a:a3:0c:e5:92:08:b2:b4:7f:01:ee:cd:1f:0a:2e:10:
b1:ab:67:a8:4f:01:f3:c2:f7:71:da:46:0f:e4:a2:ee:da:26:
a6:21:62:d0:ed:e3:60:08:e9:de:ec:56:3c:fe:f4:d7:be:f3:
5d:f8:06:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:58 2023 by rpki-client on console-ams.rpki-client.org