Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/Ly4OkwOwI1kvMRaHEjPAaaz202s.roa
File: Ly4OkwOwI1kvMRaHEjPAaaz202s.roa (raw, json)
Hash identifier: 5Zs8MHPr+vxJz7WWT9u8eSUjOOW8ffWYHdI+4JHIpGU=
Subject key identifier: 2F:2E:0E:93:03:B0:23:59:2F:31:16:87:12:33:C0:69:AC:F6:D3:6B
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 0182EEF3F923A4F1FE94C20CA4C8403C8BBD
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/Ly4OkwOwI1kvMRaHEjPAaaz202s.roa
Signing time: Tue 30 Aug 2022 13:32:22 +0000
ROA not before: Tue 30 Aug 2022 13:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 194.165.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:f3:f9:23:a4:f1:fe:94:c2:0c:a4:c8:40:3c:8b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Aug 30 13:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f2e0e9303b023592f3116871233c069acf6d36b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:9a:67:c7:86:0e:f2:ec:d0:17:1d:19:1d:0e:
b5:29:3e:4e:61:eb:3a:4e:7c:df:74:1d:c0:93:05:
b3:39:b5:91:9a:22:13:d8:01:24:64:92:81:25:da:
e1:81:59:12:be:4c:88:0e:af:c8:a8:2c:cf:ee:56:
91:9a:b9:fd:db:fb:1d:26:0a:95:9b:48:94:d4:40:
98:2f:ee:1e:5a:56:09:4b:94:d9:f7:ec:15:03:25:
f4:10:12:9c:60:10:ba:ce:5e:3f:24:4d:67:57:3b:
c6:30:6f:ee:7a:4d:42:b0:14:1f:a0:18:6c:e8:f0:
b5:6e:ec:14:0b:e9:0a:2b:34:22:45:d7:b2:dc:db:
a5:13:47:c1:f7:b0:b4:8b:a7:72:48:7f:2c:b7:fa:
ae:e8:4f:fe:5e:45:83:04:0c:62:f3:7d:20:b7:66:
b2:f1:e4:9d:df:09:42:d6:6c:b3:d0:64:25:76:fd:
f8:29:f8:30:44:ea:0a:15:bc:e9:aa:ab:65:a7:c6:
3b:82:b8:d3:bf:f5:40:38:aa:73:f6:7e:a7:10:36:
3b:f5:65:ee:a4:a7:1b:07:c3:be:f2:aa:91:0a:15:
28:bc:2b:cb:29:3f:bc:7e:bb:21:9f:3a:0e:00:9d:
ba:b6:70:00:34:c8:d6:44:9a:6f:79:65:c5:d5:0e:
7b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:2E:0E:93:03:B0:23:59:2F:31:16:87:12:33:C0:69:AC:F6:D3:6B
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/Ly4OkwOwI1kvMRaHEjPAaaz202s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.27.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:2e:3a:e3:03:97:30:34:05:10:4f:bb:f6:07:ac:34:fa:14:
a4:7b:77:90:59:27:4e:ff:b2:b7:d0:28:b4:87:2f:e5:17:57:
d9:70:9f:eb:69:a2:8d:f3:bd:0d:95:dd:f2:7c:96:16:e4:d5:
37:e6:57:45:8f:e0:9f:db:17:19:6f:1a:f9:13:96:c4:69:78:
8b:3e:63:a4:3f:3b:14:41:5b:29:5e:4d:ac:0b:a1:a8:ff:42:
15:a8:a7:2f:cd:41:0b:87:67:78:ef:1b:2b:7d:99:8f:54:4c:
d9:bf:02:f1:05:46:fe:05:33:0a:46:11:01:d2:2a:2c:d8:67:
35:76:c9:ad:8c:75:56:83:16:ce:33:c7:49:2d:bd:e3:7e:2e:
33:1b:51:8c:1b:bc:da:d5:05:7a:6e:70:52:f3:86:c8:5a:7f:
6a:a0:bc:b6:83:23:26:de:29:03:95:95:de:3e:d6:99:1b:64:
37:81:25:b9:33:13:93:ce:53:5c:05:6e:a0:7c:6b:2b:a5:7a:
d6:d0:46:68:c2:68:b0:b4:aa:7a:ec:ac:26:16:b3:a6:d5:50:
a0:4e:81:ee:09:80:fc:60:86:8f:b4:df:bd:cc:3f:b5:6e:38:
71:89:3e:28:9e:ea:53:6a:98:77:6c:09:7a:f5:00:ff:bb:6f:
b5:bf:c6:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org