Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/R1WYCpZIoeNJjqP1piMYbC8hYVE.roa
File: R1WYCpZIoeNJjqP1piMYbC8hYVE.roa (raw, json)
Hash identifier: wzjor7g+70souo1HsRFlrRMb+lFsw3UW+1ImyfWgXQw=
Subject key identifier: 47:55:98:0A:96:48:A1:E3:49:8E:A3:F5:A6:23:18:6C:2F:21:61:51
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 0182EEF5CDB9BE5CBADB6CDEFA96FA77532D
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/R1WYCpZIoeNJjqP1piMYbC8hYVE.roa
Signing time: Tue 30 Aug 2022 13:34:22 +0000
ROA not before: Tue 30 Aug 2022 13:34:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 194.165.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ee:f5:cd:b9:be:5c:ba:db:6c:de:fa:96:fa:77:53:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Aug 30 13:34:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4755980a9648a1e3498ea3f5a623186c2f216151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:22:4c:b2:b2:34:cb:6c:2e:c0:84:52:d0:4e:
d5:9d:eb:64:88:54:79:8d:73:af:8b:77:26:43:b9:
e0:15:c7:a4:8a:f3:76:5a:17:5e:92:01:78:b4:ed:
9b:a6:d1:62:ec:e8:35:e6:12:3c:cd:10:23:1c:da:
e2:c2:e8:8a:de:82:a8:65:30:a7:6f:77:f0:fa:bb:
e2:9c:28:3a:db:48:1c:00:98:2e:84:7b:ca:ed:f7:
71:5a:ba:ef:1a:99:3f:47:af:b8:0c:3e:b4:45:55:
09:5d:53:85:3f:ae:67:77:78:1d:7b:32:86:8a:7e:
80:cf:f0:b7:9c:8a:c9:e9:b3:02:38:06:86:2c:4f:
3c:d2:6a:03:8f:e6:1c:9c:8a:f7:d0:c9:e2:23:cc:
19:c3:a8:89:f5:97:5b:4e:80:3c:df:5c:bf:57:43:
43:66:f7:bc:22:b4:96:db:e2:95:e1:f6:db:ad:e3:
05:e1:e0:73:1f:36:4a:b7:3a:93:53:9c:ae:d4:9d:
1c:d5:17:5e:be:d5:a3:8b:dc:9e:a0:22:b8:56:4a:
4f:29:fb:9e:1c:27:38:7a:71:8b:a6:53:20:a5:5b:
fa:09:95:35:55:3f:b3:44:59:4f:66:bf:16:b2:a4:
81:ff:32:d0:98:02:20:e7:22:cd:b5:72:a9:4a:9b:
99:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:55:98:0A:96:48:A1:E3:49:8E:A3:F5:A6:23:18:6C:2F:21:61:51
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/R1WYCpZIoeNJjqP1piMYbC8hYVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.27.0/24
Signature Algorithm: sha256WithRSAEncryption
10:c9:6f:db:6b:b2:55:43:de:9a:78:23:60:c4:56:52:aa:7a:
71:41:5e:02:2d:4f:82:dc:fe:5b:4e:02:95:2f:0a:1f:f0:ca:
5d:6b:17:53:c2:3f:42:96:4b:02:6a:e7:51:1f:9a:7c:cb:22:
71:62:5f:19:92:75:85:8b:c5:b8:88:7c:70:f5:7d:03:9f:c7:
35:d3:46:d3:08:a8:c6:85:96:90:a0:fc:10:36:d1:1d:24:f9:
b9:d6:95:c1:85:1a:7b:76:49:29:f6:a9:10:b9:34:f6:e7:00:
31:23:66:13:0e:6f:5f:ec:d1:46:82:43:b7:52:87:03:4d:54:
6f:c4:e4:c3:38:94:56:33:66:b4:9c:69:29:c2:9e:80:19:40:
55:d7:a0:1d:ef:34:f1:a0:a7:e0:94:f7:8b:bc:67:88:58:e3:
a1:bf:6a:d0:4b:95:fb:69:14:98:87:2e:a6:a8:7c:1f:95:e2:
4f:ba:28:23:5e:b3:01:d4:d2:54:8f:81:be:a4:26:f4:06:bb:
ed:75:38:c5:89:70:85:03:2f:41:53:53:5c:da:f3:65:42:74:
e9:2c:c5:a5:73:bc:20:7f:ce:69:35:f9:b6:95:ba:ef:ce:fc:
86:1c:ed:aa:03:01:8f:ed:f9:82:38:13:df:eb:24:d6:24:ba:
31:3b:bb:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org