Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/pVInnir83WAJZxNvw1baStJXFDA.roa
File: pVInnir83WAJZxNvw1baStJXFDA.roa (raw, json)
Hash identifier: wfr7KpA+XjHNzNLUuGjqdkLmoWZxA6TtkKzWM3gx1+g=
Subject key identifier: A5:52:27:9E:2A:FC:DD:60:09:67:13:6F:C3:56:DA:4A:D2:57:14:30
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 049FFC51
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/pVInnir83WAJZxNvw1baStJXFDA.roa
Signing time: Thu 10 Mar 2022 16:50:19 +0000
ROA not before: Thu 10 Mar 2022 16:50:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31898
IP address blocks: 194.165.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77593681 (0x49ffc51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Mar 10 16:50:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a552279e2afcdd600967136fc356da4ad2571430
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:0e:cc:2b:2e:fa:a1:9f:f8:4d:db:1c:f0:d1:
7a:e1:e4:72:ee:e7:b4:56:0b:63:77:20:1e:22:10:
23:e8:7f:07:71:3c:ce:23:02:f6:08:49:14:72:23:
cd:f6:c0:34:c5:b4:58:58:91:03:47:ea:83:5b:bd:
d0:32:25:16:80:1f:f8:90:22:c6:39:c3:b1:ad:3a:
e4:e0:d0:b3:79:b2:48:dd:67:76:5f:67:c5:88:9d:
1e:a8:38:10:e4:c1:6e:c1:cc:93:da:b1:5f:a5:dd:
57:58:04:f9:70:3e:19:66:da:17:cb:15:5b:70:1b:
13:fe:8b:e9:78:ee:45:29:ec:23:21:4f:bd:0d:c4:
bd:e9:12:83:ac:3b:19:5b:f6:d9:eb:c1:87:3a:65:
96:ce:a5:46:75:c1:5a:1f:5a:2f:e7:c7:8d:83:3d:
b0:dd:e9:79:57:7d:84:0c:0c:02:70:0f:45:9e:a2:
ee:64:b7:d7:31:93:d2:62:cd:a1:99:49:8a:6b:57:
db:83:78:60:44:7c:80:08:fd:c0:e6:ca:54:29:f9:
b2:14:2e:72:12:d2:ae:76:ed:1a:82:ca:ea:f1:68:
e4:03:26:4f:21:12:69:92:28:82:b9:a0:cc:7c:04:
62:fb:f5:33:1d:e6:90:82:e4:53:7e:ae:d3:40:c6:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:52:27:9E:2A:FC:DD:60:09:67:13:6F:C3:56:DA:4A:D2:57:14:30
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/pVInnir83WAJZxNvw1baStJXFDA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.27.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:d4:3c:56:3f:19:d3:37:59:4a:6d:7f:2b:5a:de:dd:02:bf:
56:83:64:a0:1d:0f:00:21:3c:34:f1:44:50:36:30:ed:89:6c:
d3:3f:d0:ce:a2:ee:a9:7d:1b:27:d8:ec:f8:22:11:c3:35:aa:
c4:75:bc:dc:41:74:49:6b:47:e2:59:b1:97:02:0a:13:75:42:
99:fd:2a:bb:0b:d6:ad:e5:1e:6d:44:2a:ee:5c:8a:7d:77:f8:
3c:24:28:52:55:8b:27:2f:ec:92:2b:ff:30:58:db:78:04:a6:
93:88:93:0e:cd:55:a5:1e:7e:79:90:13:3e:fe:97:25:9e:cf:
4a:5a:13:dc:f5:93:9b:e6:e9:1e:21:1e:f8:7c:b8:cb:a8:06:
0f:e9:c5:d0:ab:50:ae:28:b6:24:72:40:5e:49:72:e6:e4:f4:
bd:c5:19:e2:d3:81:c4:97:9f:da:96:98:83:c0:71:e6:72:b1:
68:e1:5e:a9:bf:35:e8:e2:40:46:43:cb:88:d3:51:e5:d3:c9:
1a:a5:f7:7b:bc:b4:ae:c7:b8:a5:9d:f1:be:ed:cf:5d:7a:9e:
a7:92:56:fb:7b:93:76:7a:6d:b4:c6:28:3b:fa:f6:3f:7f:77:
08:22:c5:0b:7d:dd:04:8f:a8:ab:7f:5b:21:43:f5:e5:29:4f:
87:73:55:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:00 2023 by rpki-client on console-ams.rpki-client.org