Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/7wZdgMyDPGZio1Iw1-TTWqyEefI.roa
File: 7wZdgMyDPGZio1Iw1-TTWqyEefI.roa (raw, json)
Hash identifier: G6yZwmFsJ6u/Q6fT4/Vpa3NOrm8E0v0kyghtZlA3Uwg=
Subject key identifier: EF:06:5D:80:CC:83:3C:66:62:A3:52:30:D7:E4:D3:5A:AC:84:79:F2
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 0184E24C6745948DC335E4C1203AE3CC60F6
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/7wZdgMyDPGZio1Iw1-TTWqyEefI.roa
Signing time: Mon 05 Dec 2022 12:39:28 +0000
ROA not before: Mon 05 Dec 2022 12:39:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 152.89.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e2:4c:67:45:94:8d:c3:35:e4:c1:20:3a:e3:cc:60:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Dec 5 12:39:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef065d80cc833c6662a35230d7e4d35aac8479f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:1e:f0:7a:34:03:a9:58:3b:3b:90:3e:18:30:
29:e9:a2:8b:81:94:bf:59:4b:8d:60:9b:60:7d:35:
91:69:7c:f1:1c:09:56:17:5f:78:ee:ff:4b:bf:be:
4a:23:1e:44:98:d1:89:ae:f3:ae:54:f2:c5:7d:5b:
40:96:ee:5c:7f:2d:e9:9c:12:65:63:b5:cb:e5:60:
5a:a0:29:d5:f5:da:0b:07:d6:9f:bf:62:2e:75:0a:
53:a2:8a:b2:61:1b:a1:9a:ce:74:42:a8:9d:35:ef:
f5:f5:f6:b1:61:74:2c:a8:77:71:53:ba:c7:98:a0:
79:f4:cd:54:24:d3:d0:05:35:24:b3:cc:1f:6d:7a:
c5:a4:42:fc:80:02:43:b2:f0:22:6a:84:83:04:ee:
3d:1c:11:f9:92:f8:5e:b4:39:1e:c5:d9:e1:91:b1:
f0:a7:61:f6:67:de:74:fa:1f:f1:23:1d:c7:62:47:
4c:69:82:b0:c6:11:33:2c:b3:14:1e:a5:25:1f:d7:
61:f9:b3:93:e6:c7:ea:75:1f:74:9e:ed:5e:39:b2:
1b:69:57:49:db:78:09:20:a8:06:87:85:08:0e:ec:
5e:74:ec:45:ee:45:fa:e4:53:25:76:3f:9b:fc:9e:
e2:4c:0e:ca:61:ac:ce:3f:62:7f:9f:3a:f2:c3:13:
e9:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:06:5D:80:CC:83:3C:66:62:A3:52:30:D7:E4:D3:5A:AC:84:79:F2
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/7wZdgMyDPGZio1Iw1-TTWqyEefI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.193.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:19:0b:d0:a5:6c:76:7b:93:b4:b7:47:25:2e:58:22:7c:e0:
ee:fd:c0:8c:ea:ee:e4:de:6c:5c:ce:56:5f:e6:b3:cc:49:ad:
a3:61:b9:64:46:4a:39:94:b1:f8:8a:b8:1d:6c:28:3a:40:62:
f4:2f:10:98:f6:06:b2:81:9f:a7:cf:fd:3d:5b:c8:82:17:c9:
37:5e:43:99:ad:04:d9:2b:6f:98:46:7d:c6:a9:b4:96:0d:d9:
e7:f9:e0:31:70:8f:23:2f:21:34:27:55:83:fe:1e:c8:96:3c:
0d:93:cb:fe:33:81:3f:92:fd:53:3f:c8:ca:98:ca:c9:bb:cd:
08:ba:e0:62:6f:a6:eb:84:cf:f4:e9:00:87:68:cb:dc:bb:ff:
7f:8a:48:2b:21:60:bd:b9:e6:ce:01:36:2c:92:c2:05:0a:4f:
bf:9a:54:ee:0d:e8:b8:c3:e1:a5:9b:d5:62:79:c8:a2:e0:95:
76:cd:56:8d:0e:ba:48:0b:b1:40:07:7a:62:fc:04:00:86:09:
fb:b7:27:40:3a:d2:f7:4c:b9:4e:a4:d3:ca:80:79:98:9a:fb:
26:ba:76:07:c3:bb:8d:9d:e4:dc:0f:d5:37:f4:04:81:d2:4b:
3d:bd:58:61:7b:ff:26:7b:25:39:70:13:e3:d1:35:69:29:f1:
31:2d:50:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:28 2023 by rpki-client on console-ams.rpki-client.org