Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/310130-6cad-4c2b-9dd1-40e21ea5701e/1/c9Ddr31hpRxbJwjVWTPQtVTDNsc.roa
File: c9Ddr31hpRxbJwjVWTPQtVTDNsc.roa (raw, json)
Hash identifier: tAF8WURGw+Hki2Zrn5pT+PRcJDNcNGS5+XyOuNfJtR0=
Subject key identifier: 73:D0:DD:AF:7D:61:A5:1C:5B:27:08:D5:59:33:D0:B5:54:C3:36:C7
Certificate issuer: /CN=1623c2f37d243494853594fd297c658f7692cbbd
Certificate serial: 0183F0A501812171FB7F37229658A6B51947
Authority key identifier: 16:23:C2:F3:7D:24:34:94:85:35:94:FD:29:7C:65:8F:76:92:CB:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FiPC830kNJSFNZT9KXxlj3aSy70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/310130-6cad-4c2b-9dd1-40e21ea5701e/1/c9Ddr31hpRxbJwjVWTPQtVTDNsc.roa
Signing time: Wed 19 Oct 2022 14:28:08 +0000
ROA not before: Wed 19 Oct 2022 14:28:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30742
IP address blocks: 192.145.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f0:a5:01:81:21:71:fb:7f:37:22:96:58:a6:b5:19:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1623c2f37d243494853594fd297c658f7692cbbd
Validity
Not Before: Oct 19 14:28:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73d0ddaf7d61a51c5b2708d55933d0b554c336c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a1:23:52:9f:1f:3b:7b:2c:fe:a2:b5:98:01:
1c:52:4a:22:06:2f:f0:9c:67:00:ec:fe:17:cb:d1:
ef:c8:44:56:cc:66:e9:9c:f9:0d:42:8a:26:f1:11:
84:24:58:0a:7c:65:70:bc:9b:f6:05:7d:c2:ae:85:
6e:f9:49:c0:47:93:88:b3:e4:50:f7:b2:0a:2e:7e:
50:d4:22:c7:ee:a1:87:eb:27:49:d7:e4:7c:2a:09:
a0:e2:c0:69:35:17:c8:9e:37:29:35:81:bc:92:32:
f2:4c:2d:49:ed:32:34:d8:b0:47:cc:8a:08:f4:93:
16:0e:09:6c:45:dd:62:43:b6:12:54:d4:ef:d8:7c:
bc:90:0d:32:c1:5e:f1:3b:03:6c:1a:ee:24:03:ad:
6e:cf:8e:7d:12:c4:13:22:8f:05:fd:10:5b:45:3a:
4f:f4:47:76:f7:bb:ff:f2:e6:8d:99:5e:10:89:1d:
4c:eb:49:b7:91:a1:e2:14:b5:a3:3a:89:fa:7a:09:
4c:89:0a:58:39:fe:7a:6c:dd:36:f2:d9:70:76:d5:
bc:81:0e:8e:94:e4:1f:d4:82:53:c3:19:d5:02:f6:
b3:59:5b:8a:24:1d:2f:31:c9:20:de:97:e1:d7:aa:
d1:80:2a:1c:a3:8c:f4:b3:97:43:c1:19:b4:d1:d8:
f4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D0:DD:AF:7D:61:A5:1C:5B:27:08:D5:59:33:D0:B5:54:C3:36:C7
X509v3 Authority Key Identifier:
keyid:16:23:C2:F3:7D:24:34:94:85:35:94:FD:29:7C:65:8F:76:92:CB:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FiPC830kNJSFNZT9KXxlj3aSy70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/310130-6cad-4c2b-9dd1-40e21ea5701e/1/c9Ddr31hpRxbJwjVWTPQtVTDNsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/310130-6cad-4c2b-9dd1-40e21ea5701e/1/FiPC830kNJSFNZT9KXxlj3aSy70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.112.0/22
Signature Algorithm: sha256WithRSAEncryption
d2:a6:6c:23:ee:db:dd:14:ca:a0:a5:31:a6:ff:4a:c3:1a:cc:
07:56:cb:a7:8c:2b:af:1a:e0:a0:53:4b:a2:c1:f2:36:2a:52:
e3:de:19:2b:5b:46:2f:ee:47:dd:69:e6:c4:32:2f:26:e6:2e:
59:50:c6:5f:9a:a2:70:8c:c9:c3:39:8e:be:34:6d:06:7f:b5:
40:1c:b0:93:3e:95:19:bf:b8:96:bc:ff:93:21:77:bd:ad:14:
f2:5f:93:29:3d:d7:3d:74:f2:79:d8:58:a8:ef:78:cb:76:12:
6c:f3:99:1e:4c:cd:e3:d8:f5:c7:ac:c4:cb:3c:ad:e6:e1:47:
50:eb:15:43:96:1d:c4:cd:ef:c5:d8:ec:d8:ab:38:b5:ed:20:
21:aa:63:d1:7d:aa:34:35:b6:4f:e8:8a:24:89:30:20:81:29:
78:4b:18:a0:33:61:eb:03:ac:d2:1b:3f:39:84:7e:aa:1f:c9:
5e:30:ed:c1:63:dc:b6:a5:93:bd:db:6e:9d:f4:c3:73:18:d4:
30:e7:a3:e4:5c:08:70:85:52:4c:9c:59:2a:1e:85:70:d8:39:
f6:f0:8a:b2:b9:91:7e:00:1d:f0:45:54:34:7a:48:cb:e5:db:
61:0b:86:7f:c0:ca:7f:09:db:63:1d:25:c9:17:5f:d6:96:8e:
24:6f:3b:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:51 2023 by rpki-client on console-fra.rpki-client.org