Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/AcPi3pulEqYxZg5SIlCM6ucuawU.roa
File: AcPi3pulEqYxZg5SIlCM6ucuawU.roa (raw, json)
Hash identifier: QRviUn1lzAxecJXglc9VAPFvCrYWHHQ5T6RiREM6sEk=
Subject key identifier: 01:C3:E2:DE:9B:A5:12:A6:31:66:0E:52:22:50:8C:EA:E7:2E:6B:05
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 0766128F
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/AcPi3pulEqYxZg5SIlCM6ucuawU.roa
Signing time: Wed 16 Feb 2022 12:43:57 +0000
ROA not before: Wed 16 Feb 2022 12:43:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62119
IP address blocks: 194.147.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124129935 (0x766128f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Feb 16 12:43:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01c3e2de9ba512a631660e5222508ceae72e6b05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ba:ae:44:d1:92:bd:6a:ac:e6:01:03:43:3f:
c1:ae:c9:eb:9c:14:b2:23:96:77:c8:01:d1:80:df:
ce:18:a7:dd:46:b9:ae:1f:a5:c0:2d:dc:1d:18:3f:
21:02:29:4d:00:ef:32:2c:6a:89:dc:59:d2:bf:db:
bd:b2:4b:35:a3:93:ca:0f:3d:2d:33:d5:41:21:42:
87:9c:21:26:38:3f:21:d2:84:2f:48:97:75:e3:6e:
69:d5:1a:56:87:57:cc:46:33:c1:2c:3b:ac:6e:1e:
85:e8:37:28:f8:20:6b:71:6a:bf:dd:01:f9:70:6d:
92:a1:d0:d7:56:22:8e:51:29:e0:06:45:01:2c:eb:
60:7b:24:63:c2:ba:83:2d:e6:a0:2c:62:86:a0:d0:
f9:2a:a7:92:88:0b:b6:eb:6c:d3:eb:88:b7:a0:5c:
ce:be:fd:8b:66:6c:7e:c8:af:0a:0f:35:54:f3:8d:
14:a7:03:ec:8f:e9:f8:30:29:cd:42:83:5a:62:17:
9f:bd:48:1d:5b:9e:eb:14:1b:1f:00:64:b6:cb:b4:
36:ce:19:31:b1:7f:2e:57:e3:90:c2:23:85:89:13:
b9:f7:2c:98:83:60:49:f4:74:52:da:5e:3b:20:47:
ce:3a:be:01:2a:6e:87:1c:50:a5:90:b6:60:7d:b2:
a2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C3:E2:DE:9B:A5:12:A6:31:66:0E:52:22:50:8C:EA:E7:2E:6B:05
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/AcPi3pulEqYxZg5SIlCM6ucuawU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.97.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:12:74:30:c6:fa:de:e0:d7:0d:dd:83:b0:c9:94:06:86:5e:
c3:82:b1:0c:33:b4:45:47:47:d8:30:0c:ac:67:29:d7:d4:b2:
e1:80:8b:32:43:14:a1:e8:0c:e9:37:57:25:04:e6:d3:ae:39:
1e:8f:f7:aa:11:ad:49:0a:83:57:22:51:a7:2f:75:fd:6d:6d:
60:7e:af:54:e9:d6:15:44:ec:d2:69:e9:80:b7:58:21:a2:b3:
b2:0a:eb:3d:db:2c:2b:75:53:91:83:9e:a3:ef:78:c3:5c:77:
38:22:e0:f7:17:20:88:cc:e9:52:1d:f7:fc:eb:e2:3a:f8:54:
7e:14:99:c6:b7:0d:7d:19:25:91:99:d0:2e:2e:cc:2b:41:82:
d6:7c:99:c0:f9:dc:51:51:fb:74:b4:68:01:c4:14:77:09:68:
cd:4a:68:21:55:08:83:ee:3f:d2:48:a6:f9:02:b4:5a:22:51:
23:6d:2a:fe:80:be:d1:79:38:c5:54:2e:3f:7c:09:a6:9b:0e:
ed:85:b4:dc:ae:0d:34:5c:10:a3:a1:90:4f:33:b9:44:51:b6:
e6:b6:22:02:7f:c1:c7:07:31:fd:ef:7b:9c:48:7e:95:3a:ac:
9c:a8:a1:0a:24:5c:62:9b:dd:ce:e3:86:08:ba:b4:0b:41:ed:
fe:7c:51:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:59 2023 by rpki-client on console-ams.rpki-client.org