Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/g2lDz5KUvOGZj4EYtwkm50RT77A.roa
File: g2lDz5KUvOGZj4EYtwkm50RT77A.roa (raw, json)
Hash identifier: QzKSO4LX2R82QyTQCJChMEc4GwD7pAB4zQm4uQKHcq4=
Subject key identifier: 83:69:43:CF:92:94:BC:E1:99:8F:81:18:B7:09:26:E7:44:53:EF:B0
Certificate issuer: /CN=e9cb1687488cf43a7334f9efa4d9cdf635724e9c
Certificate serial: 016C2300
Authority key identifier: E9:CB:16:87:48:8C:F4:3A:73:34:F9:EF:A4:D9:CD:F6:35:72:4E:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6csWh0iM9DpzNPnvpNnN9jVyTpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/g2lDz5KUvOGZj4EYtwkm50RT77A.roa
Signing time: Mon 13 Jun 2022 02:41:04 +0000
ROA not before: Mon 13 Jun 2022 02:41:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212921
IP address blocks: 194.126.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23864064 (0x16c2300)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9cb1687488cf43a7334f9efa4d9cdf635724e9c
Validity
Not Before: Jun 13 02:41:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=836943cf9294bce1998f8118b70926e74453efb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:e4:30:63:ff:13:22:c7:d0:8f:19:03:77:77:
33:da:f6:f2:41:df:9e:c3:00:34:b3:21:4b:33:fd:
3b:48:16:14:ec:9e:fa:99:d7:7a:3f:5c:f9:fc:f8:
ad:45:ca:5a:f7:0f:ea:ab:dd:b1:eb:a0:75:69:4b:
e1:5d:94:0e:c5:ce:87:37:f2:de:65:90:74:13:ac:
25:28:6e:f0:12:dc:7c:b7:0e:8f:93:99:54:34:66:
6a:8c:d8:a7:22:ef:aa:78:1b:e6:d5:a0:9e:15:eb:
bb:00:5e:4c:65:81:68:20:ae:b2:7f:09:9f:01:7a:
28:9f:5d:b0:17:21:13:aa:0a:b7:21:7d:9a:d7:12:
f1:77:1c:8c:1f:87:66:c8:9c:5f:25:fc:d5:af:8e:
f3:24:bb:05:0a:f5:6c:72:32:aa:3e:44:ce:b7:1f:
1c:4c:71:b5:d3:a7:62:85:23:f9:b4:40:bc:fb:41:
3c:44:4a:84:15:8d:81:e0:b7:0c:04:fc:3e:c2:be:
0e:c0:d3:a5:c3:71:36:52:36:70:4a:9b:c0:ad:71:
a6:c3:ae:e5:85:eb:82:3f:c6:3d:b6:1f:37:17:22:
04:0c:34:7e:9a:5d:08:db:54:75:c7:6c:c6:77:b1:
b2:69:31:7a:f6:1e:7c:e9:3c:78:1c:02:3c:95:4c:
1b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:69:43:CF:92:94:BC:E1:99:8F:81:18:B7:09:26:E7:44:53:EF:B0
X509v3 Authority Key Identifier:
keyid:E9:CB:16:87:48:8C:F4:3A:73:34:F9:EF:A4:D9:CD:F6:35:72:4E:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6csWh0iM9DpzNPnvpNnN9jVyTpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/g2lDz5KUvOGZj4EYtwkm50RT77A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/c60ece-561b-4d19-8abf-c1ffa7e5b04a/1/6csWh0iM9DpzNPnvpNnN9jVyTpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.202.0/24
Signature Algorithm: sha256WithRSAEncryption
97:1c:1f:d3:5a:a3:8f:27:3d:98:ac:2c:88:82:54:8d:24:6e:
d4:4f:df:c1:ff:ec:37:33:c3:03:60:94:09:59:bb:02:21:29:
cc:63:35:68:80:51:54:48:7e:72:ea:71:75:1a:77:da:6e:b3:
df:b3:89:4a:88:6b:d1:49:90:e3:99:b6:fe:ae:c2:5a:5d:4e:
e3:b1:17:a3:e4:c2:0b:61:1b:3e:ca:b6:ad:ec:7b:fd:d4:7a:
47:fb:df:e5:b0:52:f4:8e:63:b8:85:3c:ee:c1:91:0e:3e:a9:
91:6a:0c:66:1f:70:2b:c9:01:ba:c2:bb:46:3f:df:a8:69:88:
37:b9:67:28:c5:a1:51:2b:e8:13:bc:1d:02:26:8a:e7:2c:8a:
da:55:4c:b5:63:ef:e0:ba:e2:5a:da:70:bb:ce:1d:e1:a1:96:
1e:30:f8:29:f5:53:fa:c8:2d:b9:ca:b5:85:f9:c8:1d:2c:b4:
51:e4:bc:b5:50:3d:29:4e:06:bb:e6:33:8d:dc:c3:f4:f3:17:
a3:0b:c1:37:fd:cd:ef:cd:61:d0:14:4f:05:5e:57:57:88:72:
6d:2e:fc:46:46:6a:50:47:08:dd:eb:46:f2:71:8a:0d:b4:6e:
7a:de:88:ce:57:c6:ba:48:21:dd:10:e1:50:cb:01:f2:24:4e:
91:89:ec:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-ams.rpki-client.org