Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/DCwSQJCi8ege_JGmoBA7HqPC9gg.roa
File: DCwSQJCi8ege_JGmoBA7HqPC9gg.roa (raw, json)
Hash identifier: PmM/PPtUuOu+PavRtPanOcyE+wEvlT8SMpSLXMqJSYU=
Subject key identifier: 0C:2C:12:40:90:A2:F1:E8:1E:FC:91:A6:A0:10:3B:1E:A3:C2:F6:08
Certificate issuer: /CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Certificate serial: 0A430775
Authority key identifier: 64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/DCwSQJCi8ege_JGmoBA7HqPC9gg.roa
Signing time: Sat 01 Jan 2022 13:59:01 +0000
ROA not before: Sat 01 Jan 2022 13:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39912
IP address blocks: 194.34.226.0/24 maxlen: 24
2a0d:f9c2::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172164981 (0xa430775)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=643e1ba91c569a8b21a6d2d67f5dbbd6c04e43ea
Validity
Not Before: Jan 1 13:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c2c124090a2f1e81efc91a6a0103b1ea3c2f608
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:ba:68:86:ef:3b:c2:12:40:f0:df:8b:c8:f1:
1d:11:34:d6:75:2e:6c:78:e3:44:f9:2f:3c:88:8b:
02:f2:c6:6c:bb:a9:cd:ab:20:e8:4e:3a:47:19:22:
6a:40:3c:39:55:c8:3b:79:21:a3:27:15:0f:8b:97:
6b:de:be:2f:6d:68:6d:5f:2a:64:dd:81:35:ea:e4:
ab:dd:e0:9d:ad:c6:04:b3:f7:d9:dd:9d:45:57:e6:
ad:7b:b5:73:bc:4e:e8:f8:a1:50:17:32:73:f6:4c:
b7:5f:1c:6c:68:6c:df:c6:1b:ca:ee:0c:40:d5:65:
4d:8d:1d:81:54:4e:1f:7a:e1:21:c3:e9:b9:46:bc:
41:a7:65:d4:0d:0b:c5:60:b2:78:81:9d:e7:b5:7a:
6f:4c:ea:ad:23:4e:7d:c8:a5:ab:9b:73:ee:86:f3:
c1:c8:cf:23:69:23:da:6b:5a:aa:df:58:ce:be:b2:
a0:ac:89:2f:b2:2f:75:33:93:9b:62:a8:d2:e5:86:
00:2c:d0:d7:73:ea:83:fa:dc:9d:2b:6d:88:57:e5:
e6:10:3b:3f:22:e9:66:a4:ec:06:75:45:cf:47:b4:
e7:11:4f:fa:1f:6f:2e:95:58:46:77:dc:62:ca:29:
39:84:cc:11:f2:87:7f:84:cc:c7:6a:54:18:aa:60:
86:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:2C:12:40:90:A2:F1:E8:1E:FC:91:A6:A0:10:3B:1E:A3:C2:F6:08
X509v3 Authority Key Identifier:
keyid:64:3E:1B:A9:1C:56:9A:8B:21:A6:D2:D6:7F:5D:BB:D6:C0:4E:43:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD4bqRxWmoshptLWf1271sBOQ-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/DCwSQJCi8ege_JGmoBA7HqPC9gg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/aca912-9e8d-4749-95e0-fea0aff359f5/1/ZD4bqRxWmoshptLWf1271sBOQ-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.226.0/24
IPv6:
2a0d:f9c2::/32
Signature Algorithm: sha256WithRSAEncryption
c4:28:47:fe:14:b9:7c:23:5f:09:a5:a6:c4:81:60:98:9f:1f:
eb:23:32:21:25:4b:6a:00:52:c7:8a:3d:ae:29:e5:e7:2d:f0:
4b:e6:03:1b:cb:6e:24:3a:26:e9:77:87:49:b2:d6:8c:92:55:
49:60:32:dd:82:af:54:cb:d8:0b:c3:30:26:21:8a:43:41:64:
c9:49:2f:4f:7b:bf:e3:32:2c:3c:d1:e0:83:fd:4b:22:be:cd:
75:d7:9f:88:77:86:81:fb:cb:73:b1:05:9a:4f:37:fa:fe:29:
77:dd:38:a0:b9:75:bc:53:10:27:dc:23:38:7d:a9:ef:ed:1f:
3b:22:1b:ab:28:a0:a3:40:a6:36:f7:34:32:5b:f3:4f:31:d6:
32:ec:e0:60:3e:d2:4b:cc:b4:11:7b:a2:1b:8c:0a:8f:aa:17:
9f:19:52:10:82:1b:e1:01:59:38:49:5a:e4:c6:a7:85:1b:e0:
c1:e1:40:8e:41:6d:1d:cc:fc:a3:87:a8:07:5b:a1:e7:9e:9d:
a0:1d:63:fe:6c:a1:43:ad:3b:29:52:65:13:c5:6c:98:31:9f:
19:80:00:dd:43:ac:7e:ef:7c:26:13:44:fa:66:f3:1e:f4:dd:
be:fc:42:b5:40:f0:0b:70:89:4c:d3:8c:93:61:e9:46:58:07:
97:16:b7:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:24 2023 by rpki-client on console-ams.rpki-client.org