Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/e18c2d-64ff-44e8-8eef-b9c89b9b1f65/1/j26CPtATgSINTLv5TPyksZw2cL4.roa
File: j26CPtATgSINTLv5TPyksZw2cL4.roa (raw, json)
Hash identifier: MpcaIy02xvseeE1Vht2vjZuWCJfzLh/lSTn57tpqMYA=
Subject key identifier: 8F:6E:82:3E:D0:13:81:22:0D:4C:BB:F9:4C:FC:A4:B1:9C:36:70:BE
Certificate issuer: /CN=0ae1a5b68eca768f211a48e856d7f583f90e75e7
Certificate serial: 0440A17F
Authority key identifier: 0A:E1:A5:B6:8E:CA:76:8F:21:1A:48:E8:56:D7:F5:83:F9:0E:75:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CuGlto7Kdo8hGkjoVtf1g_kOdec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/e18c2d-64ff-44e8-8eef-b9c89b9b1f65/1/j26CPtATgSINTLv5TPyksZw2cL4.roa
Signing time: Sat 01 Jan 2022 02:55:57 +0000
ROA not before: Sat 01 Jan 2022 02:55:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8426
IP address blocks: 194.48.207.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71344511 (0x440a17f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ae1a5b68eca768f211a48e856d7f583f90e75e7
Validity
Not Before: Jan 1 02:55:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f6e823ed01381220d4cbbf94cfca4b19c3670be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:e3:e1:b1:1f:bf:54:13:9d:35:5f:cc:9b:15:
26:8b:c2:32:3f:69:d2:35:43:0e:9a:a7:96:de:ae:
fe:5e:b4:97:45:80:2b:1b:0f:85:3e:16:1d:16:cd:
f3:3f:7a:67:91:10:77:0d:2a:7f:09:da:76:17:5c:
21:a9:2b:aa:0c:3e:99:f2:ae:21:03:58:1f:4f:e6:
12:b6:a2:40:d3:f0:86:4c:74:b0:49:ab:0f:7f:9f:
26:68:0d:cd:38:82:46:ee:43:81:6d:55:62:8e:2c:
c9:73:9a:ca:99:5f:d2:9b:67:97:18:d9:c1:33:a3:
42:2c:fd:b3:0a:33:23:4a:03:08:5c:61:87:1b:4e:
71:1c:7b:14:ba:43:0f:0c:ca:03:c0:56:17:58:20:
80:0e:17:ed:80:a9:9f:8a:d1:d5:a8:66:4b:ed:c5:
df:15:70:45:fe:92:d2:78:e6:ae:98:98:e7:0e:e2:
3c:f6:a5:d2:22:b4:67:59:13:13:37:49:8e:bc:f3:
32:4d:d3:cf:76:6f:9e:89:23:37:87:f7:c0:4d:0b:
eb:ab:f5:38:67:f1:c8:b4:1b:6b:ec:6a:a3:ac:a3:
93:c2:0b:76:c0:f7:d5:e5:66:56:d4:95:0a:3f:88:
9a:29:7c:d4:3e:5e:66:9b:e6:ff:98:13:5c:e5:bf:
d6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6E:82:3E:D0:13:81:22:0D:4C:BB:F9:4C:FC:A4:B1:9C:36:70:BE
X509v3 Authority Key Identifier:
keyid:0A:E1:A5:B6:8E:CA:76:8F:21:1A:48:E8:56:D7:F5:83:F9:0E:75:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CuGlto7Kdo8hGkjoVtf1g_kOdec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/e18c2d-64ff-44e8-8eef-b9c89b9b1f65/1/j26CPtATgSINTLv5TPyksZw2cL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/e18c2d-64ff-44e8-8eef-b9c89b9b1f65/1/CuGlto7Kdo8hGkjoVtf1g_kOdec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.207.0/24
Signature Algorithm: sha256WithRSAEncryption
98:7a:f9:51:51:f5:c4:08:b6:fb:7e:1c:0b:fd:88:23:62:73:
a4:72:40:9c:6a:51:7e:c7:15:d1:d9:b9:c1:c8:c1:86:d8:fb:
24:15:07:0c:a3:bb:38:d2:1f:b6:c6:8f:22:3b:e5:72:59:8e:
ae:61:97:46:e4:90:9a:99:02:94:43:04:9e:e9:1d:47:db:f3:
cc:5f:75:3d:f6:de:c9:03:40:f6:68:2a:ad:71:7e:ee:fa:d3:
7c:70:50:06:54:10:c6:e7:39:85:12:04:3b:b7:89:70:33:8c:
b5:47:b9:1e:d5:70:a0:7f:a9:68:96:b9:bd:5c:a0:c9:8f:d3:
99:da:39:9f:36:d8:93:b9:cc:28:f4:73:bd:06:78:ef:96:87:
bb:b3:66:dc:b7:d8:a5:26:e7:97:12:a9:17:3a:e6:71:35:50:
6c:b0:29:87:12:13:7b:bb:19:26:55:ce:48:d7:4d:a4:66:ea:
d4:e1:6d:c0:95:7e:45:6b:1e:69:04:da:db:3b:d7:18:a2:b6:
0c:c3:1a:cf:40:6b:d3:fb:3c:18:ce:3b:ce:04:3c:b1:29:4f:
c8:4d:ce:39:a9:06:df:0b:1f:ed:e5:80:4b:03:3a:55:42:bb:
13:e1:52:3e:0d:bf:01:be:3e:4e:42:e1:a3:71:a4:44:05:9c:
4e:77:24:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:40 2023 by rpki-client on console-ams.rpki-client.org