Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/e913c7-8320-434c-a70f-f936783fabdb/1/UHeqVhV3VR7RboKdjiwiBW8m_X8.roa
File: UHeqVhV3VR7RboKdjiwiBW8m_X8.roa (raw, json)
Hash identifier: DjRrhaPU78ArXPkNp8G9o6lG/kIDbX39RcyYIJz+ruk=
Subject key identifier: 50:77:AA:56:15:77:55:1E:D1:6E:82:9D:8E:2C:22:05:6F:26:FD:7F
Certificate issuer: /CN=ddd8d5d3b29099b269261ee2714da1e9548c4632
Certificate serial: 0184818FED5A38AD1A5276D23CE40825B404
Authority key identifier: DD:D8:D5:D3:B2:90:99:B2:69:26:1E:E2:71:4D:A1:E9:54:8C:46:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3djV07KQmbJpJh7icU2h6VSMRjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/e913c7-8320-434c-a70f-f936783fabdb/1/UHeqVhV3VR7RboKdjiwiBW8m_X8.roa
Signing time: Wed 16 Nov 2022 17:50:03 +0000
ROA not before: Wed 16 Nov 2022 17:50:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57549
IP address blocks: 194.104.233.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:81:8f:ed:5a:38:ad:1a:52:76:d2:3c:e4:08:25:b4:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddd8d5d3b29099b269261ee2714da1e9548c4632
Validity
Not Before: Nov 16 17:50:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5077aa561577551ed16e829d8e2c22056f26fd7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8e:bc:5a:df:45:ba:9d:47:b8:0f:f6:b1:15:
d9:4d:ec:bc:12:bc:92:c4:ae:95:62:20:c6:e1:53:
69:a3:b7:45:18:6f:8e:1d:fd:f7:43:bf:a2:ae:32:
54:c8:9b:2f:a2:a2:70:2a:1c:06:0a:cc:56:d4:e3:
87:52:d7:c4:c2:34:90:52:b7:70:a0:cc:b9:36:b1:
73:6d:75:68:d9:f0:ce:5d:7f:b6:65:71:ed:67:aa:
c7:d9:6e:44:32:35:7d:b1:4d:4b:21:a3:03:fe:42:
75:74:f7:9e:20:be:2e:9c:62:50:d6:6b:d4:2c:a2:
42:32:e0:82:71:a9:de:90:93:fa:4c:89:bf:b7:2c:
21:24:1a:9f:12:c4:00:a2:49:99:de:76:dd:61:bd:
59:c8:6a:b7:19:60:73:0f:87:d8:81:65:b4:80:39:
ad:b4:23:fa:84:ac:3f:9c:b3:12:c4:02:7e:80:63:
c8:ed:ec:60:fe:ef:ea:b3:50:c1:34:89:16:97:10:
dc:83:b5:2c:6d:71:16:14:1f:53:a9:99:9a:26:41:
73:e7:be:47:62:ac:cb:b6:01:30:5b:fb:0b:37:62:
de:a8:54:20:7c:f1:98:ad:c2:15:40:69:c5:6a:84:
50:9c:f2:65:3b:08:3b:0d:0a:c5:b3:2f:51:c4:06:
98:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:77:AA:56:15:77:55:1E:D1:6E:82:9D:8E:2C:22:05:6F:26:FD:7F
X509v3 Authority Key Identifier:
keyid:DD:D8:D5:D3:B2:90:99:B2:69:26:1E:E2:71:4D:A1:E9:54:8C:46:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3djV07KQmbJpJh7icU2h6VSMRjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/e913c7-8320-434c-a70f-f936783fabdb/1/UHeqVhV3VR7RboKdjiwiBW8m_X8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/e913c7-8320-434c-a70f-f936783fabdb/1/3djV07KQmbJpJh7icU2h6VSMRjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.104.233.0/24
Signature Algorithm: sha256WithRSAEncryption
92:70:d1:05:bc:1c:2c:fd:4c:17:ed:83:30:6f:e8:0f:e3:9e:
45:80:f3:44:58:52:9a:18:1f:07:d9:7d:bb:50:98:bc:7a:51:
c8:78:20:3c:be:bc:52:41:50:35:3a:6f:53:3f:66:5b:d5:9b:
34:66:c7:9e:0e:20:90:2a:79:0e:a9:59:01:c6:c1:7c:5c:0d:
f0:e1:ee:d3:51:f9:72:4c:14:59:3a:62:11:a1:68:83:59:be:
74:df:e3:c7:b0:80:81:15:91:94:61:76:7c:a8:16:d3:59:b8:
7c:7b:f7:23:48:fb:e2:47:9e:0b:d9:9a:1d:a7:3c:fc:58:63:
71:2d:9a:bd:2a:57:58:d7:ff:63:dc:66:68:91:53:62:d2:c9:
34:2c:2d:70:e1:75:0c:05:ac:86:b2:5a:cf:a7:91:e0:69:ee:
01:84:a7:96:dd:2a:41:75:07:1e:ac:9a:81:ee:81:74:fd:4d:
66:6d:37:f6:91:46:72:ca:e0:71:49:8d:74:e4:52:4a:f3:c0:
da:12:28:62:73:de:6a:38:9b:d6:20:c4:ab:64:84:66:a2:96:
ee:55:4d:70:5c:87:ee:86:5c:cd:0f:94:49:e9:9f:a3:b9:1b:
bf:b9:71:33:f9:f4:8c:1b:0e:a2:8f:16:f9:3f:70:cb:15:95:
6c:cf:7c:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:20 2023 by rpki-client on console-fra.rpki-client.org