Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/0rGrgewxh7tPlxYAPL45Hh-cnRw.roa
File: 0rGrgewxh7tPlxYAPL45Hh-cnRw.roa (raw, json)
Hash identifier: NPWGIt4Tz6HbhYNcB0QiTfg+prJaoQiF0xGwTdV0WRs=
Subject key identifier: D2:B1:AB:81:EC:31:87:BB:4F:97:16:00:3C:BE:39:1E:1F:9C:9D:1C
Certificate issuer: /CN=9dde45e9367801d18ef0fb0a9fe513beb0e4a54a
Certificate serial: 0451AC88
Authority key identifier: 9D:DE:45:E9:36:78:01:D1:8E:F0:FB:0A:9F:E5:13:BE:B0:E4:A5:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nd5F6TZ4AdGO8PsKn-UTvrDkpUo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/0rGrgewxh7tPlxYAPL45Hh-cnRw.roa
Signing time: Sat 01 Jan 2022 06:54:55 +0000
ROA not before: Sat 01 Jan 2022 06:54:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50848
IP address blocks: 194.247.18.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72461448 (0x451ac88)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9dde45e9367801d18ef0fb0a9fe513beb0e4a54a
Validity
Not Before: Jan 1 06:54:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2b1ab81ec3187bb4f9716003cbe391e1f9c9d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1c:9c:9b:4d:f5:cc:73:26:3a:04:7b:40:88:
b8:03:3d:38:26:ff:9f:dc:bf:1e:f5:66:db:56:0d:
b4:47:21:f2:e9:f5:19:e7:0c:c4:19:d0:52:c5:96:
6d:6b:9d:da:1c:07:c9:7b:b4:03:cb:f0:5d:9b:ec:
d9:2c:2e:ae:05:b5:4c:9c:7c:2d:e8:09:3f:c9:c3:
ff:49:d9:a3:7a:fd:f9:57:89:87:25:31:27:b1:52:
33:64:e6:e8:6a:68:1d:57:52:65:b4:da:18:cc:b1:
dd:9b:01:75:9d:73:99:01:98:ac:ff:1e:65:03:26:
5b:e8:d9:ce:8a:ad:38:02:e2:09:de:12:c8:15:54:
21:50:3b:57:82:16:97:d6:06:20:e8:b7:97:82:3f:
db:7f:d1:25:29:32:80:43:e3:56:29:66:fa:c4:8c:
3e:e4:81:4f:b2:c2:78:5f:3e:bf:30:38:c7:26:fb:
0a:12:92:27:a4:27:d0:9c:c8:d2:b2:7e:cf:c3:26:
0e:56:78:39:e2:9a:0d:89:8a:79:72:69:d2:5e:15:
f6:8c:3c:93:19:67:73:54:56:c1:7c:c3:3a:02:d8:
41:50:dc:1c:a5:3a:36:76:e8:01:1c:e6:b6:03:6c:
fc:39:b6:ab:e5:d5:6e:8c:7a:26:33:bd:b8:e2:2f:
65:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B1:AB:81:EC:31:87:BB:4F:97:16:00:3C:BE:39:1E:1F:9C:9D:1C
X509v3 Authority Key Identifier:
keyid:9D:DE:45:E9:36:78:01:D1:8E:F0:FB:0A:9F:E5:13:BE:B0:E4:A5:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nd5F6TZ4AdGO8PsKn-UTvrDkpUo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/0rGrgewxh7tPlxYAPL45Hh-cnRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/d787d7-425f-4eb4-b182-03e5cd35e2b0/1/nd5F6TZ4AdGO8PsKn-UTvrDkpUo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.247.18.0/23
Signature Algorithm: sha256WithRSAEncryption
98:7f:6c:2e:45:d1:3b:94:e3:00:12:84:ab:e7:28:87:25:c1:
1b:70:f6:ad:ba:e2:f6:8b:96:01:ab:15:da:14:eb:41:36:68:
02:d0:96:6b:85:1f:5a:d2:4d:f0:b9:ff:82:d1:0c:a3:85:08:
85:fe:60:04:7d:eb:d2:0b:3a:5a:c4:f1:19:d0:34:48:15:69:
d1:ac:fe:ee:cf:23:80:5b:03:bd:b5:58:05:ce:24:78:f1:8d:
49:00:6f:1e:91:32:03:8f:7c:6c:6d:0d:58:16:0a:92:7c:c7:
c4:95:b2:5b:ff:60:f2:e3:9d:f2:b3:18:ec:df:c3:35:e9:8b:
d1:7b:63:f0:d2:90:ae:b6:50:5c:0f:b5:dc:51:c4:00:1e:fe:
79:39:6d:ac:f6:d8:e7:d4:29:98:da:0c:28:58:c5:41:e3:11:
6c:95:e1:72:ef:7e:ae:16:18:15:3c:52:23:dd:a4:fa:d1:37:
81:bf:70:e1:16:ee:18:5e:0c:e3:1d:99:5d:b1:a1:8c:68:14:
8d:f8:b2:a0:d3:d4:5e:52:64:2a:cc:43:39:a2:38:be:57:91:
f7:c7:75:97:ad:21:6a:96:90:ce:ef:8a:10:89:f4:89:99:e8:
58:1e:96:19:71:69:33:6d:92:ea:5e:cc:46:44:2d:ea:34:88:
70:38:59:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:18 2024 by rpki-client on console-ams.rpki-client.org