Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/rvqpfMHgNeWxAa914nsgal-nuog.roa
File: rvqpfMHgNeWxAa914nsgal-nuog.roa (raw, json)
Hash identifier: rX2qLjbOGXXNvJP6Bw2mcaRQ9hpQtlzNywFBSV7RNrE=
Subject key identifier: AE:FA:A9:7C:C1:E0:35:E5:B1:01:AF:75:E2:7B:20:6A:5F:A7:BA:88
Certificate issuer: /CN=021b3ea35edfdd138c15506d74a76022dd37694b
Certificate serial: 15A131D2
Authority key identifier: 02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/rvqpfMHgNeWxAa914nsgal-nuog.roa
Signing time: Sat 01 Jan 2022 12:58:38 +0000
ROA not before: Sat 01 Jan 2022 12:58:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42873
IP address blocks: 193.196.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 362885586 (0x15a131d2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=021b3ea35edfdd138c15506d74a76022dd37694b
Validity
Not Before: Jan 1 12:58:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aefaa97cc1e035e5b101af75e27b206a5fa7ba88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:47:cb:f6:13:6c:62:e4:8c:3a:5b:62:e4:1d:
35:31:75:e7:b9:83:81:8e:8a:75:e6:a5:c4:8d:47:
5a:d8:99:16:14:9e:dd:c7:54:85:24:3d:5d:55:1a:
10:3c:e6:1a:d4:43:ed:32:03:44:ba:3d:6f:92:1a:
9a:0c:d6:44:9c:6a:f1:3a:dc:6f:64:26:e1:29:48:
f2:98:a2:22:6f:0e:7d:a6:cc:91:68:11:f1:b6:9a:
84:b5:d7:5d:e5:b9:b9:87:6d:7a:07:46:f4:3a:aa:
73:6f:fe:7d:91:79:28:54:82:5e:22:b4:37:3d:f8:
be:8b:83:4a:01:be:22:71:f2:9f:0f:ae:43:ad:ec:
d9:ad:00:2f:ce:33:20:8e:55:f3:8b:45:b5:58:f0:
1f:65:98:44:a8:11:9c:93:fb:fd:8c:70:a7:3d:31:
02:0c:52:ba:50:f8:c6:b0:20:82:b3:24:7a:ff:3e:
21:6f:db:b7:cd:5d:26:c1:de:a2:c7:6f:75:2d:eb:
bf:f3:0a:ba:59:1e:a3:ea:b9:dc:2d:70:45:03:75:
ef:b7:67:db:31:d2:39:75:fe:6c:75:fe:c8:e2:25:
68:5c:61:80:14:78:f2:27:bb:f5:10:33:0d:a5:0f:
b8:0f:d9:af:b3:10:8d:73:5f:a8:33:f7:48:fe:9f:
69:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:FA:A9:7C:C1:E0:35:E5:B1:01:AF:75:E2:7B:20:6A:5F:A7:BA:88
X509v3 Authority Key Identifier:
keyid:02:1B:3E:A3:5E:DF:DD:13:8C:15:50:6D:74:A7:60:22:DD:37:69:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ahs-o17f3ROMFVBtdKdgIt03aUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/rvqpfMHgNeWxAa914nsgal-nuog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f89b64-87b7-48f4-8b60-c3204bde7773/1/Ahs-o17f3ROMFVBtdKdgIt03aUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.196.12.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:8d:a7:0d:fd:7b:92:df:df:3a:bc:37:3d:27:ca:c7:aa:cb:
9f:22:b7:12:df:a2:4c:0e:4b:af:2f:ae:96:fd:15:83:34:35:
78:03:5d:55:e0:aa:a5:97:9e:ce:59:80:56:e4:d7:21:f2:46:
ca:1e:27:fd:75:7e:1f:d2:0f:c4:d7:6a:de:4c:45:2f:c6:1d:
b9:44:2b:6b:b1:3e:1a:c6:b2:cb:3e:61:fb:91:3f:20:13:98:
92:23:bf:83:d9:9c:73:8f:37:87:16:ba:91:6b:03:fd:f6:f1:
3d:14:3b:2a:7c:07:8e:ae:2e:6a:2e:e0:ea:a3:aa:6d:0f:d0:
86:27:7a:63:18:45:a6:bb:c2:03:3f:d4:7b:87:5f:6d:90:13:
5b:90:5f:cf:0d:8c:36:70:a5:38:a6:13:8b:86:03:01:99:49:
0c:7d:b3:2d:04:2f:92:4f:2c:e0:15:ea:88:41:0d:2a:ef:eb:
b6:ba:ba:90:cd:81:96:a0:98:eb:73:10:27:09:32:d0:ec:da:
aa:44:3c:6c:d8:7d:cb:95:03:66:52:16:39:14:9d:ba:e1:6a:
a7:2a:83:0f:9c:0b:ea:6b:72:ed:1b:0a:ce:bd:71:d4:d5:4d:
b3:d2:a5:da:69:8b:ee:fb:e6:4e:ea:1d:51:65:87:ba:d6:88:
75:7d:ca:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:07 2023 by rpki-client on console-fra.rpki-client.org