Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/4txGeBtHBDeSLEc0Zp1TrgOTQo8.roa
File: 4txGeBtHBDeSLEc0Zp1TrgOTQo8.roa (raw, json)
Hash identifier: Yr07XtEPRmynu2cTkqN1bRQfbFDeS2qYve58oZS7UCA=
Subject key identifier: E2:DC:46:78:1B:47:04:37:92:2C:47:34:66:9D:53:AE:03:93:42:8F
Certificate issuer: /CN=0aac388b37d44768fce0eaec97de433faf72b9dc
Certificate serial: 024711D7
Authority key identifier: 0A:AC:38:8B:37:D4:47:68:FC:E0:EA:EC:97:DE:43:3F:AF:72:B9:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cqw4izfUR2j84Orsl95DP69yudw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/4txGeBtHBDeSLEc0Zp1TrgOTQo8.roa
Signing time: Sat 21 May 2022 14:12:29 +0000
ROA not before: Sat 21 May 2022 14:12:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209828
IP address blocks: 194.69.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38212055 (0x24711d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aac388b37d44768fce0eaec97de433faf72b9dc
Validity
Not Before: May 21 14:12:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2dc46781b470437922c4734669d53ae0393428f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bd:b0:6d:8c:1c:c8:e0:17:80:cc:6d:4b:85:
4d:82:79:d2:64:bc:36:ba:19:ba:30:0a:f2:99:00:
16:8c:df:72:2f:49:c4:ff:8a:2f:58:fe:83:64:57:
cf:36:46:f0:f3:57:1e:a9:31:30:eb:4f:4f:16:c7:
1c:58:0e:2d:7c:7a:41:80:0d:1b:15:97:fd:1f:09:
f1:67:5b:29:16:10:2c:36:72:c6:f0:b7:ea:5a:d1:
4d:e3:0c:67:92:e7:93:a8:3e:11:fa:7b:1f:74:9d:
63:e5:29:24:34:41:07:55:39:d5:4a:c1:34:fc:4e:
cf:6b:17:08:85:6c:b1:ee:35:e0:a7:08:72:b8:ce:
f5:9a:cf:b2:9e:9f:f2:89:ff:1c:65:bc:78:45:38:
47:64:f4:27:3d:99:03:ef:1f:a7:ee:e9:a7:1a:37:
66:b5:c8:e8:ba:21:51:9b:66:f4:dd:04:f3:6d:26:
e5:d8:f5:24:80:82:e5:bd:f0:9a:74:20:9e:a8:21:
dd:d6:40:1f:0b:4b:ca:de:42:4b:01:77:cc:96:c7:
cd:42:93:01:3a:e5:d9:82:f9:c1:c1:ed:47:84:4b:
29:24:9f:17:91:d2:36:3c:b9:f0:60:68:3d:18:a0:
6c:65:39:d7:76:91:7d:c9:a0:22:24:5c:fd:c8:a3:
71:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:DC:46:78:1B:47:04:37:92:2C:47:34:66:9D:53:AE:03:93:42:8F
X509v3 Authority Key Identifier:
keyid:0A:AC:38:8B:37:D4:47:68:FC:E0:EA:EC:97:DE:43:3F:AF:72:B9:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cqw4izfUR2j84Orsl95DP69yudw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/4txGeBtHBDeSLEc0Zp1TrgOTQo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/Cqw4izfUR2j84Orsl95DP69yudw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.162.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:1b:89:4e:f3:f6:85:df:06:f3:14:4e:a9:d3:7a:e0:43:00:
8b:35:9a:81:16:03:63:12:93:8c:76:6f:68:49:a1:a8:66:24:
bc:ba:cb:61:d9:3a:bd:8f:89:a4:4a:0b:45:db:c3:5f:c3:fe:
25:f7:2a:67:1f:81:e7:35:96:83:8a:41:74:42:a8:59:90:6d:
c8:e1:3b:7a:5d:bd:bf:ac:f5:5b:0a:63:92:e3:5f:68:73:a9:
0b:2c:ce:5d:62:dd:77:e7:98:08:32:98:41:ee:54:33:b5:b5:
ac:65:9f:37:6b:1c:ee:88:d1:02:a5:4e:8f:24:f9:aa:6e:c2:
44:d8:c5:82:18:1e:58:ec:9e:54:b9:46:58:04:cf:1b:79:2f:
e6:b8:ca:00:8c:21:2d:bf:c3:bd:50:7c:52:0a:8d:e5:71:30:
46:2f:b6:9c:ba:bb:d7:d2:33:44:1a:27:64:92:54:95:19:12:
5e:ca:5e:54:f3:2d:3a:e4:64:09:a0:fd:61:42:91:f8:d6:60:
29:5a:08:f4:ad:fa:96:88:36:17:d9:da:d8:fd:54:d0:eb:ba:
c7:d0:ff:54:ba:86:6e:63:72:70:66:ec:5d:e5:ba:05:a0:8c:
c4:af:88:87:b5:8e:69:24:18:dc:6e:f9:1b:57:99:62:b1:aa:
b2:22:58:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:08 2023 by rpki-client on console-fra.rpki-client.org