Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/I_Z5viSQoclXM1mm60WRXXYnOWc.roa
File: I_Z5viSQoclXM1mm60WRXXYnOWc.roa (raw, json)
Hash identifier: 3bOYWX4kQKaKie9yHIviMURvhfBkgdSsFDwKCrWlp9o=
Subject key identifier: 23:F6:79:BE:24:90:A1:C9:57:33:59:A6:EB:45:91:5D:76:27:39:67
Certificate issuer: /CN=0aac388b37d44768fce0eaec97de433faf72b9dc
Certificate serial: 0182038787972208EEA6CD20FE77BC4B2EBD
Authority key identifier: 0A:AC:38:8B:37:D4:47:68:FC:E0:EA:EC:97:DE:43:3F:AF:72:B9:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cqw4izfUR2j84Orsl95DP69yudw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/I_Z5viSQoclXM1mm60WRXXYnOWc.roa
Signing time: Fri 15 Jul 2022 20:23:09 +0000
ROA not before: Fri 15 Jul 2022 20:23:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209828
IP address blocks: 194.69.162.0/24 maxlen: 24
2a0c:ae81::/32 maxlen: 32
2a0c:ae80::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:03:87:87:97:22:08:ee:a6:cd:20:fe:77:bc:4b:2e:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aac388b37d44768fce0eaec97de433faf72b9dc
Validity
Not Before: Jul 15 20:23:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23f679be2490a1c9573359a6eb45915d76273967
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:08:61:d6:d8:e8:68:5f:b2:53:9d:04:a3:09:
98:4c:f9:16:d8:31:b0:9b:a8:ec:7d:c1:9b:d8:b5:
52:44:e9:1f:e5:4e:80:b9:fd:d8:9a:e4:07:31:b8:
10:5d:1c:3a:ac:e8:f7:fd:5d:47:a3:a2:86:d7:7e:
40:35:15:74:0f:54:9a:e8:94:25:46:52:16:e1:81:
4c:1f:93:16:78:0f:0e:dd:2f:9e:63:eb:09:83:85:
4a:92:39:5e:f7:27:6a:cc:cd:ab:34:27:b5:3a:3e:
c6:5f:7b:fc:01:04:72:5b:ee:50:cd:4c:ea:ef:0e:
e9:46:73:d9:c8:6e:fe:22:4b:1d:45:95:79:27:c5:
c0:c3:04:b2:86:33:b8:97:e1:95:29:28:ee:dd:88:
28:06:9f:1c:6b:0c:d9:47:5c:62:cd:19:4b:b5:2e:
e8:ea:1f:e9:ba:1d:65:1c:75:5e:de:ce:06:8a:41:
b2:3b:a4:a0:c3:ec:07:c0:e8:12:11:69:b7:6a:95:
73:4d:c6:de:57:12:3c:4e:82:c6:e6:23:12:74:f0:
52:82:82:82:4d:39:e6:e0:8d:44:6a:0b:aa:98:f9:
99:25:68:1f:e1:3a:40:fb:0b:1d:a8:7f:b6:a8:c4:
ad:57:d5:a8:6a:74:8f:5b:6e:a7:7a:a3:21:45:1b:
be:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F6:79:BE:24:90:A1:C9:57:33:59:A6:EB:45:91:5D:76:27:39:67
X509v3 Authority Key Identifier:
keyid:0A:AC:38:8B:37:D4:47:68:FC:E0:EA:EC:97:DE:43:3F:AF:72:B9:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cqw4izfUR2j84Orsl95DP69yudw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/I_Z5viSQoclXM1mm60WRXXYnOWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/656ca9-bbbc-49b7-aacc-24aa4cee6b2c/1/Cqw4izfUR2j84Orsl95DP69yudw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.69.162.0/24
IPv6:
2a0c:ae80::/31
Signature Algorithm: sha256WithRSAEncryption
23:41:2d:e6:6b:48:9d:94:ac:e5:39:2e:38:c0:5a:fd:6d:d9:
d0:45:aa:6f:42:17:9f:62:f7:05:60:a1:90:e4:5b:9a:7f:4d:
f6:12:1e:1d:f0:07:25:c9:42:34:30:68:16:cc:8f:2c:6d:26:
eb:31:a5:a1:df:1c:3a:f0:90:94:b9:26:74:12:5b:f5:ff:c9:
43:7f:70:4b:ab:16:97:9c:e0:33:23:5e:5d:36:a2:4e:23:e7:
66:a3:47:cf:54:a5:4c:3b:c6:14:03:ce:a5:12:1f:8c:af:b9:
21:e0:e5:65:5b:0a:02:ad:2c:a1:d8:06:5f:cd:d1:73:d8:2e:
6c:94:9e:9a:2e:f6:13:06:25:31:dd:4a:e5:72:6e:f3:52:fc:
32:98:38:a1:5c:40:fa:e2:38:56:ba:4f:d2:5d:30:ed:f2:14:
41:91:b2:47:4e:1a:57:95:3c:b1:0e:a4:b9:81:99:f6:0f:98:
15:1c:df:c5:fe:a5:c6:fa:c0:01:46:42:59:8d:d1:46:67:5b:
d9:c2:11:d8:35:5b:18:26:7e:ee:90:d4:8e:35:7d:c7:7c:40:
33:a8:37:02:b7:76:ad:a1:cb:f1:f8:1d:4d:15:d9:5d:88:88:
a6:bb:e0:73:c5:ac:f1:b2:12:6a:8b:db:53:3c:1f:67:b3:cd:
35:1e:f0:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:08 2023 by rpki-client on console-fra.rpki-client.org