Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/4eDM8RV2ZNgygZCTL5CEsbTIj9M.roa
File: 4eDM8RV2ZNgygZCTL5CEsbTIj9M.roa (raw, json)
Hash identifier: lyvp00DOjND4Pl3ZhWsceaXScCffZluuQd0zg9bOUmI=
Subject key identifier: E1:E0:CC:F1:15:76:64:D8:32:81:90:93:2F:90:84:B1:B4:C8:8F:D3
Certificate issuer: /CN=47aa878f76b50947cbd7deca04ac832e287b514d
Certificate serial: 094762DD
Authority key identifier: 47:AA:87:8F:76:B5:09:47:CB:D7:DE:CA:04:AC:83:2E:28:7B:51:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R6qHj3a1CUfL197KBKyDLih7UU0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/4eDM8RV2ZNgygZCTL5CEsbTIj9M.roa
Signing time: Sat 01 Jan 2022 09:59:38 +0000
ROA not before: Sat 01 Jan 2022 09:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 194.61.102.0/23 maxlen: 24
2a03:98c7::/32 maxlen: 34
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155673309 (0x94762dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47aa878f76b50947cbd7deca04ac832e287b514d
Validity
Not Before: Jan 1 09:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1e0ccf1157664d8328190932f9084b1b4c88fd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:61:18:86:4f:6d:69:21:f0:02:c4:35:18:ef:
25:4c:77:18:d3:e4:c4:01:fe:5a:b6:f1:bf:55:02:
fb:e4:2d:1e:09:f3:ff:ae:17:fd:fe:de:58:0b:a3:
c2:2b:df:4f:72:5b:a8:cd:b2:f8:91:3e:1a:e5:b6:
ff:ff:e0:21:aa:cb:ed:b0:93:a6:f6:c9:23:02:dc:
a8:d1:3d:e1:7b:34:d1:61:18:23:22:df:a1:50:71:
6a:92:4c:b0:8c:14:e4:02:9c:69:5c:54:ea:d1:34:
86:91:65:de:9a:83:7a:01:97:47:82:85:4f:e7:76:
a6:b1:cd:0b:7c:e0:2d:07:a9:2d:f6:61:50:97:18:
f1:32:f5:06:89:25:ba:2f:48:94:50:41:a6:57:45:
15:3b:1f:34:e9:10:b2:dc:72:08:ac:9d:ef:ea:c5:
2a:f5:47:d3:2c:ce:a8:77:cf:b3:b7:1f:07:d0:c4:
19:00:26:92:fa:81:ce:d2:9a:bb:04:5d:be:81:d1:
98:92:7d:d9:ae:1b:7c:c5:4b:43:98:37:07:71:cd:
dd:5f:cc:69:34:51:d5:8d:43:83:ac:e7:55:f7:28:
86:12:22:bc:2e:a6:f4:7b:88:b3:a2:c7:02:ae:c1:
78:ad:d5:78:03:f7:77:4e:b2:c2:be:e8:00:39:d8:
07:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:E0:CC:F1:15:76:64:D8:32:81:90:93:2F:90:84:B1:B4:C8:8F:D3
X509v3 Authority Key Identifier:
keyid:47:AA:87:8F:76:B5:09:47:CB:D7:DE:CA:04:AC:83:2E:28:7B:51:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R6qHj3a1CUfL197KBKyDLih7UU0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/4eDM8RV2ZNgygZCTL5CEsbTIj9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/c1ab26-28b0-4637-b51b-3992c54e187b/1/R6qHj3a1CUfL197KBKyDLih7UU0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.61.102.0/23
IPv6:
2a03:98c7::/32
Signature Algorithm: sha256WithRSAEncryption
66:10:1d:ae:6e:0c:02:aa:00:1e:03:44:d7:ec:b7:b4:50:29:
17:51:0c:2a:90:1a:2a:d7:3a:b3:dd:ca:6b:6e:c2:5b:49:14:
4a:a4:ed:49:94:db:5a:cd:da:3d:02:8f:35:f0:90:7f:b9:9b:
4d:47:88:3e:27:fc:cd:fb:b2:ef:f0:92:8e:97:ea:30:b7:3a:
4c:78:a7:6f:29:78:9c:28:3e:d3:2f:15:34:22:d5:d7:a1:9a:
03:02:b2:7e:31:df:49:b8:a2:58:2f:0c:ec:ae:36:81:76:56:
b5:8a:8a:42:86:85:20:8f:9d:62:8a:3c:e6:16:71:b1:c0:50:
4f:e1:3d:d4:2e:2f:ef:a5:08:4a:68:ae:0e:bd:09:e0:93:93:
68:2d:8f:ba:e2:77:2f:54:0e:09:32:64:bf:3f:9f:15:5a:d8:
c8:c0:34:d2:1a:7f:1e:67:6c:47:76:cd:5b:8a:6e:fd:0a:1f:
91:52:f0:a3:85:ac:a5:00:e1:00:e1:ee:62:19:83:76:e3:46:
63:a7:16:0f:be:e2:a5:76:4f:c6:df:4e:4e:a9:d3:5a:2e:be:
a3:68:7e:e3:31:d7:ba:8e:de:ad:73:02:67:6e:47:82:38:74:
c6:e7:f3:8a:9e:99:4b:7d:5a:1c:78:63:ad:fe:1b:ff:2b:d0:
70:8b:27:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-ams.rpki-client.org