Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/1-3r8olf7NyNQqq8tw3uB5SL2mo.roa
File: 1-3r8olf7NyNQqq8tw3uB5SL2mo.roa (raw, json)
Hash identifier: A2MQF6E8pS9sJInVjCXRTLuUXhuImy0T5EG2vq4hAt0=
Subject key identifier: D7:ED:EB:F2:89:5F:EC:DC:8D:42:AA:BC:B7:0D:EE:07:94:8B:DA:6A
Certificate issuer: /CN=0032534e8d560d73553c632bba10344a7c816614
Certificate serial: 0490BA77
Authority key identifier: 00:32:53:4E:8D:56:0D:73:55:3C:63:2B:BA:10:34:4A:7C:81:66:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ADJTTo1WDXNVPGMruhA0SnyBZhQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/1-3r8olf7NyNQqq8tw3uB5SL2mo.roa
Signing time: Wed 19 Jan 2022 09:23:58 +0000
ROA not before: Wed 19 Jan 2022 09:23:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31035
IP address blocks: 194.246.99.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76593783 (0x490ba77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0032534e8d560d73553c632bba10344a7c816614
Validity
Not Before: Jan 19 09:23:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7edebf2895fecdc8d42aabcb70dee07948bda6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:36:03:b7:7e:e8:75:88:ba:ad:d5:f6:c2:ad:
1e:30:40:b1:1f:3f:b8:c8:9b:ff:7d:e1:2c:a8:11:
c0:f2:72:f8:5c:8f:a9:31:19:f1:31:08:d4:91:d9:
30:21:f5:38:d4:f0:19:9b:66:5b:a6:7e:d2:e7:05:
92:98:d0:a4:fc:f5:81:80:90:02:7a:a7:a1:86:0f:
2c:9e:48:26:d2:d8:a2:ed:78:2c:52:d1:fb:38:a0:
7a:1d:e8:c6:98:24:3c:18:18:95:c1:82:28:ba:ab:
3b:e3:70:81:80:e6:17:c2:10:84:f8:54:00:a1:c9:
7c:84:03:4c:db:01:d5:d5:9c:17:d5:04:e7:21:4a:
12:f5:63:23:16:7b:0a:fa:81:5b:1c:d7:42:b2:1f:
fa:98:70:23:4c:ab:e4:55:f0:a6:21:ca:1b:f4:73:
00:4f:fd:eb:09:95:47:e9:04:c6:10:c9:a2:43:3c:
b5:60:2a:96:5e:0c:80:bb:ae:50:b9:ce:89:16:1b:
bc:d7:26:3e:2b:fe:01:0e:d8:9d:b3:0b:24:c1:fa:
99:5c:23:01:dd:d5:71:df:0a:63:d0:ab:46:7a:e8:
99:22:a9:33:5e:01:c4:95:30:7d:20:20:5c:bd:81:
d7:46:cd:38:47:4a:e8:0f:8f:a1:68:27:8b:81:b3:
59:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:ED:EB:F2:89:5F:EC:DC:8D:42:AA:BC:B7:0D:EE:07:94:8B:DA:6A
X509v3 Authority Key Identifier:
keyid:00:32:53:4E:8D:56:0D:73:55:3C:63:2B:BA:10:34:4A:7C:81:66:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ADJTTo1WDXNVPGMruhA0SnyBZhQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/1-3r8olf7NyNQqq8tw3uB5SL2mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/dee1ee-9384-45ab-a70a-5eae6ed58375/1/ADJTTo1WDXNVPGMruhA0SnyBZhQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.246.99.0/24
Signature Algorithm: sha256WithRSAEncryption
50:b5:48:b0:c9:32:0a:38:b4:af:5d:84:06:4f:f0:69:7f:69:
5e:cd:0c:bc:34:ba:fd:1d:5c:bf:56:0c:88:61:aa:56:be:c8:
6f:85:51:4d:0e:e4:ef:ac:5a:0f:70:44:00:0f:ba:06:43:de:
3d:2a:3c:86:94:8e:1b:0a:73:65:bd:ad:cb:ad:74:f8:2d:32:
ba:58:38:ed:2d:aa:49:31:66:8a:77:e5:75:67:e4:ae:98:5f:
76:ec:14:16:67:f9:1f:21:1c:dc:c3:6d:6c:7f:6b:18:77:90:
d5:4b:7d:56:01:df:0e:d9:c0:01:ca:b4:67:80:80:7c:1f:2f:
12:12:7b:90:5d:4d:b3:17:87:bf:79:1d:0f:b6:f3:d1:32:ce:
b2:31:a3:2e:ab:83:c9:b9:95:3a:da:a5:e5:64:d3:c1:7a:c0:
08:df:d1:f0:e3:a0:9c:c5:59:64:4e:22:d2:9d:2f:ec:ef:74:
53:f6:ff:c7:1d:c6:5c:ba:f1:f7:7e:83:10:cc:bb:41:d5:79:
b6:73:9e:67:8f:e6:ea:f4:4b:d3:04:ad:e0:15:83:a0:8d:8d:
82:51:1e:30:7d:c2:a3:a5:92:f0:3b:bb:34:e1:56:d8:72:4b:
5d:6b:7a:0b:cd:34:1a:63:13:6d:4b:67:4c:e1:7d:f6:8b:07:
7f:e6:f8:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:32 2023 by rpki-client on console-fra.rpki-client.org