Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/AtzcUnouymLsmbXGg_0SrMepCsA.roa
File: AtzcUnouymLsmbXGg_0SrMepCsA.roa (raw, json)
Hash identifier: ZIcmLtD7RaJzwVbvjWGUZG+rGjOe3sJz7qqx1EWJ5K4=
Subject key identifier: 02:DC:DC:52:7A:2E:CA:62:EC:99:B5:C6:83:FD:12:AC:C7:A9:0A:C0
Certificate issuer: /CN=048dc3b923c7738f9a58ee80b49bcd0c5e7dcffa
Certificate serial: 0184C8F2BBD4FDFA2C931A1DCD0FBE64DE00
Authority key identifier: 04:8D:C3:B9:23:C7:73:8F:9A:58:EE:80:B4:9B:CD:0C:5E:7D:CF:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BI3DuSPHc4-aWO6AtJvNDF59z_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/AtzcUnouymLsmbXGg_0SrMepCsA.roa
Signing time: Wed 30 Nov 2022 14:31:01 +0000
ROA not before: Wed 30 Nov 2022 14:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 79.174.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c8:f2:bb:d4:fd:fa:2c:93:1a:1d:cd:0f:be:64:de:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=048dc3b923c7738f9a58ee80b49bcd0c5e7dcffa
Validity
Not Before: Nov 30 14:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02dcdc527a2eca62ec99b5c683fd12acc7a90ac0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:59:f7:47:2e:a9:fb:c5:1d:75:ca:e0:56:ff:
34:00:8e:27:3d:97:db:5c:ef:75:4d:30:1e:37:fb:
0a:93:84:84:fd:8b:92:af:54:62:a7:86:2e:40:bb:
14:57:b2:30:7f:62:c4:c5:63:2a:22:ff:e7:a6:0d:
d1:ab:16:16:f0:8f:33:a4:23:a6:ac:12:7d:f4:f6:
96:11:15:62:b6:44:c5:de:a2:44:39:2d:a4:b8:ce:
bd:12:5d:b3:91:17:aa:10:a8:fd:df:33:5f:36:0e:
4f:c7:36:45:3f:d2:e5:87:ec:00:6f:ed:88:32:6e:
8a:05:cd:9f:38:5e:a2:22:21:f7:db:cd:ac:25:11:
ba:b8:3f:13:d8:cb:b4:82:b5:39:2f:30:42:96:21:
e8:00:f0:60:a2:ad:75:9b:ee:84:f2:c7:61:bb:b4:
2a:a7:0d:f6:24:e3:4a:9c:46:56:8b:3e:2a:b2:ac:
50:f3:a2:c3:e8:e2:14:9e:6f:bd:92:b1:8f:b2:14:
4e:78:40:4c:26:ee:62:27:f4:a3:2b:7e:fd:97:74:
6e:07:2d:0c:f7:8f:07:cd:a7:76:46:9a:f6:45:ff:
9b:44:1c:9c:e4:ee:bf:02:ca:b4:a8:87:db:2f:cc:
21:de:ba:a4:c0:20:d6:a3:3c:70:9e:2f:6b:b8:7e:
00:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:DC:DC:52:7A:2E:CA:62:EC:99:B5:C6:83:FD:12:AC:C7:A9:0A:C0
X509v3 Authority Key Identifier:
keyid:04:8D:C3:B9:23:C7:73:8F:9A:58:EE:80:B4:9B:CD:0C:5E:7D:CF:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BI3DuSPHc4-aWO6AtJvNDF59z_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/AtzcUnouymLsmbXGg_0SrMepCsA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/f8c018-b90f-4f89-a3f4-2ec871465599/1/BI3DuSPHc4-aWO6AtJvNDF59z_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.3.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d4:4e:86:5f:b2:6d:3c:4c:54:ad:89:e2:22:52:75:6e:6f:
a1:d7:ed:53:ec:27:8e:10:a6:44:e0:c3:d1:31:c1:68:c7:21:
c8:ef:f7:43:2c:35:91:86:35:5c:90:f8:af:07:11:78:58:87:
64:9e:bc:30:94:b8:1c:b8:e7:e0:9c:d8:d4:27:cd:2e:2b:e1:
94:0a:7e:96:11:38:2d:f2:c1:f0:1a:ea:08:e2:ab:61:74:6d:
bf:0d:fa:01:22:9c:67:07:69:4f:9a:fa:a6:7c:80:72:84:f4:
69:58:51:58:ef:fd:6c:9c:ea:f5:d7:07:62:b4:ee:74:0d:e3:
cd:0b:f2:e4:4d:f3:cc:1c:c0:a7:29:e2:27:22:57:4e:62:3c:
a9:08:c2:3e:09:97:de:7c:58:d8:33:59:d7:49:81:f4:fe:6e:
80:89:9b:93:60:d6:2f:78:c8:1b:d6:30:11:92:50:90:70:e0:
7d:0a:ac:0c:c4:d5:d1:97:0c:df:67:4e:b3:8a:4e:84:ff:6c:
26:6f:4a:14:ad:6b:4c:08:fa:3a:e5:33:4d:a3:ca:db:1b:4c:
86:6d:af:06:7f:b0:b8:b2:c6:a3:8c:ca:cd:68:e8:50:6a:db:
e0:b8:a2:6c:61:87:aa:56:27:8e:ba:87:ed:ba:59:ce:d3:68:
36:a6:01:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:29 2023 by rpki-client on console-ams.rpki-client.org