Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AyTAFyl4Ys_aKZXasM8gjZNCRVY.roa
File: AyTAFyl4Ys_aKZXasM8gjZNCRVY.roa (raw, json)
Hash identifier: e/G07CTbqltQlAbJSCPZRJD+BXdUBZjfXRZhtpaF7G8=
Subject key identifier: 03:24:C0:17:29:78:62:CF:DA:29:95:DA:B0:CF:20:8D:93:42:45:56
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 01851A9E3C5D8C78F4374F9FC9EAE6BB96F4
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AyTAFyl4Ys_aKZXasM8gjZNCRVY.roa
Signing time: Fri 16 Dec 2022 11:07:35 +0000
ROA not before: Fri 16 Dec 2022 11:07:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8075
IP address blocks: 194.34.228.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:1a:9e:3c:5d:8c:78:f4:37:4f:9f:c9:ea:e6:bb:96:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Dec 16 11:07:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0324c017297862cfda2995dab0cf208d93424556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:31:05:08:8b:7f:af:b7:a0:58:d8:62:96:46:
de:c6:7e:35:05:ef:ff:f6:06:b8:3c:11:1f:68:b6:
ad:08:46:f9:83:bd:e0:f3:1f:d7:61:5b:b4:1e:ff:
82:b1:b3:82:93:45:60:09:33:aa:75:75:61:a7:ef:
01:00:5a:6e:2c:0f:b2:1e:3f:ff:18:c1:ab:0a:e9:
57:6b:51:03:4b:25:ff:13:91:ec:99:0f:09:54:83:
35:ac:1e:0b:60:93:bb:65:a1:02:3d:58:a6:29:f7:
71:c3:64:15:04:15:ea:89:83:ff:92:02:4d:d5:85:
13:ca:7e:45:17:d4:03:4b:9a:4a:3e:8e:ef:22:9c:
a1:e3:6b:6f:e2:90:ae:db:24:6b:9d:02:a3:a4:fc:
b3:5c:bb:e7:08:58:c5:be:f6:1c:67:c8:ea:bf:c3:
c5:0b:c1:3d:8d:d6:40:03:3c:5d:b7:7a:0c:bf:77:
c0:47:39:a3:ee:7e:6c:4a:b4:ff:62:bb:dc:95:34:
d9:43:b2:70:b9:47:a5:46:de:f7:26:46:fe:fd:b4:
b7:60:4c:1e:4a:b4:ae:11:d7:b1:8e:77:26:37:8c:
65:7d:5c:4a:78:be:89:c4:ae:f3:25:79:5b:7b:e1:
4a:95:86:db:27:1c:2e:ef:54:e8:75:f9:3c:75:af:
fa:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:24:C0:17:29:78:62:CF:DA:29:95:DA:B0:CF:20:8D:93:42:45:56
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/AyTAFyl4Ys_aKZXasM8gjZNCRVY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:db:9e:8f:82:e0:bd:d2:8d:9f:87:dd:f4:71:07:ae:20:79:
44:bc:66:9a:7d:44:98:6a:92:84:fe:ef:e9:b0:2f:d1:bd:02:
63:06:75:1a:85:a5:fe:2e:bb:6b:50:a4:36:2b:99:77:8e:e5:
6b:6f:bf:ea:57:dd:1e:34:60:5d:44:a9:d9:05:54:4c:bc:de:
00:ab:c4:f0:9b:c8:f6:6d:48:b9:2b:62:70:98:14:0d:35:77:
61:ba:5e:83:a1:41:44:8f:b0:3f:bb:38:83:5a:36:d8:da:fa:
fa:73:4d:7d:09:1b:b2:ea:0b:27:31:23:f9:3e:1f:e4:13:9e:
9c:c6:56:bd:88:31:d4:88:fe:60:9a:a0:e7:c9:08:a7:87:e3:
d7:d9:e7:8c:21:83:f2:0c:e1:99:c6:bd:84:5a:18:1b:d6:2c:
32:b6:fc:f8:19:44:d1:e1:74:98:99:68:95:62:ec:cc:3c:6d:
34:ad:97:06:d6:41:c0:4a:e9:86:20:8b:eb:46:b0:a5:27:5e:
a9:f5:95:2e:88:69:b4:22:49:e2:38:b9:04:33:9a:6a:78:6d:
53:cb:31:5d:7b:ac:f5:ce:4d:ca:6c:c0:01:56:f6:e2:66:f5:
0a:d2:95:43:85:f5:96:64:10:d7:14:30:8e:27:4f:9e:70:03:
32:39:05:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org