Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/vDwYQFsPwYyLSXMIn_RzoTNHc_M.roa
File: vDwYQFsPwYyLSXMIn_RzoTNHc_M.roa (raw, json)
Hash identifier: rSyfjAqiKWTEwVc830EW/19bEu20Xog8FefwxW2wLZE=
Subject key identifier: BC:3C:18:40:5B:0F:C1:8C:8B:49:73:08:9F:F4:73:A1:33:47:73:F3
Certificate issuer: /CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Certificate serial: 03E3EFAD
Authority key identifier: 58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/vDwYQFsPwYyLSXMIn_RzoTNHc_M.roa
Signing time: Sat 01 Jan 2022 02:55:36 +0000
ROA not before: Sat 01 Jan 2022 02:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39561
IP address blocks: 194.67.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65269677 (0x3e3efad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5833294a1cdc1358afc439c0a72733b065a86f8b
Validity
Not Before: Jan 1 02:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc3c18405b0fc18c8b4973089ff473a1334773f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:7c:d0:cf:06:b9:3b:1d:20:ea:bd:3e:96:1e:
fd:04:93:22:9f:dc:01:c5:86:49:f8:82:df:cb:66:
8e:ff:0f:90:d1:24:dd:a8:4c:ee:05:8a:22:6f:b5:
46:80:a5:aa:5e:45:8f:3f:0f:38:1f:2a:1e:ed:02:
13:47:c8:df:57:73:49:c1:29:ed:d1:44:eb:c3:84:
16:96:f0:66:ce:7a:52:7c:40:3b:d9:6d:d6:63:e9:
2d:a4:61:f4:7f:6e:4a:1a:d3:a2:92:d1:61:9c:93:
58:4f:13:e4:aa:e5:26:f7:b4:30:13:21:83:61:f5:
12:19:3c:fa:f9:3a:eb:dd:85:0c:98:b6:45:ed:ff:
70:5c:0b:84:4d:10:a2:8f:8a:b2:d2:13:59:d6:14:
67:16:1c:60:b3:a9:cf:32:07:38:39:40:32:d4:0f:
d1:fd:c0:5a:51:a0:d5:b0:58:a3:73:40:54:af:1f:
b3:46:05:e9:a9:24:9d:29:8f:73:87:ce:7f:88:aa:
d8:0a:0e:bd:d3:2f:70:d6:61:cb:60:fc:3a:66:88:
f5:ce:ca:ea:ca:4c:02:26:6d:0f:f1:a1:a2:60:45:
a8:bd:8b:66:17:80:75:eb:d5:02:0f:fe:a9:b2:16:
8f:ad:59:1d:18:cd:c9:50:1f:90:b7:f8:c9:06:5b:
ad:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:3C:18:40:5B:0F:C1:8C:8B:49:73:08:9F:F4:73:A1:33:47:73:F3
X509v3 Authority Key Identifier:
keyid:58:33:29:4A:1C:DC:13:58:AF:C4:39:C0:A7:27:33:B0:65:A8:6F:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WDMpShzcE1ivxDnApyczsGWob4s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/vDwYQFsPwYyLSXMIn_RzoTNHc_M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4b419c-cf8f-4c9a-94d7-bb4b65b6a0d1/1/WDMpShzcE1ivxDnApyczsGWob4s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.67.73.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:03:9f:cd:78:0a:5e:4a:3f:a4:70:50:f0:db:a1:db:dd:95:
4c:95:b4:24:83:17:24:3e:e6:81:a2:cb:23:0d:a1:ed:32:1b:
1d:46:5a:63:84:29:9d:b9:42:01:66:4c:93:7c:ed:72:48:9c:
4e:7a:bc:fb:f6:29:58:13:49:3d:09:64:e2:ee:30:79:79:c2:
e8:ff:4c:35:05:b2:b1:f3:e9:b2:d0:58:7d:c2:7e:b4:0e:06:
1e:ae:b2:12:6d:37:e8:85:56:09:a6:48:24:a8:c7:27:37:d5:
52:32:33:b3:1e:c1:03:27:37:1a:1e:8a:60:f0:55:d2:e3:7b:
0b:d4:b2:4b:6f:af:24:c7:93:a2:46:f3:e4:6b:49:10:0d:18:
6b:82:5b:4f:2a:ca:4f:1d:2c:a3:a0:7c:c0:ee:08:0d:53:bb:
b2:26:33:12:c1:8b:0f:32:08:5f:0b:47:4e:98:6f:de:8c:3a:
29:89:d0:b3:da:59:9d:54:69:20:16:7f:d4:49:7b:cb:a0:2e:
72:b9:f2:4f:ff:5b:10:45:70:a9:f4:f5:8f:29:d9:f8:0f:ab:
b8:5c:6a:88:43:95:42:b6:1b:b9:0e:14:1e:de:11:58:c8:d9:
52:78:8d:2f:96:bf:7b:57:2b:db:58:dd:12:ab:12:77:7c:b9:
57:64:f1:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-ams.rpki-client.org