Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/0f-0etj6N0A5KS_9OErTVLgap90.roa
File: 0f-0etj6N0A5KS_9OErTVLgap90.roa (raw, json)
Hash identifier: RZp9jOBUla5UTZJR+HrKB5tRVHv93W5f7970jOVJZDM=
Subject key identifier: D1:FF:B4:7A:D8:FA:37:40:39:29:2F:FD:38:4A:D3:54:B8:1A:A7:DD
Certificate issuer: /CN=0f23f73d64f6dbf81d51d35805481568cdd81875
Certificate serial: 015982
Authority key identifier: 0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/0f-0etj6N0A5KS_9OErTVLgap90.roa
Signing time: Tue 08 Feb 2022 07:31:23 +0000
ROA not before: Tue 08 Feb 2022 07:31:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48560
IP address blocks: 194.50.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88450 (0x15982)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f23f73d64f6dbf81d51d35805481568cdd81875
Validity
Not Before: Feb 8 07:31:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1ffb47ad8fa374039292ffd384ad354b81aa7dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:68:56:48:b4:89:f1:6d:26:fd:38:4f:00:48:
9b:08:7c:41:ff:5c:25:45:63:23:02:b7:2b:a8:a4:
74:e8:3e:e8:ba:e2:7b:fa:ab:8f:f8:ba:07:e6:70:
f0:84:a0:6e:61:6d:8d:1d:45:28:4f:1e:24:b4:fc:
4e:ad:f7:67:a7:9d:91:3c:20:00:1b:10:46:fa:d2:
8c:a8:13:62:bd:da:17:49:18:3b:84:91:50:90:45:
70:ad:0f:e9:9a:cf:22:d1:ab:05:21:82:e1:25:45:
db:8e:b6:8a:a2:eb:34:7e:de:8a:d6:88:e5:12:c6:
d4:7f:c0:36:1a:29:b0:e2:2b:9b:0b:76:71:ff:3b:
26:74:bb:dd:0d:11:1d:0c:ea:c5:90:e9:cf:0f:bb:
8a:0f:b3:b8:b3:10:73:73:54:88:e5:50:43:20:64:
e1:6a:54:f0:17:ec:f1:16:ac:59:93:24:b9:ed:5d:
32:f2:d6:df:eb:b7:c3:02:b9:18:c5:10:e1:3d:6e:
e4:97:c7:06:4e:92:3d:f3:81:db:51:08:a3:48:dc:
d7:fc:bf:4d:27:c7:40:f2:67:ed:ae:fc:30:13:55:
cd:ba:dd:14:53:b2:fa:0a:c9:cd:46:4e:9e:2f:7d:
16:9c:ae:2f:e9:b0:47:80:1e:49:63:bb:ec:bd:02:
3f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:FF:B4:7A:D8:FA:37:40:39:29:2F:FD:38:4A:D3:54:B8:1A:A7:DD
X509v3 Authority Key Identifier:
keyid:0F:23:F7:3D:64:F6:DB:F8:1D:51:D3:58:05:48:15:68:CD:D8:18:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DyP3PWT22_gdUdNYBUgVaM3YGHU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/0f-0etj6N0A5KS_9OErTVLgap90.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/03477c-10a4-455b-be6b-b3a09430c665/1/DyP3PWT22_gdUdNYBUgVaM3YGHU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.79.0/24
Signature Algorithm: sha256WithRSAEncryption
89:08:24:b9:80:ee:b3:4f:05:a5:ef:f8:0a:a6:a2:d4:cf:9d:
cc:36:36:bb:35:d6:35:4f:fb:b5:4d:54:6f:3f:dd:f7:1b:57:
45:e4:b3:91:9a:e1:e5:fd:a2:5c:9c:11:af:ba:d9:6a:bf:89:
7c:06:ef:d5:e0:8b:f0:cc:f5:fe:93:4a:6e:09:fe:42:ff:9e:
8f:c2:3d:c2:b1:0d:fc:ae:81:15:c7:1d:37:ec:c9:18:12:7a:
77:8c:21:49:87:61:c7:e6:a0:3a:b9:5f:54:a4:78:3f:4f:9c:
04:68:56:66:64:e5:36:6b:d4:2b:93:98:4d:66:85:4d:23:61:
ee:af:8c:16:20:89:47:2e:5b:8d:c2:d6:16:99:73:9d:0a:63:
5f:ec:f0:cf:83:79:77:ce:a5:66:19:8c:00:d2:5d:fc:8d:9c:
00:6f:5e:f1:b3:57:9e:97:32:72:30:07:65:55:5e:be:fd:63:
6e:a7:17:68:56:a1:87:b7:40:cc:1d:b1:94:12:e6:2d:0f:4d:
4a:4a:53:0f:61:f3:d2:e0:e3:e9:55:25:d3:85:e6:15:ad:10:
b2:f4:81:6b:0e:62:dd:30:c2:71:6b:41:5f:5f:b5:71:92:fb:
0a:68:c6:2d:05:64:0a:c6:8e:0c:f2:ec:06:be:a1:5c:cd:1e:
29:de:87:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:34 2023 by rpki-client on console-ams.rpki-client.org