Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/q1uowE_dtRqovldrz3p_54cK1TY.roa
File: q1uowE_dtRqovldrz3p_54cK1TY.roa (raw, json)
Hash identifier: mE1s5Fy4kFPw75KYIMrc4mGSq28KIrcGIAG4F4TNYFE=
Subject key identifier: AB:5B:A8:C0:4F:DD:B5:1A:A8:BE:57:6B:CF:7A:7F:E7:87:0A:D5:36
Certificate issuer: /CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Certificate serial: 01854306E063AD8F7051FB6E7156E116E6FF
Authority key identifier: C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/q1uowE_dtRqovldrz3p_54cK1TY.roa
Signing time: Sat 24 Dec 2022 07:26:41 +0000
ROA not before: Sat 24 Dec 2022 07:26:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12325
IP address blocks: 194.8.80.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:43:06:e0:63:ad:8f:70:51:fb:6e:71:56:e1:16:e6:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c04db7623241d7e6678fc25751fa4e0b6665186b
Validity
Not Before: Dec 24 07:26:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab5ba8c04fddb51aa8be576bcf7a7fe7870ad536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9c:cf:fb:ea:5b:f1:5b:60:a0:85:4f:d1:16:
2e:ac:99:90:02:51:31:c6:84:83:89:51:e8:7a:56:
bd:66:eb:ce:a7:69:d0:e2:3b:c8:a3:4f:dc:d5:4a:
6e:08:ef:13:cc:ff:7c:db:31:16:cf:a1:a4:28:5c:
f6:1e:e3:3b:b9:f7:3b:10:17:ed:4a:97:0c:8e:dc:
50:39:42:ab:f7:0a:1d:94:10:cd:5a:3b:eb:9b:fd:
a7:6d:c0:f5:38:16:a5:c2:a8:6c:a6:0f:d2:0c:9a:
64:81:35:c1:2c:ad:2d:c3:9c:d7:6c:2c:bb:64:1c:
58:32:a7:8f:2e:f8:f4:d8:70:3c:e0:cc:39:0b:3c:
a7:95:0b:5d:96:62:62:ba:82:16:17:83:38:58:9f:
a0:0b:e0:ef:c8:ff:0c:b1:11:32:64:71:98:7c:a9:
4a:88:4e:3f:07:5f:3c:b3:c3:c7:b6:51:f3:bf:b3:
44:3c:bb:14:cc:5a:eb:49:1a:fb:95:5c:da:71:66:
11:fa:a3:2d:b3:b7:bc:26:c2:25:76:c3:4c:09:6a:
87:f1:2c:58:f5:42:54:6a:a3:1c:ee:3b:c0:e8:57:
59:07:20:a6:c7:ca:e2:ba:d3:2c:9b:cb:67:af:fe:
27:18:3d:cc:68:d6:6f:d5:0a:d4:f5:aa:e9:da:e2:
17:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5B:A8:C0:4F:DD:B5:1A:A8:BE:57:6B:CF:7A:7F:E7:87:0A:D5:36
X509v3 Authority Key Identifier:
keyid:C0:4D:B7:62:32:41:D7:E6:67:8F:C2:57:51:FA:4E:0B:66:65:18:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wE23YjJB1-Znj8JXUfpOC2ZlGGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/q1uowE_dtRqovldrz3p_54cK1TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/6e874e-73fe-4dbb-b74c-0423f263f2cb/1/wE23YjJB1-Znj8JXUfpOC2ZlGGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.80.0/24
Signature Algorithm: sha256WithRSAEncryption
29:4c:70:82:2d:ae:00:c4:72:b7:51:7b:7b:a3:bd:02:c2:8b:
7a:73:a5:05:f5:f2:d3:aa:41:6d:86:58:46:da:8c:22:a8:df:
79:cc:b1:54:c0:e2:ea:e0:49:18:1c:26:44:f4:85:c2:05:fe:
29:41:8f:02:29:32:70:cc:ef:97:8d:c0:03:55:51:60:5f:8d:
13:e8:4d:8d:85:b0:29:ba:30:b9:91:de:90:dd:83:52:ae:e2:
7a:7f:94:08:bb:ec:8a:28:0a:c7:11:1b:a0:05:bb:79:1c:33:
69:f6:93:09:92:ee:c7:8e:f3:c6:a1:fb:aa:46:1f:c7:6b:b0:
20:38:9d:58:ce:5a:34:97:9a:ff:46:73:06:9b:3d:a4:1e:1f:
90:cf:ad:80:f4:20:6e:5c:f7:09:70:a3:81:7c:78:eb:cd:1e:
09:42:88:0b:d5:34:65:9a:87:96:97:3c:e2:ca:84:c4:de:32:
6e:a7:f8:69:ac:59:24:0f:27:13:2a:02:24:7e:30:76:eb:29:
da:70:68:a7:1a:71:61:41:07:50:5b:ca:8d:61:34:57:0a:2c:
15:63:c5:b3:5f:3f:e3:73:63:9c:27:d1:89:72:6f:0d:c4:d6:
10:1d:d6:ac:de:fb:20:de:ca:a4:b1:b2:b2:00:fd:00:cd:f4:
81:32:e9:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:59 2024 by rpki-client on console-ams.rpki-client.org