Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/329968-247c-4dea-99d2-60107b4ea4eb/1/0SauuRRTaFTlsXrcvylYNl1nUZQ.roa
File: 0SauuRRTaFTlsXrcvylYNl1nUZQ.roa (raw, json)
Hash identifier: kdYehNC6/eR2V0414EV+rMs26GLN4C3vCUkib64cQMw=
Subject key identifier: D1:26:AE:B9:14:53:68:54:E5:B1:7A:DC:BF:29:58:36:5D:67:51:94
Certificate issuer: /CN=1a79a0ac3312c1653f300b04510d9bf2c9c2a55f
Certificate serial: 1056F0B2
Authority key identifier: 1A:79:A0:AC:33:12:C1:65:3F:30:0B:04:51:0D:9B:F2:C9:C2:A5:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GnmgrDMSwWU_MAsEUQ2b8snCpV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/329968-247c-4dea-99d2-60107b4ea4eb/1/0SauuRRTaFTlsXrcvylYNl1nUZQ.roa
Signing time: Sat 01 Jan 2022 06:55:34 +0000
ROA not before: Sat 01 Jan 2022 06:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 194.76.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 274133170 (0x1056f0b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a79a0ac3312c1653f300b04510d9bf2c9c2a55f
Validity
Not Before: Jan 1 06:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d126aeb914536854e5b17adcbf2958365d675194
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:57:93:99:d7:84:c5:53:d1:e7:8c:aa:2d:a8:
f2:da:c9:bc:80:06:e2:ed:6d:4a:ff:ac:70:3f:b0:
76:93:dd:cc:a5:af:8b:1c:cc:0e:e8:83:4c:95:30:
88:bf:57:15:cd:1b:2e:f6:d9:ca:06:ae:4c:b7:af:
0d:81:16:32:a3:29:f9:5b:14:37:f6:39:cc:25:ee:
25:bb:87:52:f0:19:f8:6d:1c:62:5c:18:7d:cc:71:
bb:48:e8:30:86:14:76:1b:09:24:ee:e8:5e:04:78:
d4:ef:37:d6:0e:a6:64:d1:8d:b2:84:7f:d7:02:96:
d9:ea:56:e4:12:d2:5a:40:86:01:88:48:b4:c9:4a:
7b:92:e9:da:85:51:e5:0e:58:ed:97:e6:f1:e6:b8:
f5:f0:94:47:02:43:70:eb:bd:6a:7b:55:02:d4:f6:
ad:d5:59:82:86:02:93:f8:f1:c2:22:9a:7e:19:19:
93:c2:64:d8:4e:7e:ab:60:dc:1d:2d:68:4a:82:fa:
a3:54:9f:87:be:71:8b:66:ac:b3:8f:fc:dd:3b:37:
9d:fd:ae:39:20:71:49:83:7a:3e:f7:af:21:28:ef:
8b:d3:a3:47:6d:06:64:c8:44:99:cf:93:51:98:3c:
dc:d9:2d:17:92:4b:3c:57:54:0f:00:6e:66:e0:5f:
cb:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:26:AE:B9:14:53:68:54:E5:B1:7A:DC:BF:29:58:36:5D:67:51:94
X509v3 Authority Key Identifier:
keyid:1A:79:A0:AC:33:12:C1:65:3F:30:0B:04:51:0D:9B:F2:C9:C2:A5:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GnmgrDMSwWU_MAsEUQ2b8snCpV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/329968-247c-4dea-99d2-60107b4ea4eb/1/0SauuRRTaFTlsXrcvylYNl1nUZQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/329968-247c-4dea-99d2-60107b4ea4eb/1/GnmgrDMSwWU_MAsEUQ2b8snCpV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.43.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:f6:df:30:09:89:5f:eb:a2:f7:52:a8:77:80:25:be:8d:85:
9e:34:ee:e1:e2:01:59:53:26:0b:97:be:7d:0b:0f:cd:55:1e:
29:9c:cf:09:57:7b:10:04:8e:42:44:43:e9:7a:88:58:c5:04:
f0:1e:64:a9:27:fc:b7:fa:92:6f:22:7b:b9:8f:17:7b:cc:e4:
e4:4a:9e:eb:7d:b1:c4:12:d8:5c:b5:b8:9b:0b:8a:d4:0d:c3:
66:77:f7:8d:eb:83:5b:40:80:a5:ab:74:38:67:57:20:fd:09:
8c:ed:1a:34:e6:24:3b:ac:4e:e7:d4:94:98:26:69:52:7f:c7:
f8:35:71:c0:7d:8f:a1:be:6a:05:51:c6:17:69:db:98:43:aa:
53:2f:1e:97:bf:b8:4c:35:d9:fa:81:cf:5d:80:70:05:43:f7:
d6:66:0f:e3:ec:6f:df:c6:db:1c:6b:7c:5c:4a:c2:0d:0e:be:
b3:2f:d3:d0:b5:22:e1:d5:72:2c:83:71:96:1d:37:cb:83:6f:
a3:97:62:de:72:ce:55:7c:8f:92:aa:83:df:6a:05:3e:94:5f:
3b:14:6e:60:f2:12:f8:b2:ea:a3:14:36:d5:03:38:55:44:bf:
35:21:60:f3:ca:c6:9a:6d:c1:84:b3:ad:12:3b:38:1d:b6:25:
da:a8:d2:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:42 2023 by rpki-client on console-ams.rpki-client.org