Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/8GcOEq8fWFwlpSkoncgsAMKJaZI.roa
File: 8GcOEq8fWFwlpSkoncgsAMKJaZI.roa (raw, json)
Hash identifier: u7Aysc7HtUPJAEvUGud8RSZvWS76xx4v2ofdHq3SQUQ=
Subject key identifier: F0:67:0E:12:AF:1F:58:5C:25:A5:29:28:9D:C8:2C:00:C2:89:69:92
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 033E95DB
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/8GcOEq8fWFwlpSkoncgsAMKJaZI.roa
Signing time: Thu 30 Jun 2022 06:37:04 +0000
ROA not before: Thu 30 Jun 2022 06:37:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62257
IP address blocks: 194.36.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54433243 (0x33e95db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jun 30 06:37:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0670e12af1f585c25a529289dc82c00c2896992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:a8:03:50:97:bf:99:7e:05:cf:0b:ae:f9:52:
0a:bb:0e:bb:87:41:25:ef:36:32:46:d3:a2:85:92:
c0:3a:fc:cb:5b:70:67:24:ba:d9:d4:37:a5:4f:bf:
5e:57:ef:26:6c:51:1f:8f:c1:a5:28:a8:f4:78:a4:
cf:46:ce:20:f6:7b:2c:eb:df:6d:9d:a9:57:6f:4d:
0a:bf:89:4b:ad:f4:c6:2d:f8:2e:ac:d8:40:72:b7:
17:d0:b7:3c:92:b3:e6:cd:89:47:08:93:63:c2:0b:
af:17:63:39:1e:ed:a4:c7:15:ce:ba:5a:a1:dc:81:
cc:b5:39:8f:2b:9f:74:03:fa:95:7e:d1:0f:50:5a:
e9:84:7c:e4:48:5c:8d:db:e4:e1:d6:25:12:38:5c:
b9:4b:57:92:2b:b2:9f:e6:66:19:14:63:14:53:f9:
a9:ab:ab:b2:36:b7:60:a9:93:13:53:b5:59:14:98:
15:78:31:64:32:00:5a:b3:c8:bf:f1:47:da:5d:59:
5f:58:e4:16:af:f9:0a:9c:17:71:01:e4:d7:cf:54:
e8:1e:98:83:36:33:ca:89:8a:50:2b:01:ea:b0:63:
78:67:ff:27:6c:5b:f7:af:2a:fe:00:38:34:3b:e7:
cd:20:56:ad:d4:c9:b4:e9:ff:de:d9:c9:5e:b5:7b:
52:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:67:0E:12:AF:1F:58:5C:25:A5:29:28:9D:C8:2C:00:C2:89:69:92
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/8GcOEq8fWFwlpSkoncgsAMKJaZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.36.175.0/24
Signature Algorithm: sha256WithRSAEncryption
94:e5:c0:3f:c4:48:e1:db:81:9f:37:49:29:bb:9f:de:27:c3:
cc:3e:1c:89:53:5e:e4:3c:d2:96:14:44:93:a8:aa:00:60:ae:
ad:f1:0d:5d:8c:86:3c:ff:99:1a:00:83:20:c6:ad:26:03:1c:
c6:c8:54:55:76:a7:03:12:f5:4d:55:b8:71:0b:fa:db:8e:e5:
e0:99:a1:30:95:8f:2e:9c:a5:b8:71:e3:64:ae:60:e0:82:09:
b2:7b:67:4e:bb:83:84:dd:e9:9e:a4:86:c0:ce:bf:45:0b:e1:
d2:fd:c6:21:0b:b0:a0:a4:e3:dc:eb:e6:b2:d0:e6:28:01:13:
0e:f1:18:eb:58:b2:e6:39:1b:85:77:08:6b:dc:5b:48:c2:8f:
00:22:3e:89:7a:8a:60:4e:ff:b0:40:2e:1a:b7:1c:67:56:46:
67:30:ca:da:5c:75:84:9d:a9:03:36:3f:f7:68:f8:9e:65:cc:
a6:e9:ce:12:4f:af:c7:48:45:b6:e1:a0:51:5b:d1:90:f6:f1:
33:63:11:42:2b:39:ca:dc:f0:92:1f:76:3f:71:f6:80:a1:79:
80:66:c1:9d:ec:94:f8:6c:7d:c0:50:46:cf:2c:fa:58:96:87:
17:0b:7e:54:6b:d4:44:c7:a1:2e:37:10:02:2f:b9:f1:ce:fb:
13:f0:d3:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-fra.rpki-client.org