Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/mc7h3P_TI6CHVIwDPO308Q58gDM.roa
File: mc7h3P_TI6CHVIwDPO308Q58gDM.roa (raw, json)
Hash identifier: e5T8F5m3JxeD5kS7WkVZT71ZtCFC2nSdSEIsGl5179A=
Subject key identifier: 99:CE:E1:DC:FF:D3:23:A0:87:54:8C:03:3C:ED:F4:F1:0E:7C:80:33
Certificate issuer: /CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Certificate serial: 019182C3
Authority key identifier: C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/mc7h3P_TI6CHVIwDPO308Q58gDM.roa
Signing time: Sat 01 Jan 2022 05:52:56 +0000
ROA not before: Sat 01 Jan 2022 05:52:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200436
IP address blocks: 194.180.224.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26313411 (0x19182c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87b594e5e6713a5b80a5481a5ce71e652d84573
Validity
Not Before: Jan 1 05:52:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=99cee1dcffd323a087548c033cedf4f10e7c8033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:83:d5:00:63:20:0d:5b:5d:5e:a6:96:58:f8:
fe:44:32:a0:c4:6d:f1:14:fa:bb:ce:07:5d:63:5b:
e2:cf:7f:27:96:16:28:57:d9:5f:9f:f8:14:db:73:
f4:e4:17:94:bf:c6:17:4d:62:0b:02:dc:b9:5d:91:
09:2d:77:29:55:df:4a:24:04:18:02:cf:36:3a:18:
1c:a1:a7:46:52:34:59:94:db:fc:8e:2c:05:ab:c0:
1e:8c:77:18:af:f0:eb:dd:5c:ce:4d:79:7e:f5:46:
74:a8:88:83:15:ab:41:bc:95:5e:50:a0:20:34:2e:
07:19:23:33:28:15:a7:bc:74:04:a3:e6:da:a7:36:
fd:13:e5:f3:32:59:49:25:37:be:b8:de:fe:18:44:
92:c5:74:37:a3:23:f6:60:8f:cb:24:78:8a:c7:ce:
da:07:31:6f:09:e1:23:90:84:fd:d0:ab:8d:37:08:
60:52:4a:38:a2:57:55:d9:46:66:ba:a3:00:4e:b2:
91:92:e3:4e:4d:27:10:0f:b5:cb:9d:e7:46:54:21:
22:4b:77:6b:9f:e9:11:b7:a0:29:58:72:fb:d1:16:
2a:bd:43:b4:30:52:15:da:d5:56:4e:17:62:fe:09:
d9:16:15:61:73:aa:c8:1c:48:00:98:5b:ad:08:50:
ba:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:CE:E1:DC:FF:D3:23:A0:87:54:8C:03:3C:ED:F4:F1:0E:7C:80:33
X509v3 Authority Key Identifier:
keyid:C8:7B:59:4E:5E:67:13:A5:B8:0A:54:81:A5:CE:71:E6:52:D8:45:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHtZTl5nE6W4ClSBpc5x5lLYRXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/mc7h3P_TI6CHVIwDPO308Q58gDM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/824f78-dee2-47bc-af2f-38cb6e416f3a/1/yHtZTl5nE6W4ClSBpc5x5lLYRXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.224.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e9:e3:6a:40:d3:06:f3:d9:89:67:3b:36:29:75:d5:d2:74:
b5:f1:26:1d:a7:b8:bb:13:62:49:2c:07:03:e5:19:3b:fa:8d:
9b:97:f1:ce:00:e8:9b:8f:9d:99:ca:dc:b1:19:15:84:9c:cd:
b1:0c:c2:3b:8e:32:dd:78:f7:bb:24:bf:90:eb:13:e0:b3:ad:
ae:14:de:22:33:46:1c:03:69:98:1f:d4:9c:e4:8d:8b:d2:0e:
92:70:0a:9d:0c:0a:ef:1f:77:b8:e6:e9:fe:c6:98:3a:4e:60:
a7:85:a3:d4:ae:36:a5:f8:92:5a:ca:8f:c1:35:82:84:56:7a:
e4:a5:ab:df:1d:d7:c0:71:b7:bb:c0:51:b0:1f:10:fb:b8:5c:
a9:a1:73:4c:7c:9f:d9:1a:73:1c:ea:35:31:79:c6:23:02:f3:
05:ac:23:f0:54:4f:bf:1d:c6:da:2f:c2:ab:4e:44:1e:49:1e:
4e:fe:a0:0c:f6:de:da:45:27:40:e5:4d:45:9b:a7:34:cf:c3:
f1:95:85:d8:26:81:4c:f9:e6:75:90:6c:b4:fe:f6:9c:da:93:
ca:78:bb:86:a4:f0:97:26:36:19:81:d3:1a:10:33:8b:7c:30:
44:4d:0d:66:16:bc:2c:5c:0a:23:87:a7:30:66:97:d8:6c:68:
f9:6b:77:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:14 2023 by rpki-client on console-ams.rpki-client.org