Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/08aba8-b756-4492-a7ed-6320c460a3f8/1/73ccZD6dfH5E3NFvoFhcxOJPlXY.roa
File: 73ccZD6dfH5E3NFvoFhcxOJPlXY.roa (raw, json)
Hash identifier: ESKRsG137P0oW4Xl+wPdm99fq1fbrIrNZSV8E2eVkbY=
Subject key identifier: EF:77:1C:64:3E:9D:7C:7E:44:DC:D1:6F:A0:58:5C:C4:E2:4F:95:76
Certificate issuer: /CN=e1cc45e84b078d458adf8d867445c46f8c8d0fae
Certificate serial: 04DA4A39
Authority key identifier: E1:CC:45:E8:4B:07:8D:45:8A:DF:8D:86:74:45:C4:6F:8C:8D:0F:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4cxF6EsHjUWK342GdEXEb4yND64.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/08aba8-b756-4492-a7ed-6320c460a3f8/1/73ccZD6dfH5E3NFvoFhcxOJPlXY.roa
Signing time: Sat 01 Jan 2022 00:58:32 +0000
ROA not before: Sat 01 Jan 2022 00:58:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12297
IP address blocks: 194.1.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81414713 (0x4da4a39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1cc45e84b078d458adf8d867445c46f8c8d0fae
Validity
Not Before: Jan 1 00:58:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ef771c643e9d7c7e44dcd16fa0585cc4e24f9576
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:32:e0:f8:7e:6b:3f:16:64:3d:37:0d:1d:34:
53:a3:53:b0:5d:6d:11:d3:09:2b:1c:8f:69:30:0b:
90:16:b1:4e:62:85:78:18:98:22:83:dc:1b:ee:98:
c6:da:5c:9a:f3:a3:d3:96:0f:11:12:75:28:56:c5:
34:35:25:15:f0:81:6d:85:8e:2a:42:6d:23:ef:88:
02:d9:63:5b:87:e3:19:d2:2d:57:a6:da:d5:a4:9e:
30:ff:fe:4b:bb:a4:88:8b:11:bd:ae:96:6a:ca:9d:
85:31:7e:a6:1b:ae:75:01:4a:5a:a9:8a:cf:f8:5d:
35:44:10:82:2a:46:b3:9f:85:88:19:53:b3:5e:8a:
a4:80:b2:7a:a8:8e:75:8a:db:02:28:e7:85:61:64:
ef:1d:05:12:7f:4b:f3:9d:ee:6f:c4:bf:80:a5:f8:
41:90:7d:0e:da:32:13:25:38:60:f1:86:74:52:a8:
af:46:dc:05:99:86:76:e7:76:91:13:86:f0:d0:60:
63:91:35:b8:66:c0:79:e6:84:79:24:2f:20:91:af:
db:a1:fa:68:38:03:53:c2:c0:28:c6:a3:2b:af:ed:
00:8e:b7:d1:27:75:9d:66:09:da:45:03:6b:7c:25:
fe:71:b9:90:99:60:8d:da:60:63:c1:e7:a4:7e:0c:
4e:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:77:1C:64:3E:9D:7C:7E:44:DC:D1:6F:A0:58:5C:C4:E2:4F:95:76
X509v3 Authority Key Identifier:
keyid:E1:CC:45:E8:4B:07:8D:45:8A:DF:8D:86:74:45:C4:6F:8C:8D:0F:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4cxF6EsHjUWK342GdEXEb4yND64.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08aba8-b756-4492-a7ed-6320c460a3f8/1/73ccZD6dfH5E3NFvoFhcxOJPlXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08aba8-b756-4492-a7ed-6320c460a3f8/1/4cxF6EsHjUWK342GdEXEb4yND64.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.1.152.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:a3:df:38:df:a0:d3:a7:c7:f3:32:07:de:d1:81:af:b5:de:
56:06:93:8d:e3:d3:62:da:ed:77:84:c6:74:55:ae:ed:2a:01:
fd:77:5c:94:0c:47:10:12:f5:aa:dd:15:3d:5b:91:56:d6:3b:
f0:b8:e9:cd:c8:9f:56:3a:92:40:ae:29:8f:21:0d:72:73:66:
5e:63:49:70:b5:2a:38:bb:68:57:bd:a9:76:03:22:7c:83:f1:
3e:0d:7d:ff:0c:af:97:34:6b:17:c1:40:33:96:87:7d:96:35:
e1:cb:c1:0a:96:94:5b:df:1e:1e:62:42:65:41:03:d6:c7:61:
db:9e:83:61:37:37:89:1c:ad:e4:a2:90:b7:3e:a4:82:cf:f5:
d7:34:11:b6:16:c9:4d:90:a5:b0:c0:5e:7a:5a:d5:ab:cc:92:
35:fc:5d:f7:8d:d9:de:37:93:84:95:2e:cb:c7:71:3c:ca:a3:
9d:1e:91:2a:a9:9b:b2:98:78:e9:64:46:7b:2e:cd:10:0a:6d:
5b:16:12:0c:41:5f:7e:54:59:7d:e3:ca:7c:f9:3a:aa:11:39:
a2:ed:e6:e3:60:0c:78:50:61:44:52:55:7c:db:89:5b:e2:98:
40:4c:cb:a1:77:1c:d2:24:13:aa:71:46:9e:79:1d:4c:7b:68:
52:fc:a7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:16 2023 by rpki-client on console-ams.rpki-client.org