Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/fMAcOBYi7VzE130Aej1x7C_nlyA.roa
File: fMAcOBYi7VzE130Aej1x7C_nlyA.roa (raw, json)
Hash identifier: RjLerWusDGpXJeW5CsbbyWEC1n9IY4pkgijBSgMmVdk=
Subject key identifier: 7C:C0:1C:38:16:22:ED:5C:C4:D7:7D:00:7A:3D:71:EC:2F:E7:97:20
Certificate issuer: /CN=d3d56f07be184cba52f6fdc049e8114d2616c32a
Certificate serial: 0A4598FF
Authority key identifier: D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/fMAcOBYi7VzE130Aej1x7C_nlyA.roa
Signing time: Sat 01 Jan 2022 15:03:27 +0000
ROA not before: Sat 01 Jan 2022 15:03:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206185
IP address blocks: 194.126.164.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 172333311 (0xa4598ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3d56f07be184cba52f6fdc049e8114d2616c32a
Validity
Not Before: Jan 1 15:03:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cc01c381622ed5cc4d77d007a3d71ec2fe79720
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:08:90:9b:63:14:02:b8:43:61:64:11:2c:b9:
85:b3:96:26:fb:f5:27:32:26:16:ef:7e:7d:28:f9:
12:2e:d7:5a:94:bc:77:a7:b8:4e:57:e6:68:72:83:
1e:cb:81:6c:6f:02:d7:ae:63:91:5f:4b:bb:09:3e:
77:dc:8c:11:00:11:0c:6e:ac:b5:5a:26:07:37:1e:
36:78:9b:30:16:05:34:6d:ab:72:14:53:ad:8b:d9:
b9:9c:18:12:02:b2:f5:f7:5b:a3:98:cf:fe:d8:1b:
5c:76:1f:54:5f:f9:d9:d5:99:a6:e4:c2:8f:67:b9:
4b:3c:de:42:46:f0:59:e9:e0:36:0c:15:61:eb:a7:
de:34:44:d3:ee:ba:43:28:79:ca:73:7e:42:48:fc:
07:99:a3:3b:c4:1e:b2:35:8d:c2:13:a7:7f:8a:16:
b3:12:1b:17:92:f0:e3:cf:ad:c6:e2:a7:7c:ab:fd:
63:fc:d1:22:b6:ef:98:b5:c9:b8:ab:b7:3f:80:d0:
fe:36:96:5a:ec:7b:25:d9:c4:b9:08:27:7a:ed:fd:
3a:76:03:f1:06:55:63:9c:4e:cc:bb:43:80:79:0d:
63:6d:83:0a:66:52:c0:73:50:62:0a:e2:6b:79:e8:
ab:f9:e5:f9:1f:29:e2:a1:b7:c5:f8:51:09:db:42:
56:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C0:1C:38:16:22:ED:5C:C4:D7:7D:00:7A:3D:71:EC:2F:E7:97:20
X509v3 Authority Key Identifier:
keyid:D3:D5:6F:07:BE:18:4C:BA:52:F6:FD:C0:49:E8:11:4D:26:16:C3:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/09VvB74YTLpS9v3ASegRTSYWwyo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/fMAcOBYi7VzE130Aej1x7C_nlyA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/5786ab-067e-440c-b276-1b06d1c704c1/1/09VvB74YTLpS9v3ASegRTSYWwyo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.126.164.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:97:29:2c:d6:c9:68:63:fc:17:1a:78:df:be:9e:a4:4a:47:
db:15:16:40:ff:c5:9f:ae:1d:dc:c3:5b:5f:d1:f6:ac:d3:6d:
de:c3:04:ed:fc:af:9e:5f:30:af:42:dc:85:8c:2b:48:72:b3:
27:eb:cf:47:bd:9b:89:26:46:5c:c4:50:dc:7a:a9:ca:f9:06:
29:d8:08:84:a1:2d:db:fc:75:13:1c:ca:4d:ba:03:88:e9:57:
69:00:36:ad:25:5b:fe:b5:7b:fb:8f:31:cc:e9:82:15:d8:bc:
5f:89:bc:44:c7:38:87:26:4c:5e:f4:78:cc:76:08:3e:16:27:
25:08:e9:71:9b:eb:a3:8a:a1:0e:27:1d:b1:18:78:14:1c:22:
73:52:05:b3:6f:5d:ef:b6:ba:05:53:61:51:3a:e4:82:12:9f:
d0:59:3a:63:cc:32:58:ff:55:50:a9:55:bd:7c:1d:86:03:f6:
eb:ce:5c:eb:d1:ce:7f:87:00:2d:ac:29:0d:94:e6:98:bc:64:
d5:c9:ca:b0:92:15:a1:67:8b:2c:6e:09:8a:c6:66:81:ef:fa:
64:93:d6:77:6a:d5:a4:70:69:3e:fd:e4:30:fd:f8:fb:4c:dd:
a0:37:2f:42:28:b7:e8:da:f3:1b:87:db:39:62:b3:89:04:1e:
29:e4:cf:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:47 2023 by rpki-client on console-ams.rpki-client.org