Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/1-kzTG8lHuZ54xJnvUYe79n2lOxE.roa
File: 1-kzTG8lHuZ54xJnvUYe79n2lOxE.roa (raw, json)
Hash identifier: Rgozla+cHOinAPk29nqMc27CZ15bMaAiat7XT5iSRfU=
Subject key identifier: FA:4C:D3:1B:C9:47:B9:9E:78:C4:99:EF:51:87:BB:F6:7D:A5:3B:11
Certificate issuer: /CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Certificate serial: 01839F980CE479A547C752D00B9FC6AFB120
Authority key identifier: 7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/1-kzTG8lHuZ54xJnvUYe79n2lOxE.roa
Signing time: Mon 03 Oct 2022 20:44:45 +0000
ROA not before: Mon 03 Oct 2022 20:44:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28721
IP address blocks: 194.149.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9f:98:0c:e4:79:a5:47:c7:52:d0:0b:9f:c6:af:b1:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7aef069e7e3ed5bf70f682ce40c5810ff3e5e378
Validity
Not Before: Oct 3 20:44:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa4cd31bc947b99e78c499ef5187bbf67da53b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b2:ef:99:f4:79:c4:15:1e:16:de:cb:0c:1b:
9c:8b:e7:f9:48:5f:61:c2:a0:49:34:20:b4:d0:0c:
d9:aa:54:0a:94:61:02:6e:44:41:f9:34:76:ab:02:
15:88:73:54:eb:74:25:a9:1a:9f:bb:4f:5a:84:dc:
11:d4:86:ec:a3:1a:95:2c:32:67:0f:f5:0a:12:82:
10:ec:e2:ec:43:fe:f9:79:6d:ce:7d:7f:dc:99:f7:
5e:78:c0:64:c2:22:c4:71:a6:7a:8a:47:b4:86:1a:
83:bd:61:cf:23:e7:7a:0f:f1:02:3b:d3:ca:2e:4a:
17:d2:90:49:8e:41:65:19:cc:5c:ef:06:88:87:89:
1b:77:2e:dc:82:92:2f:f9:91:e4:c6:44:fa:02:67:
23:fc:4f:28:bf:2f:48:7a:a7:68:d8:bb:0f:2e:6d:
62:6e:51:6a:11:f4:d1:1f:9a:b3:02:08:c5:52:da:
5d:00:02:88:8f:44:ad:62:6c:aa:4a:bc:57:76:38:
60:75:ad:7a:f6:c6:bd:4c:d3:ea:1c:f1:33:95:2a:
2a:c2:0d:af:62:1b:c7:d1:fb:00:b2:65:42:2e:08:
0c:01:d3:37:27:2d:0c:f3:29:79:81:6c:c4:e4:16:
33:51:c7:d4:aa:66:d0:28:1f:f8:79:6e:7a:49:b4:
dd:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:4C:D3:1B:C9:47:B9:9E:78:C4:99:EF:51:87:BB:F6:7D:A5:3B:11
X509v3 Authority Key Identifier:
keyid:7A:EF:06:9E:7E:3E:D5:BF:70:F6:82:CE:40:C5:81:0F:F3:E5:E3:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/1-kzTG8lHuZ54xJnvUYe79n2lOxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/c0bb52-70de-4af0-a9fb-900034f00d9e/1/eu8Gnn4-1b9w9oLOQMWBD_Pl43g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.149.245.0/24
Signature Algorithm: sha256WithRSAEncryption
06:14:fb:fa:cb:ef:12:3a:de:ba:a4:47:ed:01:0e:60:98:98:
8a:a3:81:2b:e6:99:d8:d1:08:d4:4c:5c:14:57:c9:bb:1e:94:
0c:da:c5:1b:c0:ca:fd:c1:a6:6d:2c:fc:f6:47:59:0d:88:58:
42:f5:0e:98:6e:d0:1c:3d:16:b3:eb:a0:27:fa:36:5d:ae:65:
40:89:11:e9:f9:06:1a:27:12:ba:de:48:56:8d:cc:d2:f8:71:
34:5d:47:47:10:d3:8c:9e:3b:fd:2d:84:04:5c:f5:be:d3:3c:
59:fd:13:f0:0b:a5:19:ce:d9:be:71:b5:92:30:bb:35:25:cd:
81:70:f3:65:dd:95:b5:cf:9d:29:40:46:89:95:10:68:80:67:
16:62:a7:ad:38:c0:48:35:c5:cc:80:78:2a:ae:f1:36:7d:c7:
7d:ba:b4:db:98:63:2b:8f:00:8b:d2:05:09:ba:bf:9b:65:6a:
3e:5e:68:e4:1f:85:53:f6:aa:20:6d:82:17:7e:5c:72:9c:a5:
f3:35:5d:db:4b:dd:ae:c4:cc:4e:c0:1d:20:b2:e8:3c:e3:e3:
db:d3:4b:66:3c:87:e8:99:64:ca:e3:32:ad:69:25:76:4d:66:
55:31:53:1b:4f:2b:8d:a2:59:b2:a5:88:9b:9f:ee:39:ba:f7:
8a:be:69:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:32 2023 by rpki-client on console.sobornost.net