Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/g3k7ba6eQ0rqKS7VXZzLo4jNI5o.roa
File: g3k7ba6eQ0rqKS7VXZzLo4jNI5o.roa (raw, json)
Hash identifier: aBH1UreB923wQu9k8DOICg/jSeqYfAKNa757jmvagC0=
Subject key identifier: 83:79:3B:6D:AE:9E:43:4A:EA:29:2E:D5:5D:9C:CB:A3:88:CD:23:9A
Certificate issuer: /CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Certificate serial: 018321697B888DFB30C32D94CC3144C80057
Authority key identifier: 75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/g3k7ba6eQ0rqKS7VXZzLo4jNI5o.roa
Signing time: Fri 09 Sep 2022 08:41:44 +0000
ROA not before: Fri 09 Sep 2022 08:41:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6665
IP address blocks: 194.20.232.0/21 maxlen: 24
194.20.240.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:21:69:7b:88:8d:fb:30:c3:2d:94:cc:31:44:c8:00:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7539b7a123417aa719325946aa89e0f30ab0ca09
Validity
Not Before: Sep 9 08:41:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83793b6dae9e434aea292ed55d9ccba388cd239a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:74:3b:83:46:fe:d4:c1:d5:87:f9:0f:86:16:
12:da:ec:3b:0e:8b:e5:6d:1d:00:9d:46:e3:fd:13:
da:d9:1a:2c:b0:a6:41:a3:0c:07:a0:29:fa:d5:bf:
4e:1f:bd:57:d4:0f:9a:c6:2d:20:68:75:f0:2a:46:
b5:f6:83:a2:84:3a:63:c3:75:71:59:1f:d4:92:53:
b1:79:b9:63:2c:c7:cc:e0:5e:9f:ab:74:0d:dd:1c:
5a:3c:9f:e7:b6:be:01:ba:8a:ab:ff:65:f0:c3:54:
14:4e:36:2a:2f:7e:ce:b5:27:93:e5:78:19:5b:b3:
95:17:20:78:a2:b9:82:49:9d:5b:76:70:3a:f2:53:
b2:1c:ac:ad:26:e3:5c:60:16:64:45:0d:5f:c0:43:
d1:ea:29:2a:49:48:49:45:17:bd:7f:43:52:c9:6d:
11:76:09:27:82:fc:c5:e4:9b:97:2b:42:98:f7:7c:
a2:a4:09:1c:a5:5f:09:91:6b:fe:c1:44:04:aa:61:
18:f6:18:8a:b2:48:38:9a:c8:74:b1:6d:82:32:c6:
37:9d:2d:60:65:72:4a:2c:15:4d:75:0b:ed:39:df:
9e:f3:b3:e8:74:f2:53:16:e2:15:2c:02:ed:fe:99:
3e:86:52:d7:bc:68:b2:e3:de:a6:a2:46:73:82:e5:
53:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:79:3B:6D:AE:9E:43:4A:EA:29:2E:D5:5D:9C:CB:A3:88:CD:23:9A
X509v3 Authority Key Identifier:
keyid:75:39:B7:A1:23:41:7A:A7:19:32:59:46:AA:89:E0:F3:0A:B0:CA:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dTm3oSNBeqcZMllGqong8wqwygk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/g3k7ba6eQ0rqKS7VXZzLo4jNI5o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/807ed5-50b3-4e5f-9367-5b5e33ce70ad/1/dTm3oSNBeqcZMllGqong8wqwygk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.20.232.0-194.20.247.255
Signature Algorithm: sha256WithRSAEncryption
71:b1:90:b6:76:84:5a:82:5d:4f:9c:87:b8:41:dd:30:a8:d2:
dd:3e:a0:09:10:37:fb:86:c3:51:70:db:b5:51:b3:00:46:91:
35:ff:5e:63:33:bc:27:aa:33:3f:8d:1b:75:14:db:55:5d:66:
30:bd:a7:ce:74:c0:04:1d:3d:a2:1f:33:8b:78:c6:28:80:f2:
34:47:48:53:9b:29:c5:26:59:53:7e:70:58:88:f0:f0:ca:68:
f9:67:24:68:20:4e:0b:e3:83:1e:fd:85:15:01:ed:a1:8c:2f:
bd:29:76:78:34:9a:4f:21:f9:ae:77:1b:87:16:5a:7e:9a:43:
71:6a:3e:a5:2e:2a:d5:f9:de:53:fe:1d:f0:11:a9:ae:bc:08:
8f:34:33:08:cf:0b:e0:7f:14:9d:25:0f:8a:bc:86:fb:37:72:
b5:77:a1:7d:c2:66:19:b2:75:5e:24:6f:45:60:0f:53:63:fa:
42:9d:25:93:e1:c3:f9:b4:83:e3:b2:de:c0:bf:1e:50:64:57:
dc:6b:b6:93:3d:66:49:4c:be:9b:3b:84:35:be:42:7d:8f:3c:
eb:c3:38:96:55:c6:81:35:d7:7a:ae:09:d6:72:78:97:83:06:
a0:f9:6f:8c:d5:e2:5b:51:48:56:1c:99:3c:f4:78:64:05:b1:
ef:5f:35:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:37 2023 by rpki-client on console.sobornost.net