Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/s3C4oVya3wpkENx97UncPgCVEW4.roa
File: s3C4oVya3wpkENx97UncPgCVEW4.roa (raw, json)
Hash identifier: ACSLIvBGaN7uRoJXbtyWqv+Qs4E/kH0ZornalZwwfGQ=
Subject key identifier: B3:70:B8:A1:5C:9A:DF:0A:64:10:DC:7D:ED:49:DC:3E:00:95:11:6E
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0A1A5FE5
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/s3C4oVya3wpkENx97UncPgCVEW4.roa
Signing time: Thu 28 Apr 2022 07:53:03 +0000
ROA not before: Thu 28 Apr 2022 07:53:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41803
IP address blocks: 194.12.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169500645 (0xa1a5fe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Apr 28 07:53:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b370b8a15c9adf0a6410dc7ded49dc3e0095116e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:65:6f:62:8c:20:c3:36:8a:cf:25:a3:24:6a:
58:bf:bd:c4:94:7d:eb:3e:be:58:db:9f:c6:da:97:
c3:2a:7c:5b:55:7f:7a:cc:dd:a0:6f:67:fe:2b:5e:
80:91:66:3c:47:a5:16:95:98:09:40:a4:ca:15:41:
c2:03:e9:b0:8d:48:15:fd:3d:7b:80:2d:cb:f5:47:
b3:f2:89:a4:d8:60:15:31:0d:50:ab:93:29:a7:30:
82:9e:9a:e1:80:51:0f:b6:2f:95:2c:c0:7c:49:02:
9c:8b:e1:35:e6:0a:b7:6a:55:a3:94:bc:ef:06:66:
da:b2:1b:2e:32:b4:a3:95:6c:1b:18:37:66:b3:6b:
db:21:57:22:bb:ac:09:76:79:96:24:28:0a:7d:1f:
08:f3:13:09:a0:95:63:87:e7:af:76:82:87:33:c9:
e0:95:2a:9b:ea:c6:24:e9:cb:2c:a9:5a:e5:89:c2:
8e:73:99:1d:f7:b5:a1:df:3b:8a:c9:b9:03:a6:2d:
7b:58:66:b0:28:27:4c:2e:45:87:4e:ca:69:9d:ec:
f9:be:79:7b:27:80:e0:ad:66:31:7c:06:47:24:6d:
50:b9:a4:4c:6f:1f:39:f4:23:eb:fa:f4:33:32:2d:
18:62:cf:a9:f3:54:ec:9c:a2:59:20:cf:04:11:5a:
f6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:70:B8:A1:5C:9A:DF:0A:64:10:DC:7D:ED:49:DC:3E:00:95:11:6E
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/s3C4oVya3wpkENx97UncPgCVEW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.12.247.0/24
Signature Algorithm: sha256WithRSAEncryption
44:ca:91:f5:0f:6b:66:9b:b7:97:73:35:cd:e1:7c:7e:03:1a:
52:cb:f3:83:ec:4f:20:7c:77:9d:3d:52:da:f2:c0:98:be:e6:
09:9f:b2:59:a7:fd:76:69:d0:28:eb:5c:37:83:e6:38:0b:13:
aa:ec:77:6f:a9:74:1e:77:27:23:4e:1b:63:64:44:3d:8a:83:
a2:25:88:10:80:a3:32:d6:8b:c6:77:8d:00:76:e1:8f:f5:13:
ba:25:40:c2:98:ba:d2:6f:0b:cd:bb:67:78:ef:49:72:78:ef:
de:4d:b9:72:31:25:4d:31:54:4a:18:9b:c1:75:47:e3:95:57:
79:56:e6:ae:2e:32:84:7d:2e:80:7f:71:ad:07:58:f2:da:9d:
af:fc:54:f1:55:29:03:3f:b3:d2:f9:d3:56:21:4a:f7:f0:7a:
de:bc:20:17:f7:31:d0:73:cb:cb:36:8d:03:82:6c:1b:9e:df:
ef:01:e3:a8:75:40:43:70:0f:a7:a5:bc:19:70:0d:7e:70:45:
3a:9c:a0:60:00:f4:34:48:d0:bf:2a:ae:2a:69:64:84:5b:99:
ea:ce:c0:c9:18:88:aa:ea:15:c6:99:c0:3e:60:05:bb:a4:ba:
9d:8d:98:99:2b:5e:16:e8:0d:a4:6d:79:68:ac:66:15:b8:1c:
d6:df:89:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:26 2023 by rpki-client on console.sobornost.net