Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/7raf8-TVsRwHcTdwVbQKXDbhSaM.roa
File: 7raf8-TVsRwHcTdwVbQKXDbhSaM.roa (raw, json)
Hash identifier: Y5s/0qDIJ/NB5MKwBRTxPO2Jj/ESZtzdukg4BZgwV+w=
Subject key identifier: EE:B6:9F:F3:E4:D5:B1:1C:07:71:37:70:55:B4:0A:5C:36:E1:49:A3
Certificate issuer: /CN=13cc6309ac30a7fc015c3344cbc80861b4c547cf
Certificate serial: 07476499
Authority key identifier: 13:CC:63:09:AC:30:A7:FC:01:5C:33:44:CB:C8:08:61:B4:C5:47:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E8xjCawwp_wBXDNEy8gIYbTFR88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/7raf8-TVsRwHcTdwVbQKXDbhSaM.roa
Signing time: Sat 01 Jan 2022 02:01:20 +0000
ROA not before: Sat 01 Jan 2022 02:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12353
IP address blocks: 194.6.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122119321 (0x7476499)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13cc6309ac30a7fc015c3344cbc80861b4c547cf
Validity
Not Before: Jan 1 02:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeb69ff3e4d5b11c0771377055b40a5c36e149a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:32:41:68:1b:25:7f:4c:f5:9c:e4:96:3c:f6:
62:af:ae:42:45:c6:0c:81:fd:0d:5a:a7:9b:f7:92:
4d:22:03:b8:81:02:81:96:4c:5a:89:37:60:37:a6:
36:17:97:d3:1d:d7:42:f7:46:fc:2f:a0:90:82:09:
8e:39:23:2b:8f:ef:97:3b:f8:fa:e9:8f:85:5a:92:
28:eb:45:78:f0:cb:9f:55:d0:f7:68:95:03:66:dd:
32:79:c2:8a:2d:4c:18:6d:32:02:58:09:ca:82:e0:
b5:4c:05:93:e6:81:83:f1:b6:70:30:ca:50:8e:64:
3a:d1:89:3c:6d:3d:7a:0e:e8:e0:31:f8:76:93:f7:
ec:0d:81:65:a2:da:7e:e8:fa:c6:88:a1:d5:d6:17:
d1:2b:82:78:58:08:37:67:15:e8:b2:1c:fa:f3:45:
3b:bb:ed:44:05:73:b8:a3:67:ca:0b:44:48:06:fc:
5e:6f:8c:07:ba:78:f7:29:64:75:18:d7:0e:a6:c7:
5d:88:c6:9f:f3:08:a0:9d:35:35:38:11:1e:0b:53:
bc:86:a2:45:a8:58:8f:19:da:b6:dd:3d:83:85:8e:
aa:ac:b8:04:98:5f:31:31:25:56:ea:27:31:ae:5b:
11:2c:0a:44:c6:5c:7e:20:f2:0e:d5:6f:54:87:41:
b3:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B6:9F:F3:E4:D5:B1:1C:07:71:37:70:55:B4:0A:5C:36:E1:49:A3
X509v3 Authority Key Identifier:
keyid:13:CC:63:09:AC:30:A7:FC:01:5C:33:44:CB:C8:08:61:B4:C5:47:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E8xjCawwp_wBXDNEy8gIYbTFR88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/7raf8-TVsRwHcTdwVbQKXDbhSaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/48d6aa-afd5-4168-b104-dd3765c2eee4/1/E8xjCawwp_wBXDNEy8gIYbTFR88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.6.229.0/24
Signature Algorithm: sha256WithRSAEncryption
92:0e:79:3b:ca:bf:b9:38:0b:ee:12:54:9e:e5:8b:45:c4:1b:
69:cb:53:4b:28:8f:85:cf:d3:38:f6:ba:be:e9:7c:f6:47:4c:
d8:b1:07:0b:75:9a:83:63:3f:09:e6:76:bd:51:0f:c6:0a:9f:
df:b2:97:fc:14:88:b9:e7:69:2d:54:b2:04:5d:3e:d9:38:18:
6f:9e:c3:91:c4:65:74:45:e8:ff:f5:06:19:28:c8:6c:e1:e9:
9d:bb:4b:0c:87:95:28:f0:4d:ae:0f:45:a5:52:3e:ec:33:8b:
ef:fb:d1:2c:1f:55:0c:ac:cb:d0:fd:8b:a4:75:6e:5b:03:e2:
70:cf:71:32:89:2c:ac:b3:ad:2a:38:23:77:b3:64:87:77:8d:
92:97:bc:27:9a:3a:9d:5c:05:0c:fb:9e:07:d6:3d:63:01:06:
15:1c:f3:3e:93:3c:42:8c:73:70:68:01:98:ad:f4:7f:ec:73:
6b:81:59:b9:d1:46:aa:b1:51:e1:e5:3a:8a:ef:28:64:80:7f:
73:89:64:a6:97:e5:d1:1e:53:a6:30:a6:0d:ba:ed:72:a9:b2:
3c:bd:dc:46:ee:cc:54:e1:23:e5:11:e2:18:60:d3:c8:f2:b4:
9d:d8:fc:03:fa:42:ea:5f:64:af:15:ed:48:57:5c:09:85:71:
04:1d:19:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net