Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/5c3fc3-35e8-4a0c-a30f-fb9217028c5c/1/_lNj872oNlioH4E6jqLLXv0jqRM.roa
File: _lNj872oNlioH4E6jqLLXv0jqRM.roa (raw, json)
Hash identifier: uRidHu2byVknvrYjIA+M3oLf8B5SvmkwiJGDHOLq8aA=
Subject key identifier: FE:53:63:F3:BD:A8:36:58:A8:1F:81:3A:8E:A2:CB:5E:FD:23:A9:13
Certificate issuer: /CN=07b7a0c1babd621e8220d0d777877a844b413c10
Certificate serial: 070F7A06
Authority key identifier: 07:B7:A0:C1:BA:BD:62:1E:82:20:D0:D7:77:87:7A:84:4B:41:3C:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B7egwbq9Yh6CINDXd4d6hEtBPBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/5c3fc3-35e8-4a0c-a30f-fb9217028c5c/1/_lNj872oNlioH4E6jqLLXv0jqRM.roa
Signing time: Sat 01 Jan 2022 06:57:13 +0000
ROA not before: Sat 01 Jan 2022 06:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50629
IP address blocks: 193.203.2.0/23 maxlen: 23
193.203.16.0/23 maxlen: 23
2a0f:e280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118454790 (0x70f7a06)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07b7a0c1babd621e8220d0d777877a844b413c10
Validity
Not Before: Jan 1 06:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe5363f3bda83658a81f813a8ea2cb5efd23a913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d2:4c:2d:73:9b:ad:d8:b4:30:b7:6b:50:36:
0b:b3:d5:1c:f1:38:5e:81:00:f2:23:82:a4:a2:c8:
72:41:8f:41:ad:41:78:5a:86:1d:8d:8d:c0:b9:7d:
fd:43:fd:21:f3:4f:48:f6:7a:e2:3b:4a:a8:c9:31:
c8:a1:4e:54:ac:db:4e:f1:5e:ab:f8:2c:15:d8:05:
64:2c:fd:1a:ed:cc:dc:ad:16:f3:e9:0a:c8:ac:f3:
e4:74:f8:b8:2e:83:fc:44:0f:3b:47:25:32:c1:2d:
d5:ce:d4:1b:54:3a:6c:4a:05:22:fc:23:b2:12:5a:
cb:c8:b1:76:21:5f:9d:c4:c5:ee:0f:ca:5e:03:d9:
09:92:b6:90:d1:86:70:64:f0:a9:08:08:89:78:6a:
f8:42:92:69:64:bc:1e:a0:b9:ee:6c:ae:e7:33:0f:
c5:86:2e:a1:33:65:20:9d:f1:57:f5:4a:88:36:53:
b7:e2:e4:60:74:75:94:67:38:fa:f7:19:82:37:3f:
4c:1f:c7:11:83:2e:78:6a:10:59:1c:31:22:da:13:
f2:d1:1d:f5:c9:ab:6c:d3:e2:9b:7b:d1:b5:64:29:
cd:93:83:40:c3:62:a5:81:dc:f0:10:aa:c1:8f:fe:
29:bd:cc:8d:c3:93:ca:5b:da:99:d9:af:9a:24:50:
85:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:53:63:F3:BD:A8:36:58:A8:1F:81:3A:8E:A2:CB:5E:FD:23:A9:13
X509v3 Authority Key Identifier:
keyid:07:B7:A0:C1:BA:BD:62:1E:82:20:D0:D7:77:87:7A:84:4B:41:3C:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B7egwbq9Yh6CINDXd4d6hEtBPBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/5c3fc3-35e8-4a0c-a30f-fb9217028c5c/1/_lNj872oNlioH4E6jqLLXv0jqRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/5c3fc3-35e8-4a0c-a30f-fb9217028c5c/1/B7egwbq9Yh6CINDXd4d6hEtBPBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.2.0/23
193.203.16.0/23
IPv6:
2a0f:e280::/29
Signature Algorithm: sha256WithRSAEncryption
8d:6f:35:af:d6:6a:22:7c:2c:d2:76:bd:e1:0f:e5:17:c2:ea:
21:7c:97:90:85:d3:94:68:fc:24:61:ba:b9:bf:77:d4:cd:85:
af:36:3f:2d:68:d1:14:29:c1:d6:56:ca:08:8b:b2:a8:7e:01:
2c:8e:f0:b3:41:48:b2:27:45:20:58:80:57:81:ee:b8:c7:b6:
a4:a1:f0:73:67:3b:d0:7d:e6:79:91:7a:96:b0:a0:0f:d9:6e:
e9:a4:9f:d2:ee:82:f8:91:13:44:a3:ba:62:6b:ec:5a:13:16:
04:7f:6b:2b:96:e3:c7:9b:b8:b6:5f:cd:47:7e:b8:8e:64:84:
33:f2:96:74:3b:c7:45:7a:d7:bf:b9:a8:dd:45:95:cd:0e:7f:
37:2c:d6:c9:a8:69:27:8b:a8:72:ae:11:9c:6b:a4:d7:c4:a7:
ef:79:40:3d:56:b3:0d:f1:a5:53:56:49:6d:dd:0f:db:f9:18:
f5:dd:74:0c:25:14:c6:cb:2d:c5:4c:83:9f:5e:22:56:bf:58:
9b:6e:85:47:bd:1a:f5:65:74:a4:e1:8c:fb:eb:7a:1f:64:9f:
07:a3:f8:fe:28:e7:bf:38:a4:b7:3c:1d:ca:b4:f3:4e:b6:53:
5c:7a:91:e6:0b:d2:80:7a:f2:c8:8b:64:4e:09:d0:c9:5c:a9:
fb:be:b9:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:13 2024 by rpki-client on console-ams.rpki-client.org