Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/8RfMvrMoVSYHuwbK50hXNste9Wo.roa
File: 8RfMvrMoVSYHuwbK50hXNste9Wo.roa (raw, json)
Hash identifier: TfS88Zqxziu3mzbXsKXjBS/eSJPRiXOtK5fK59RspPU=
Subject key identifier: F1:17:CC:BE:B3:28:55:26:07:BB:06:CA:E7:48:57:36:CB:5E:F5:6A
Certificate issuer: /CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Certificate serial: 117B0128
Authority key identifier: 3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/8RfMvrMoVSYHuwbK50hXNste9Wo.roa
Signing time: Sun 27 Mar 2022 18:15:48 +0000
ROA not before: Sun 27 Mar 2022 18:15:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.0.181.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 293273896 (0x117b0128)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e24c7ecfa37d2487152fb9bbbab50be79de2619
Validity
Not Before: Mar 27 18:15:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f117ccbeb328552607bb06cae7485736cb5ef56a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:db:49:9e:be:b3:32:6d:c8:b6:3c:15:8a:de:
a7:29:c6:e8:3d:d1:05:1a:16:43:85:5d:59:d6:08:
68:a9:ac:79:fb:9e:93:55:70:8e:5b:b9:ac:f5:ca:
49:ad:c2:21:5a:53:c1:ed:16:44:5c:05:f3:9a:bc:
48:e6:d3:69:ed:6e:df:e5:5f:c1:66:3a:a0:e5:83:
ce:53:2d:c3:aa:aa:9a:ec:79:64:df:bc:fb:91:4f:
9e:1c:06:7a:69:fd:9b:27:b5:44:c6:42:b9:9f:34:
78:b8:5a:36:b5:b2:6e:d4:f2:2e:ed:94:f6:af:fe:
c8:5c:af:cc:6b:16:91:bc:fd:6b:c5:40:65:59:37:
6c:8e:9d:a6:2d:af:c5:58:fc:4a:a2:52:29:5e:05:
32:fc:de:7a:f8:a2:4a:ba:80:10:cd:62:2e:d2:0c:
76:c1:f7:fd:ee:3a:f7:27:be:a1:0d:f0:fc:41:32:
ad:62:85:56:91:60:aa:f0:71:b0:b5:f2:44:23:ac:
39:f1:09:67:f2:a5:74:ce:cb:0b:0f:7a:30:1f:37:
d0:2b:59:01:5e:da:1f:f5:13:4e:50:03:64:ce:8e:
c6:e1:b3:37:9f:cb:50:37:93:51:23:33:0e:ca:44:
6b:7b:72:c1:b8:08:b9:c5:d8:a9:e5:eb:6d:8c:34:
5d:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:17:CC:BE:B3:28:55:26:07:BB:06:CA:E7:48:57:36:CB:5E:F5:6A
X509v3 Authority Key Identifier:
keyid:3E:24:C7:EC:FA:37:D2:48:71:52:FB:9B:BB:AB:50:BE:79:DE:26:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PiTH7Po30khxUvubu6tQvnneJhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/8RfMvrMoVSYHuwbK50hXNste9Wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/39a5fc-d26e-4d53-91e3-493d774aa1ff/1/PiTH7Po30khxUvubu6tQvnneJhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.181.0/24
Signature Algorithm: sha256WithRSAEncryption
48:69:3d:52:47:86:6b:a1:13:d9:ff:72:15:0b:08:17:b7:b9:
44:b5:cb:9e:e1:41:7b:63:30:12:4b:bb:ed:6d:3f:f4:29:65:
65:03:43:23:70:90:97:a8:77:77:52:a7:22:0f:83:1c:d7:e8:
c2:e1:23:16:29:34:6f:46:8a:0c:86:68:ab:8a:e3:4a:da:e9:
a2:6f:7a:58:b8:dd:5d:94:20:11:ee:3c:72:63:73:9f:42:d2:
a4:a8:4e:b2:0a:31:62:8a:24:cf:31:b7:d4:fe:0d:9f:ab:12:
ad:74:b6:2c:48:40:2a:16:fa:a8:ca:8e:23:1e:1f:97:84:75:
a1:f2:05:b5:e8:59:aa:71:00:01:b1:c8:2a:9f:ac:7c:5c:0a:
1a:e0:8b:e4:20:eb:2d:e0:46:fb:f8:2c:50:54:65:ad:66:23:
10:83:32:f1:c1:7d:45:77:75:b6:e9:e1:ad:13:56:94:ed:be:
56:f8:93:de:5e:69:24:0d:aa:dc:50:ac:e2:37:cf:15:0c:c9:
6c:52:d8:d3:a5:ae:0c:3c:21:87:03:00:2c:62:ce:bb:5c:81:
ae:22:72:7b:02:14:67:54:d1:69:bb:2b:69:93:81:a3:ed:dc:
97:03:05:42:c7:54:e0:b0:7f:ec:1d:68:6d:d4:dc:10:ee:02:
48:1f:72:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:17 2023 by rpki-client on console-fra.rpki-client.org