Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/RFa_DTpzKgppS_wGNZQoAHHv0yc.roa
File: RFa_DTpzKgppS_wGNZQoAHHv0yc.roa (raw, json)
Hash identifier: AyCZGw1w3cHfPJNo657tybIMH1xNun7luza4UKITHYY=
Subject key identifier: 44:56:BF:0D:3A:73:2A:0A:69:4B:FC:06:35:94:28:00:71:EF:D3:27
Certificate issuer: /CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Certificate serial: 0181D6D0100C0C242661AA70182BBA3124D4
Authority key identifier: EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/RFa_DTpzKgppS_wGNZQoAHHv0yc.roa
Signing time: Thu 07 Jul 2022 03:59:28 +0000
ROA not before: Thu 07 Jul 2022 03:59:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209357
IP address blocks: 193.32.176.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d6:d0:10:0c:0c:24:26:61:aa:70:18:2b:ba:31:24:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ecf7ca9ffafe72a30966f7e43d92b58e774ce741
Validity
Not Before: Jul 7 03:59:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4456bf0d3a732a0a694bfc063594280071efd327
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:97:fc:ef:d1:88:73:2a:21:e6:4f:fc:eb:f8:
f1:fb:75:eb:59:df:b5:f9:e3:f7:da:b6:95:42:3e:
75:06:c1:ce:cf:5f:43:6a:13:fd:33:e6:e4:19:70:
c3:7b:58:96:90:bc:cb:2f:a5:3c:07:79:a0:68:81:
c4:74:10:a5:a4:dc:21:1b:20:61:8d:8a:95:eb:88:
07:15:36:f9:c6:4d:ba:0d:02:5e:79:82:4f:fe:78:
66:30:29:10:99:1c:4b:41:87:a4:d0:da:c6:13:41:
8f:d1:67:93:76:ef:84:ea:74:61:97:22:52:9e:27:
34:6a:09:b4:c8:45:d0:e5:14:3d:2b:56:35:d5:2a:
85:d9:a9:47:9d:2e:6f:31:94:38:15:bd:15:d4:40:
8e:77:00:50:74:75:3a:22:7b:fd:3f:46:a7:bd:a5:
5f:7f:ea:58:bd:71:cc:52:f3:25:ac:3d:01:8f:c9:
cb:ee:da:c9:51:90:0e:25:11:cc:92:12:a0:74:73:
e0:21:0d:99:fe:b2:36:21:86:2f:51:fe:02:01:b0:
60:87:21:d7:8c:b2:9c:96:57:85:d4:07:e3:13:72:
9e:6c:7e:08:f5:c7:01:2a:ca:cc:ed:e1:62:72:93:
fa:7f:1e:ba:c8:58:a7:29:2d:d9:9d:2b:b7:bb:c7:
5d:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:56:BF:0D:3A:73:2A:0A:69:4B:FC:06:35:94:28:00:71:EF:D3:27
X509v3 Authority Key Identifier:
keyid:EC:F7:CA:9F:FA:FE:72:A3:09:66:F7:E4:3D:92:B5:8E:77:4C:E7:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7PfKn_r-cqMJZvfkPZK1jndM50E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/RFa_DTpzKgppS_wGNZQoAHHv0yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/32779d-3656-44c0-8ab5-981fbb3442dd/1/7PfKn_r-cqMJZvfkPZK1jndM50E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.176.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:fc:e1:d6:ad:93:d8:17:39:8f:52:db:a5:f6:b2:49:72:5e:
68:b4:08:be:f6:0d:f1:b8:f5:00:f5:ec:b0:94:68:de:40:73:
67:65:47:dd:8a:1a:7d:23:0a:cf:8c:ac:6a:57:12:80:d5:50:
f5:43:74:58:c9:49:c8:45:b3:64:0e:0f:37:72:80:08:c7:f4:
34:5c:85:b7:2b:6b:aa:48:21:69:ec:62:0c:65:92:47:34:7b:
53:d4:ee:02:57:20:9b:db:80:32:91:7f:f4:89:1e:bd:5a:dd:
da:fc:ef:3d:2a:5d:26:5a:1b:79:14:ae:73:e6:6e:ae:91:ec:
55:69:ec:3d:04:e8:3e:38:03:d0:5e:d5:33:1b:53:31:86:a1:
16:82:da:5c:76:43:dc:cd:b9:a3:7d:81:f1:e0:c4:64:98:1f:
ce:0b:12:4b:6d:e5:85:c0:d6:ce:16:36:42:ff:4c:53:9a:60:
97:a6:d0:c8:1e:09:bc:4f:5e:6e:a1:73:a4:dd:d4:0d:99:15:
65:d8:bb:6b:3c:7e:53:09:2f:e5:38:bd:d2:b2:83:1f:63:af:
0f:d8:2b:5c:dc:fb:be:57:f6:cf:25:aa:4d:4d:d1:98:be:42:
2a:3f:8b:6d:d0:62:14:2d:fa:24:b6:1b:4c:84:ad:8f:23:4f:
c2:aa:d1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:29 2023 by rpki-client on console-ams.rpki-client.org