Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-lA7XfeJ2ol_p1DPdUSk5lUYbaU.roa
File: 1-lA7XfeJ2ol_p1DPdUSk5lUYbaU.roa (raw, json)
Hash identifier: 1O2Vf2ZdiQmRux1OwM+q4ZNVwanAVR6MLwDlZCpvwU8=
Subject key identifier: FA:50:3B:5D:F7:89:DA:89:7F:A7:50:CF:75:44:A4:E6:55:18:6D:A5
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0182A2AEB7260392CD27F221E89B82B8A93D
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-lA7XfeJ2ol_p1DPdUSk5lUYbaU.roa
Signing time: Mon 15 Aug 2022 18:05:35 +0000
ROA not before: Mon 15 Aug 2022 18:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 193.37.44.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a2:ae:b7:26:03:92:cd:27:f2:21:e8:9b:82:b8:a9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Aug 15 18:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa503b5df789da897fa750cf7544a4e655186da5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:13:1d:3f:f3:22:10:fe:12:1b:6e:69:44:4d:
23:2a:5f:38:f5:5e:9f:64:07:aa:1e:a2:70:19:6e:
f4:75:1b:44:ff:35:5c:61:66:a5:77:6b:ef:51:d1:
31:c8:c6:a7:a4:fd:b2:76:27:58:6f:32:74:2e:53:
74:34:b0:95:db:00:be:fe:97:9d:31:d0:ce:24:dd:
a3:5b:42:40:9c:c4:09:0d:40:07:d2:6a:91:cc:19:
83:45:69:f8:62:0b:be:b4:e6:97:2f:e3:c5:ab:15:
2e:fc:2c:d8:82:67:84:52:93:33:1d:0a:e0:42:45:
69:e7:7e:fd:84:5b:16:5f:ef:ac:9e:e2:e4:c7:fe:
a0:15:f3:12:1a:9b:30:85:9f:e4:08:a1:61:3b:e8:
04:c6:57:8b:87:c3:7c:6b:be:07:8e:00:b8:9f:22:
6e:9c:9a:3c:04:b5:90:07:56:9c:45:66:c8:d3:9e:
ae:06:1b:19:bd:76:11:89:0f:17:81:8f:5b:cf:fb:
4d:41:00:c7:af:ee:99:f6:c6:fc:a3:c5:a0:41:c5:
b2:08:5b:4f:b2:46:85:a5:75:26:70:dc:6b:d9:39:
a5:9b:3b:7b:37:03:18:4b:9f:0f:27:f1:6d:69:10:
82:62:cd:c6:3a:62:c2:f7:fd:43:75:e1:99:28:d8:
2e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:50:3B:5D:F7:89:DA:89:7F:A7:50:CF:75:44:A4:E6:55:18:6D:A5
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-lA7XfeJ2ol_p1DPdUSk5lUYbaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.44.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:d8:94:17:f2:6e:a0:71:05:3e:6c:22:bb:ec:73:23:eb:94:
5e:3d:4d:1a:61:8d:8f:da:78:29:78:9c:92:1f:31:fb:1f:4e:
9d:19:df:e8:78:c8:f6:a9:e7:ec:83:dc:05:9d:21:69:0f:62:
e4:17:9d:da:6b:3d:57:ac:6c:30:ba:14:93:79:a1:ca:c0:56:
8e:2c:6a:7f:97:53:0f:27:bf:6a:93:cc:cb:26:77:7a:ce:85:
a5:be:5e:5a:e0:25:b2:71:e7:71:9b:ad:08:57:79:30:a9:65:
52:be:51:a7:e7:ec:e5:e3:9f:16:db:0c:66:62:c0:fa:f7:03:
d4:e0:64:c9:5c:95:a2:1e:28:ac:fd:b1:f4:9e:1c:fc:fa:d2:
14:16:e3:3d:1c:d1:9d:7c:66:a4:bf:ed:bd:78:3e:28:68:07:
77:5d:9a:c8:91:f5:17:9e:ff:00:9e:60:4c:26:5a:43:95:5a:
60:70:39:51:5a:a4:fd:f9:1e:86:6b:a7:73:42:0b:41:e9:14:
51:59:63:75:da:83:79:87:61:77:fd:90:f2:3f:f1:8d:b5:11:
48:7b:28:83:bc:53:75:24:bb:7e:56:16:17:cb:7b:a8:0a:fe:
72:33:a2:43:3e:0d:bc:b9:6e:93:bc:90:35:6c:03:e4:56:23:
b4:eb:8d:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-ams.rpki-client.org