Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/e8028c-8178-4576-aaa4-866c4b4acacb/1/bcPS2frhzYidC-Wuc4Uj2IVWIA8.roa
File: bcPS2frhzYidC-Wuc4Uj2IVWIA8.roa (raw, json)
Hash identifier: /ESt3Q3/Hqj47X4mBmGFWipn4Wt+mJWPRMskIg4J72U=
Subject key identifier: 6D:C3:D2:D9:FA:E1:CD:88:9D:0B:E5:AE:73:85:23:D8:85:56:20:0F
Certificate issuer: /CN=f3101007d4bf89fbf9f7661cd75894903d2680ef
Certificate serial: 013DAE
Authority key identifier: F3:10:10:07:D4:BF:89:FB:F9:F7:66:1C:D7:58:94:90:3D:26:80:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8xAQB9S_ifv592Yc11iUkD0mgO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/e8028c-8178-4576-aaa4-866c4b4acacb/1/bcPS2frhzYidC-Wuc4Uj2IVWIA8.roa
Signing time: Mon 23 May 2022 10:02:16 +0000
ROA not before: Mon 23 May 2022 10:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13054
IP address blocks: 193.17.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81326 (0x13dae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3101007d4bf89fbf9f7661cd75894903d2680ef
Validity
Not Before: May 23 10:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dc3d2d9fae1cd889d0be5ae738523d88556200f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:c1:9b:69:81:8c:c7:53:d5:59:32:51:2d:25:
37:ec:2e:33:8b:a3:af:98:c0:a5:7a:9a:69:70:59:
8c:a9:f3:96:f6:bd:f8:b4:85:ab:b2:f2:af:76:22:
23:d4:c5:61:b8:10:df:e2:3b:65:29:0d:87:c7:aa:
85:96:09:1d:c9:59:6b:4e:b0:83:86:42:1d:c8:aa:
29:86:1b:c5:89:b3:a8:c2:40:03:d4:48:94:5c:70:
81:fd:bd:96:c9:98:59:e3:ad:ac:cb:03:04:29:ea:
6d:66:be:44:6f:d9:5e:24:ba:02:46:c7:3f:ee:ad:
96:14:6b:46:c2:f3:bd:24:f3:f6:b7:4d:9c:b4:7f:
40:0d:62:37:cc:8d:1b:ed:1b:b7:d7:61:2a:9b:4b:
7f:aa:35:85:02:49:9a:9f:47:92:eb:bd:a9:36:1a:
b9:9d:62:37:09:ea:70:96:44:72:49:58:88:c3:69:
1f:34:33:5d:79:cc:77:72:67:e1:11:cc:36:61:8d:
5d:91:cd:f7:26:94:4a:66:ad:de:1c:39:d7:00:0d:
0c:11:5b:a4:18:61:61:2f:da:c6:ae:97:db:ed:79:
8a:b1:52:3c:e1:43:c1:a7:32:98:3d:31:7b:11:5e:
d7:36:80:0d:bc:2c:29:e7:53:21:00:49:b8:61:6f:
f6:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C3:D2:D9:FA:E1:CD:88:9D:0B:E5:AE:73:85:23:D8:85:56:20:0F
X509v3 Authority Key Identifier:
keyid:F3:10:10:07:D4:BF:89:FB:F9:F7:66:1C:D7:58:94:90:3D:26:80:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8xAQB9S_ifv592Yc11iUkD0mgO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e8028c-8178-4576-aaa4-866c4b4acacb/1/bcPS2frhzYidC-Wuc4Uj2IVWIA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e8028c-8178-4576-aaa4-866c4b4acacb/1/8xAQB9S_ifv592Yc11iUkD0mgO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.2.0/24
Signature Algorithm: sha256WithRSAEncryption
68:92:b4:87:7b:b8:74:5e:3e:2f:17:e1:96:a1:bf:fa:88:3b:
cd:83:9b:1e:47:46:57:5b:07:0b:c9:2b:00:35:36:d9:4a:0a:
e3:34:e5:07:04:cb:cf:93:b3:41:7a:54:32:43:00:50:44:58:
ca:70:1c:f5:fc:d8:a7:ed:f3:47:99:73:d4:5a:2d:fc:4d:41:
9f:dc:cf:c0:34:fb:85:10:d2:04:25:3d:11:ae:63:42:f9:38:
49:2b:0b:b2:67:46:3e:df:53:41:6f:fe:98:f1:bc:1c:a5:a5:
c7:a5:a6:01:ad:d4:12:79:af:3e:82:a4:ab:7c:af:7a:61:f0:
10:e8:88:18:5e:76:1c:32:1c:51:b9:3a:52:82:05:40:ce:26:
ba:f3:08:8e:31:6a:f6:cc:68:ee:c4:a5:bc:0a:ee:42:e3:74:
d0:91:4f:1b:78:df:3e:31:67:b1:f0:a8:0f:72:44:35:fa:67:
34:a5:ec:84:4f:95:8d:86:f2:8d:56:d6:a1:e2:ea:47:0f:44:
4e:96:31:f4:55:37:7d:0b:17:91:04:39:8f:6c:5f:b8:5a:77:
fd:b3:ef:b4:a4:ff:b8:db:c2:67:5b:76:bf:d6:b8:0f:02:7a:
f4:9c:70:ad:1a:c2:b2:da:82:5f:28:8e:51:30:ad:23:c1:aa:
f1:bb:23:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:54 2023 by rpki-client on console-ams.rpki-client.org