Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/1-apopjrwHqYd7FGEeMnLX-zBY6M.roa
File: 1-apopjrwHqYd7FGEeMnLX-zBY6M.roa (raw, json)
Hash identifier: 2Q9QOZNc3vJzI0+GFeKq7LD8jl6ghLzy3C0ICYPzoAo=
Subject key identifier: F9:AA:68:A6:3A:F0:1E:A6:1D:EC:51:84:78:C9:CB:5F:EC:C1:63:A3
Certificate issuer: /CN=a0e709fe6c5018b64aabf1540e73d9eed49db0e2
Certificate serial: EE57D3
Authority key identifier: A0:E7:09:FE:6C:50:18:B6:4A:AB:F1:54:0E:73:D9:EE:D4:9D:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oOcJ_mxQGLZKq_FUDnPZ7tSdsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/1-apopjrwHqYd7FGEeMnLX-zBY6M.roa
Signing time: Sat 01 Jan 2022 03:56:43 +0000
ROA not before: Sat 01 Jan 2022 03:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.201.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15620051 (0xee57d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0e709fe6c5018b64aabf1540e73d9eed49db0e2
Validity
Not Before: Jan 1 03:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9aa68a63af01ea61dec518478c9cb5fecc163a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:d7:09:ef:3e:5e:e7:dc:82:75:ab:b0:6b:59:
4e:ef:80:d5:77:af:fd:05:c5:04:bd:b6:2e:15:d3:
9e:ec:f6:b5:f9:a4:9d:d2:07:c7:d7:cb:0f:51:3c:
f2:93:35:70:40:fc:4d:72:fa:95:21:2e:a7:50:58:
bd:9e:d3:02:cd:a6:4b:73:54:e9:fd:96:36:dd:8e:
ac:83:e4:aa:a1:9f:41:72:8e:76:fd:35:47:0a:f2:
ad:76:06:21:51:32:75:52:df:d0:59:c5:5e:aa:71:
4f:51:44:17:92:fd:25:4a:b6:52:90:55:c7:9f:21:
f3:01:9a:0b:61:24:ad:23:79:65:68:49:09:dc:c5:
14:9e:d2:3b:33:bd:0f:9f:23:30:ea:db:af:16:cb:
b9:1b:70:16:09:1f:0d:b4:e8:96:49:8a:24:29:a7:
77:e5:23:15:01:71:f1:89:47:40:d5:ae:a0:77:a4:
1f:ba:f4:c9:a3:22:9a:2b:0e:7c:c0:1d:c0:cd:90:
d2:13:fa:9e:53:28:f2:b3:f2:ee:5a:cb:29:cf:e2:
ad:00:b9:3c:7a:54:2e:36:60:de:c4:4c:0d:dc:ab:
b4:93:fe:51:05:43:30:4b:f4:eb:39:05:df:4b:f4:
d3:72:0f:a3:3e:d2:cb:68:9f:cb:72:f0:0f:bd:3e:
ac:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:AA:68:A6:3A:F0:1E:A6:1D:EC:51:84:78:C9:CB:5F:EC:C1:63:A3
X509v3 Authority Key Identifier:
keyid:A0:E7:09:FE:6C:50:18:B6:4A:AB:F1:54:0E:73:D9:EE:D4:9D:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oOcJ_mxQGLZKq_FUDnPZ7tSdsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/1-apopjrwHqYd7FGEeMnLX-zBY6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/097364-4724-44d2-bc11-91949b389e42/1/oOcJ_mxQGLZKq_FUDnPZ7tSdsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.14.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:5c:7e:d7:26:a8:e2:5c:d1:7f:e1:92:23:69:44:fe:47:76:
a8:a6:82:20:bb:db:21:88:62:0f:7a:8f:7a:42:c1:94:85:0a:
73:f3:b5:86:a0:02:c7:76:35:2a:8c:bf:98:d8:45:ac:09:cb:
c7:4f:c4:9d:b5:72:07:e6:ad:c8:2e:9c:56:ea:34:60:46:c0:
36:70:b4:71:51:72:21:63:b9:1a:6f:50:27:f0:6b:1c:82:03:
4f:45:3f:c2:df:b8:cc:12:ae:4e:bc:b1:0c:44:20:a1:da:8d:
48:b9:cc:ec:6a:93:19:22:79:81:9b:2f:c2:5b:ec:2e:ba:18:
57:ca:4c:a0:8d:d0:e5:a7:e4:9d:82:d3:8f:b9:9e:f6:0a:58:
d6:39:71:47:0b:f4:a1:ca:cc:a7:29:c7:7f:13:ea:22:c3:9d:
a3:a4:14:87:20:a7:f1:e4:6b:0a:fe:7d:aa:56:3e:2f:00:25:
4b:3e:94:ae:18:bb:2b:33:3f:ee:d6:19:c0:b2:a6:9f:42:70:
d4:2b:72:0b:af:d5:dc:19:c0:c8:e7:75:8e:99:ee:89:29:63:
b7:7b:78:5d:d8:b3:4c:1f:96:d6:20:0d:9e:c8:93:d2:13:5f:
d8:5b:fd:27:b6:d0:32:a2:05:21:74:c8:c2:5d:b8:8b:68:90:
96:ad:bf:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:02 2023 by rpki-client on console-fra.rpki-client.org