Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/7rqfGJTXacuyHyVkyds6Dm-AHKo.roa
File: 7rqfGJTXacuyHyVkyds6Dm-AHKo.roa (raw, json)
Hash identifier: JM5PDcm90Ok0DZtbbCDowYww8nvRyTB4vgYiHOQinyQ=
Subject key identifier: EE:BA:9F:18:94:D7:69:CB:B2:1F:25:64:C9:DB:3A:0E:6F:80:1C:AA
Certificate issuer: /CN=fba0a564634f42e82cf38388991c9e7e40052a20
Certificate serial: 949266
Authority key identifier: FB:A0:A5:64:63:4F:42:E8:2C:F3:83:88:99:1C:9E:7E:40:05:2A:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6ClZGNPQugs84OImRyefkAFKiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/7rqfGJTXacuyHyVkyds6Dm-AHKo.roa
Signing time: Sat 01 Jan 2022 00:51:15 +0000
ROA not before: Sat 01 Jan 2022 00:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.3.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9736806 (0x949266)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fba0a564634f42e82cf38388991c9e7e40052a20
Validity
Not Before: Jan 1 00:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeba9f1894d769cbb21f2564c9db3a0e6f801caa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b4:73:2b:61:54:45:1e:61:f2:ac:6e:5b:90:
0e:0b:60:79:e4:0a:8a:b6:b1:bb:16:b2:6c:fd:2b:
75:91:ba:e8:eb:da:08:7e:28:4a:60:a4:9d:f0:7a:
b3:06:64:77:51:e9:34:65:a5:e9:44:22:4b:80:d8:
88:1c:a2:6e:98:34:c6:b4:89:f9:af:5a:08:01:f0:
e8:91:38:95:9a:41:59:ad:7c:8f:cb:38:ba:54:0b:
80:60:b2:d9:8c:f2:37:5a:82:a8:a8:58:9d:92:d3:
12:9d:d9:bf:39:fb:f3:f3:ee:2c:79:cc:b0:68:c2:
f9:8a:7c:76:67:f2:93:7e:46:9f:b0:b0:a1:9c:0f:
d1:bb:1c:5f:d9:36:bb:9f:a7:49:81:a2:a3:b3:05:
04:92:97:d7:64:18:67:4a:3f:75:a6:bc:e5:1c:8a:
9d:17:5a:53:ee:bc:cd:5b:70:85:e1:f5:fa:03:79:
02:9d:8e:d8:e7:99:6c:6d:03:52:a0:44:b1:ff:79:
1c:9b:e1:7e:5e:08:4d:24:be:ed:2b:e9:fc:92:a4:
9a:c9:21:e2:ba:05:99:34:bc:c4:8e:02:b3:c9:fe:
31:c4:2c:6a:43:8d:98:75:ee:6e:96:80:bb:2a:d6:
45:30:7e:9e:5a:81:bd:b2:45:1f:a3:08:85:29:5c:
8f:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:BA:9F:18:94:D7:69:CB:B2:1F:25:64:C9:DB:3A:0E:6F:80:1C:AA
X509v3 Authority Key Identifier:
keyid:FB:A0:A5:64:63:4F:42:E8:2C:F3:83:88:99:1C:9E:7E:40:05:2A:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6ClZGNPQugs84OImRyefkAFKiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/7rqfGJTXacuyHyVkyds6Dm-AHKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0b6154-b55e-4dd7-90a5-5526987a0745/1/1-6ClZGNPQugs84OImRyefkAFKiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.175.0/24
Signature Algorithm: sha256WithRSAEncryption
68:2e:43:12:eb:fb:98:24:0a:a3:40:c8:25:f0:42:9c:f2:ad:
24:76:ac:26:b7:d7:4f:7b:57:02:00:ef:8c:71:4f:96:62:2b:
22:8f:58:a6:bb:2c:e2:83:1e:37:26:7f:4a:83:eb:a0:1e:d5:
0e:2a:e8:a8:df:52:20:76:a4:91:6e:02:c8:dc:49:cb:60:1a:
b3:6b:94:53:79:20:c5:46:eb:56:99:d0:cd:ab:05:b9:76:6a:
f3:c4:3a:1e:4c:c8:b0:4a:ac:88:c6:f2:66:a1:5a:fe:35:33:
f2:af:63:b1:4a:57:d6:cf:3e:56:9e:24:19:af:f6:bb:d3:15:
f8:eb:9a:65:04:79:70:5c:57:66:ea:fc:11:bf:90:b7:fb:a9:
be:46:c1:c4:5e:fd:c7:bf:51:f7:c0:92:85:b0:2d:8d:d8:d8:
95:e4:2a:96:7a:0d:4e:8d:38:3f:0a:60:7f:cb:6e:fe:3d:e6:
73:8f:00:3a:29:c8:f1:70:5a:b5:d2:06:dd:06:49:00:3d:31:
43:43:17:da:43:4b:a9:4f:2b:94:7f:97:76:26:99:c7:aa:f8:
1c:ca:23:7f:01:21:2e:26:c6:20:cc:ab:a7:93:af:c5:14:8b:
36:e6:26:ca:15:05:a1:53:10:4e:f6:4c:25:23:4e:8a:60:26:
3b:6c:cf:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:58 2023 by rpki-client on console-ams.rpki-client.org