Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/ff6052-fa80-44b8-afca-6e2dea03d596/1/LeHk4GfHWNSp6Id9HQmwNAGKM9Q.roa
File: LeHk4GfHWNSp6Id9HQmwNAGKM9Q.roa (raw, json)
Hash identifier: EvA56/A5pSx7eAustfouWqpq9tFL5+OqkXnXiirzaHo=
Subject key identifier: 2D:E1:E4:E0:67:C7:58:D4:A9:E8:87:7D:1D:09:B0:34:01:8A:33:D4
Certificate issuer: /CN=7de963ece2f0ba9f7749aca385420f9d702eaa8b
Certificate serial: 613A1A
Authority key identifier: 7D:E9:63:EC:E2:F0:BA:9F:77:49:AC:A3:85:42:0F:9D:70:2E:AA:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/felj7OLwup93SayjhUIPnXAuqos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/ff6052-fa80-44b8-afca-6e2dea03d596/1/LeHk4GfHWNSp6Id9HQmwNAGKM9Q.roa
Signing time: Sat 01 Jan 2022 00:55:49 +0000
ROA not before: Sat 01 Jan 2022 00:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8412
IP address blocks: 193.104.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6371866 (0x613a1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7de963ece2f0ba9f7749aca385420f9d702eaa8b
Validity
Not Before: Jan 1 00:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2de1e4e067c758d4a9e8877d1d09b034018a33d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2b:66:f4:01:7d:41:2d:dd:fa:77:a0:f6:5c:
d3:65:de:7e:ee:87:94:b4:c4:ad:c8:6f:1b:6b:b2:
a0:9d:04:1c:9f:13:b4:f6:3b:db:a8:7e:be:98:05:
c4:c5:72:cb:b3:ee:35:da:8c:e2:c6:69:29:a5:ec:
a4:14:55:77:0e:cf:60:be:ec:dd:09:34:1e:76:d9:
ac:15:69:48:62:74:f1:27:6b:4e:08:20:89:f8:60:
42:23:99:6e:75:b4:7b:61:f5:29:3b:7f:59:ed:f9:
e3:02:4b:cb:48:27:56:4e:18:fe:a7:3e:6e:8d:29:
d1:29:18:63:64:70:26:39:88:4c:fb:43:cb:ea:00:
a3:99:b6:4b:5f:a1:10:94:b4:c3:0c:4a:03:fd:ef:
63:10:4e:68:92:a3:44:c0:04:ac:2a:3e:8e:1d:82:
1d:35:a6:3a:70:38:7a:cf:df:14:ce:cb:6d:43:99:
15:5f:a1:8b:0d:7b:dc:74:93:f8:3c:62:c3:71:5e:
cd:48:db:cb:75:93:3a:d9:fd:f3:bf:7d:f6:79:0f:
e5:aa:74:01:db:3f:f8:36:52:f7:8d:73:50:3b:6b:
4e:6a:f8:d2:b5:38:2e:a0:7f:57:18:2b:32:c2:08:
6a:ca:43:61:7e:51:b9:7a:0b:40:56:68:f1:c6:6c:
0e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:E1:E4:E0:67:C7:58:D4:A9:E8:87:7D:1D:09:B0:34:01:8A:33:D4
X509v3 Authority Key Identifier:
keyid:7D:E9:63:EC:E2:F0:BA:9F:77:49:AC:A3:85:42:0F:9D:70:2E:AA:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/felj7OLwup93SayjhUIPnXAuqos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/ff6052-fa80-44b8-afca-6e2dea03d596/1/LeHk4GfHWNSp6Id9HQmwNAGKM9Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/ff6052-fa80-44b8-afca-6e2dea03d596/1/felj7OLwup93SayjhUIPnXAuqos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.1.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:22:f0:c3:e6:29:c6:bf:9f:55:7a:d3:64:20:d4:3e:28:ed:
72:37:5e:b7:df:1b:51:a9:16:e9:c1:24:b3:51:3c:d1:2d:f2:
84:01:54:e4:d3:00:94:d6:d4:57:3a:41:9d:cd:3f:19:44:f8:
e7:7e:27:41:f8:3c:b0:37:ea:a2:9d:b2:ca:df:85:b4:87:36:
71:54:5d:a3:be:af:c7:08:e7:51:f6:b0:43:7b:4e:b0:68:10:
f0:a0:5d:ef:dd:f1:6b:7b:e6:37:24:70:95:7d:b9:7d:09:76:
38:b8:0d:b4:19:69:1a:04:03:6b:13:69:07:9f:a4:1e:df:16:
be:b4:9d:50:26:6b:28:36:44:65:93:77:17:cf:47:76:85:04:
c9:d6:f0:f1:12:ab:43:a7:fd:94:3a:9a:93:ba:da:22:09:6e:
0b:22:02:16:99:34:f1:ee:41:37:cb:f1:1d:6d:11:96:e5:f2:
5e:2a:8a:76:de:2a:a7:06:5f:2f:77:48:3a:f7:77:b1:56:75:
14:7d:aa:98:82:e8:b1:67:e3:3e:86:76:94:fc:17:06:d4:34:
a7:a0:99:ec:13:32:f0:43:88:e3:cd:62:e3:f6:ab:d7:bd:f5:
28:7d:81:e2:7f:d6:0c:bf:02:ca:c7:94:ec:66:5f:0c:22:ba:
76:eb:11:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:22 2023 by rpki-client on console-ams.rpki-client.org