Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/pEtf7ooAEaGTS8i7kkCO70_YvWo.roa
File: pEtf7ooAEaGTS8i7kkCO70_YvWo.roa (raw, json)
Hash identifier: Okx73+FrbmG+yHqEoJi4ZXxtqUKRBMmXDiEeFsmSJxk=
Subject key identifier: A4:4B:5F:EE:8A:00:11:A1:93:4B:C8:BB:92:40:8E:EF:4F:D8:BD:6A
Certificate issuer: /CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Certificate serial: 0A5AC4DF
Authority key identifier: 68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/pEtf7ooAEaGTS8i7kkCO70_YvWo.roa
Signing time: Sat 01 Jan 2022 00:53:54 +0000
ROA not before: Sat 01 Jan 2022 00:53:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 193.247.148.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173720799 (0xa5ac4df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6896e763f89c720e87ce4d79f8c09d07f2fa6392
Validity
Not Before: Jan 1 00:53:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a44b5fee8a0011a1934bc8bb92408eef4fd8bd6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:44:52:84:c8:02:cc:cb:d0:4f:e8:91:13:05:
b5:9a:74:8b:dd:f6:9d:34:b0:2f:3f:98:89:36:cd:
83:33:59:fc:37:ea:03:d7:8e:93:8e:1b:e8:6a:bd:
59:35:62:1a:1a:47:81:75:6e:21:cb:0c:e4:3b:a7:
ef:09:31:48:b3:c0:54:e7:cc:ec:a7:a2:dd:8c:bf:
5c:76:8f:66:4c:d3:55:4f:ac:dd:64:91:7b:eb:9b:
23:b2:c0:86:9a:03:0d:79:36:42:db:81:bf:d0:55:
38:18:6e:3e:01:b1:31:db:1b:49:a0:fe:87:44:be:
4a:86:29:59:0a:bf:ab:45:2a:2a:a1:1d:67:1e:f6:
b5:81:0e:21:10:6e:e2:07:eb:03:a9:eb:36:f4:6a:
d1:76:46:8e:ab:52:58:0e:4d:29:ee:04:ac:11:6a:
43:03:b7:58:30:14:73:20:63:f0:66:87:78:05:80:
fe:a6:e4:6f:49:94:45:6a:52:2d:83:bc:ce:d8:d7:
2e:1b:98:da:f2:33:11:66:d3:67:77:3c:a9:a7:cb:
da:83:eb:b0:92:99:5f:a1:8b:60:4b:46:e7:db:9e:
c4:fc:de:0d:9a:b2:3a:ae:fd:80:ef:6a:9e:97:cf:
d1:c7:73:96:2c:35:16:ca:13:08:d0:9b:6d:2f:21:
c4:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:4B:5F:EE:8A:00:11:A1:93:4B:C8:BB:92:40:8E:EF:4F:D8:BD:6A
X509v3 Authority Key Identifier:
keyid:68:96:E7:63:F8:9C:72:0E:87:CE:4D:79:F8:C0:9D:07:F2:FA:63:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aJbnY_iccg6Hzk15-MCdB_L6Y5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/pEtf7ooAEaGTS8i7kkCO70_YvWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/b408d7-012c-48c3-a7ea-c8840fa85141/1/aJbnY_iccg6Hzk15-MCdB_L6Y5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.148.0/23
Signature Algorithm: sha256WithRSAEncryption
a7:4b:ec:4c:97:ff:0b:55:b4:fc:e4:28:fc:21:42:8d:14:d8:
4b:7a:16:37:df:82:80:10:6b:a8:70:66:29:f3:c7:2b:44:b8:
6f:25:9c:d7:f1:f0:2e:20:f4:9a:56:b4:31:95:24:9c:d3:d7:
54:15:37:4f:ad:d0:6d:c7:56:2c:c0:0d:78:50:b1:77:ac:11:
8d:af:71:b1:6d:79:f3:b9:97:5b:30:65:61:9e:5d:d2:31:ab:
13:96:67:20:dd:d4:07:c1:6e:7a:3e:ab:19:31:5a:1e:e4:ce:
7b:51:77:54:f6:37:3a:d1:a2:22:b1:df:6d:83:61:58:4c:67:
89:09:af:b2:e2:d3:87:cc:7a:94:cc:36:d9:dd:66:b7:ac:cf:
51:51:a7:0d:94:b2:a4:81:4e:67:86:4d:30:50:66:f6:56:77:
5d:2a:d5:c6:73:34:2b:0c:75:45:13:d2:34:ab:4d:b0:a0:d1:
2f:15:d8:f3:f9:35:34:f5:92:99:2c:43:d0:63:0b:32:1a:1b:
66:44:be:56:85:e9:58:31:1b:f9:70:e0:26:c0:ca:f7:e3:90:
0d:ff:a9:b7:a6:1d:5e:08:25:65:53:41:94:da:42:a5:62:35:
07:79:6d:6c:de:cc:39:33:f0:40:11:c9:56:41:5e:09:46:d7:
65:46:91:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:33 2024 by rpki-client on console-ams.rpki-client.org