Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/fSUfp-ZLX-GHZHJsYqzVvmFsQpQ.roa
File: fSUfp-ZLX-GHZHJsYqzVvmFsQpQ.roa (raw, json)
Hash identifier: PCFmZ00tJ81Z73gqxYrfqFXPYH3e/tdyk6fopJ+LQTQ=
Subject key identifier: 7D:25:1F:A7:E6:4B:5F:E1:87:64:72:6C:62:AC:D5:BE:61:6C:42:94
Certificate issuer: /CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Certificate serial: 2F3974
Authority key identifier: 79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/fSUfp-ZLX-GHZHJsYqzVvmFsQpQ.roa
Signing time: Tue 26 Apr 2022 07:56:36 +0000
ROA not before: Tue 26 Apr 2022 07:56:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208964
IP address blocks: 193.28.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3094900 (0x2f3974)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Validity
Not Before: Apr 26 07:56:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d251fa7e64b5fe18764726c62acd5be616c4294
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:5d:42:16:7b:55:41:7c:41:09:0d:8f:c2:e2:
4b:7b:23:fd:61:c9:f5:6a:8c:4a:c4:72:44:bb:a8:
6e:9e:34:f1:ad:d0:25:43:cc:d9:18:3a:0e:86:b7:
3c:46:85:18:b9:fc:a5:eb:20:29:21:5c:3f:96:dc:
5d:7d:4a:31:08:7e:ca:24:ca:47:f4:c8:e2:ff:5d:
6f:3a:d6:4f:56:90:10:2d:80:24:b9:d7:5c:a6:94:
81:f8:e0:08:9a:fe:66:b4:f2:c4:3a:38:15:83:03:
06:d3:d4:08:e6:5d:4e:d0:57:82:d8:4b:50:df:94:
e1:7b:24:51:f0:10:89:6b:b5:d2:75:ca:c6:9f:89:
81:65:9b:94:2d:ce:66:04:45:d5:f8:e9:b1:ff:28:
8c:50:32:d3:04:16:1e:14:70:94:ed:8c:18:aa:a8:
4e:f5:e4:4d:72:4d:3d:85:e2:78:e8:78:ac:1f:01:
53:b3:68:88:95:26:c3:14:09:62:33:c0:c7:df:7a:
b6:e0:e5:63:de:68:df:b7:15:0c:f6:66:55:f5:0a:
49:ac:fa:f9:d0:50:e1:22:b3:5a:b8:c4:c2:59:61:
c5:ac:38:82:b1:40:49:4c:34:cf:cd:81:f3:90:19:
0d:a1:da:05:5c:90:57:f9:ce:d6:3f:90:24:97:d9:
f7:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:25:1F:A7:E6:4B:5F:E1:87:64:72:6C:62:AC:D5:BE:61:6C:42:94
X509v3 Authority Key Identifier:
keyid:79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/fSUfp-ZLX-GHZHJsYqzVvmFsQpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.243.0/24
Signature Algorithm: sha256WithRSAEncryption
70:0d:82:6b:6e:97:87:ed:0e:4d:ef:bd:45:89:7f:66:12:dd:
1c:18:7a:c5:dc:fb:30:d2:b2:d7:80:fd:59:6b:f2:bf:43:c1:
5a:e6:7b:ac:3f:8a:91:ed:f2:c8:b9:ae:45:64:b7:e3:e1:e1:
00:42:99:fb:ec:2f:35:11:17:56:1f:46:a4:21:91:a9:4a:93:
5a:a6:ec:cf:db:61:58:55:7a:3d:f4:91:8c:a6:f4:59:43:3c:
df:b9:42:e8:c6:fe:4c:fd:5b:cb:38:73:aa:8f:b7:b5:30:05:
99:ef:ba:8b:af:77:8b:d2:c5:cc:39:a2:38:f7:c3:92:d8:34:
fe:30:01:ae:8c:96:a8:8c:a4:b3:77:28:79:b6:a6:e3:83:b8:
a6:cc:1b:e3:95:f1:d2:50:2d:85:ce:b9:02:73:9f:77:86:c9:
eb:ea:96:fa:64:8a:b6:67:9a:5f:49:44:42:7c:b8:6e:c4:64:
a4:f1:e3:1e:ef:ea:2e:3d:1f:a7:f3:16:d2:6d:4c:04:1b:f9:
2c:0e:f4:a0:b7:f1:34:cb:50:e6:17:3c:50:14:54:d5:47:22:
30:f7:46:e3:95:25:d7:3f:42:24:f0:12:2f:8d:7f:2c:45:bd:
ab:98:c6:7a:9c:c0:87:a0:90:b5:72:32:28:1b:7a:91:2d:f7:
14:8a:48:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-ams.rpki-client.org