Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/Ao6lAK4aTqTO7FftxPNt7cwF_is.roa
File: Ao6lAK4aTqTO7FftxPNt7cwF_is.roa (raw, json)
Hash identifier: DrGgatGabIZ1ORES0p7cBXx2JgKsWecGoP6QC2XXH8Y=
Subject key identifier: 02:8E:A5:00:AE:1A:4E:A4:CE:EC:57:ED:C4:F3:6D:ED:CC:05:FE:2B
Certificate issuer: /CN=e4871d8f2c26ea71ae5c13c8454a7bd318719184
Certificate serial: 015C28
Authority key identifier: E4:87:1D:8F:2C:26:EA:71:AE:5C:13:C8:45:4A:7B:D3:18:71:91:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Icdjywm6nGuXBPIRUp70xhxkYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/Ao6lAK4aTqTO7FftxPNt7cwF_is.roa
Signing time: Sat 05 Mar 2022 20:08:20 +0000
ROA not before: Sat 05 Mar 2022 20:08:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211247
IP address blocks: 193.17.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89128 (0x15c28)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4871d8f2c26ea71ae5c13c8454a7bd318719184
Validity
Not Before: Mar 5 20:08:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=028ea500ae1a4ea4ceec57edc4f36dedcc05fe2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1c:79:dd:c8:56:87:d0:e8:92:d8:09:6a:0b:
24:d0:6c:38:df:4c:49:36:37:49:26:fa:52:9b:73:
2c:09:ba:a0:e4:37:98:95:29:e4:98:d8:33:dc:a6:
45:da:45:f1:ff:b1:d0:98:10:c1:59:b6:1f:ee:d0:
66:1e:04:4d:5f:78:fd:a2:05:16:dc:95:af:15:66:
bd:a6:e2:59:ae:94:54:26:60:88:b1:b9:d6:5f:f5:
21:22:95:47:d6:39:ba:3c:e2:e7:23:3a:28:c2:b8:
31:d2:77:1e:2b:80:30:13:d1:46:ff:f2:70:7b:3f:
99:de:13:05:d8:59:93:99:4c:e9:77:7e:01:ce:78:
5c:2c:21:b3:51:88:95:40:c6:79:73:b9:33:c0:90:
5c:d8:65:11:bd:c9:08:55:2e:e4:dd:db:b8:0c:7e:
ee:a5:0d:72:17:84:6b:fc:3b:28:34:14:53:84:1e:
1a:54:e2:92:a4:ed:02:a6:3f:c3:21:2a:a6:90:e3:
9a:fd:f8:cc:fa:85:a2:19:a9:ca:a6:0e:2a:f5:68:
7e:72:33:71:39:5c:79:98:bf:15:40:10:07:1c:8b:
d3:79:50:d6:94:15:8d:84:c3:26:d1:65:f6:d0:6d:
d9:ea:fd:ba:74:8b:b4:d3:b6:30:7c:ce:7b:7e:ed:
74:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8E:A5:00:AE:1A:4E:A4:CE:EC:57:ED:C4:F3:6D:ED:CC:05:FE:2B
X509v3 Authority Key Identifier:
keyid:E4:87:1D:8F:2C:26:EA:71:AE:5C:13:C8:45:4A:7B:D3:18:71:91:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Icdjywm6nGuXBPIRUp70xhxkYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/Ao6lAK4aTqTO7FftxPNt7cwF_is.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/34fe2e-26d6-455d-8778-f905a83bd389/1/5Icdjywm6nGuXBPIRUp70xhxkYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.17.213.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:80:ca:1e:c6:fc:da:30:20:ff:61:42:bf:9a:e5:1b:cd:b9:
2f:83:01:5f:e8:a9:1a:fd:12:83:27:ae:a3:a6:83:48:07:c9:
39:ca:a1:b3:8c:06:da:16:db:10:79:7f:9e:3d:a9:fc:7e:a3:
b9:27:7d:a7:cf:68:04:24:da:5c:c7:32:c2:0f:1c:c9:7a:d4:
09:d2:dc:6f:0c:77:f3:35:69:61:97:8a:74:86:0a:72:a7:c8:
e6:37:30:6a:50:58:2c:dc:9f:31:f0:b3:b6:1d:57:1f:67:e1:
68:bb:fd:d2:c1:c5:b3:d5:0f:56:9e:e3:ac:bd:e3:4b:97:1d:
43:44:94:30:bd:83:6d:1b:93:72:94:6f:8d:a9:69:3c:65:78:
9f:87:57:3d:c6:dc:fc:09:ee:c3:9e:60:08:76:29:d4:e8:e1:
c0:48:bc:16:14:e6:5c:33:13:64:1d:49:d0:20:09:4c:a1:98:
93:ba:0f:b5:93:09:db:0c:8b:09:eb:bb:aa:ed:ab:00:d2:ac:
88:47:24:76:6f:a9:82:72:65:87:fc:0c:cb:da:32:46:4d:9c:
7e:2a:14:74:90:8e:50:4f:60:b2:1d:22:83:4f:25:5f:b0:13:
51:9e:c1:b6:b7:c7:29:db:4c:0a:29:61:1f:f1:38:80:16:58:
24:3b:02:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:03 2023 by rpki-client on console-ams.rpki-client.org