Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/F4aOiqwSeVt0vYImxxLQzCfHG4o.roa
File: F4aOiqwSeVt0vYImxxLQzCfHG4o.roa (raw, json)
Hash identifier: 5d+74vg3g91jB+YdnvpyiIz15F4wlgKudjhm02bbcdo=
Subject key identifier: 17:86:8E:8A:AC:12:79:5B:74:BD:82:26:C7:12:D0:CC:27:C7:1B:8A
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1ABDDF8C
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/F4aOiqwSeVt0vYImxxLQzCfHG4o.roa
Signing time: Fri 22 Apr 2022 08:22:16 +0000
ROA not before: Fri 22 Apr 2022 08:22:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42089
IP address blocks: 193.230.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448651148 (0x1abddf8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Apr 22 08:22:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17868e8aac12795b74bd8226c712d0cc27c71b8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b3:56:7c:85:01:66:a0:d1:38:c8:89:9e:cc:
cb:c7:f9:d5:ee:8c:9b:2f:a1:b3:f5:3e:68:72:9c:
27:b6:91:4c:c9:fb:b9:c2:bb:99:e4:a9:ef:75:be:
22:76:36:b5:a8:68:0d:ec:3e:7a:29:57:ee:b0:10:
b8:10:0c:9d:ce:f1:70:3e:b6:55:48:f9:6e:6d:4f:
33:1e:8f:49:fa:ec:15:3e:ff:be:fa:f2:fe:4e:1d:
39:10:7d:85:96:19:68:6e:40:f1:08:ba:83:3e:35:
4f:8f:a9:a8:4a:29:df:4a:51:62:39:eb:70:39:bb:
a1:f3:ab:6f:53:d6:e1:84:37:31:ad:6d:95:13:96:
48:a1:e3:3e:3a:86:e8:d4:0f:f4:cf:28:b2:66:93:
85:7a:b5:16:85:d3:b3:f5:a8:4f:37:ae:c5:7f:59:
7f:0d:28:24:52:48:ae:7e:14:50:f9:18:31:a9:ff:
23:23:6d:dc:f8:1f:81:5c:42:f3:f8:da:e0:c3:24:
2e:ab:c5:14:70:7a:4d:fc:6a:22:48:a5:d4:7e:db:
e1:64:e3:12:f7:8b:1b:21:3f:cd:e0:b8:05:3c:5d:
86:c1:e5:c9:fd:2f:b6:4b:8b:65:25:78:04:e0:97:
91:f1:5e:e0:52:db:17:be:5e:7d:ee:ac:58:99:f8:
52:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:86:8E:8A:AC:12:79:5B:74:BD:82:26:C7:12:D0:CC:27:C7:1B:8A
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/F4aOiqwSeVt0vYImxxLQzCfHG4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.230.150.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:08:eb:16:34:5f:e1:7b:b6:55:59:a6:ce:40:ab:5d:67:b1:
0e:4a:71:29:de:0a:d6:42:17:fa:18:33:94:df:b9:8c:90:4d:
bb:77:ef:f8:6a:e7:2a:5c:b9:88:4c:06:63:ab:8e:c1:26:9d:
31:db:ff:e2:24:36:41:f4:f0:29:99:b2:95:55:21:64:3c:c7:
47:f2:0d:9d:d8:56:93:bb:cf:58:3a:1e:2a:f5:44:29:f7:c5:
32:65:5d:67:97:a7:b8:bc:46:d5:cf:a7:d7:ac:7a:39:51:d3:
1b:02:bf:ae:45:14:3a:30:ec:5b:9d:94:7a:b6:a7:18:ea:41:
82:6d:ab:6d:14:0d:dc:46:d4:ac:69:7e:3b:b9:fc:87:a7:03:
ee:e2:69:fb:37:cf:e8:e7:50:ae:47:2f:62:bb:46:d3:ab:8c:
c4:17:5e:b3:d7:41:ce:48:49:4b:68:e7:a5:6b:44:e4:8d:c8:
1b:03:1c:c1:e2:27:53:91:41:19:b5:33:bb:14:e7:c0:eb:66:
04:d7:3b:f5:b0:2e:5d:6b:5b:e8:36:c9:c4:d5:35:4f:0a:21:
f1:f8:23:12:2b:d4:f6:f5:26:eb:b2:06:e1:32:30:05:68:7a:
1c:7d:5b:0d:5d:9f:9d:6d:46:b9:e4:3f:ae:53:78:ef:6c:89:
bc:8e:1f:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org