Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/IOqU6N3uwNWA907xY75Q4pgA1Qk.roa
File: IOqU6N3uwNWA907xY75Q4pgA1Qk.roa (raw, json)
Hash identifier: WMlS3fBUwqrHSbY5fhYDHD52MtBM1y4lFKWOjTcNovc=
Subject key identifier: 20:EA:94:E8:DD:EE:C0:D5:80:F7:4E:F1:63:BE:50:E2:98:00:D5:09
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AFC98C7
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/IOqU6N3uwNWA907xY75Q4pgA1Qk.roa
Signing time: Thu 05 May 2022 07:25:24 +0000
ROA not before: Thu 05 May 2022 07:25:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44649
IP address blocks: 193.226.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 452761799 (0x1afc98c7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 5 07:25:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20ea94e8ddeec0d580f74ef163be50e29800d509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c8:fd:20:0e:df:c3:9a:93:96:56:36:eb:38:
41:4b:2b:d8:2c:bf:1f:5e:4b:d9:74:c6:e2:c6:85:
6e:7e:0e:5d:0e:2b:8e:89:c9:bb:99:0f:94:5a:92:
2b:13:a0:99:2e:82:4a:0d:b1:98:e5:25:84:26:6a:
f8:78:34:5d:a1:a5:82:26:bf:d4:7d:5b:d6:92:9f:
d7:de:6e:fe:d1:83:41:e8:7a:67:33:d9:c2:65:32:
81:67:70:94:f6:d2:0a:b1:f9:1f:fe:84:14:ca:60:
62:52:a4:d9:34:c6:fd:59:37:9e:2e:ce:fb:65:ee:
81:46:f3:49:21:4a:ed:a8:f0:89:5c:e9:ac:72:e6:
84:8f:04:d7:9d:78:30:8c:0f:56:e5:5f:0f:39:92:
27:e7:42:b3:ff:e9:e3:8c:31:1f:93:00:c9:a6:68:
09:7f:36:f7:57:58:f6:bc:85:1e:b8:60:d9:46:01:
ca:77:95:2b:37:5f:df:ee:f0:c2:48:2c:77:30:a3:
f7:a9:5d:94:6b:bc:28:9c:01:a9:87:75:68:ce:cd:
f1:75:e9:b6:87:c4:3c:5f:cc:4e:c2:01:1e:c8:6d:
66:c0:d3:d5:83:00:f6:c0:97:44:4e:df:1f:48:88:
fc:02:47:9f:bb:8c:a3:71:b0:46:c3:8a:24:0b:b2:
7e:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:EA:94:E8:DD:EE:C0:D5:80:F7:4E:F1:63:BE:50:E2:98:00:D5:09
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/IOqU6N3uwNWA907xY75Q4pgA1Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.226.123.0/24
Signature Algorithm: sha256WithRSAEncryption
79:46:f9:1d:7c:a6:90:5e:0e:1a:e4:04:8b:cf:43:d6:8a:31:
17:a4:63:3b:a5:78:97:c0:95:f0:1b:bc:e8:c4:31:22:c1:44:
d3:64:ba:50:72:9c:2e:3e:3a:38:27:1b:46:98:fe:7b:62:fc:
40:3a:1a:8d:6e:9e:b2:c2:db:3c:33:84:5f:44:67:fe:05:44:
7a:41:27:fb:e5:2c:2b:e0:e6:bd:fa:4d:35:d3:1b:4f:28:55:
30:ca:84:f8:20:5c:03:2a:d1:6d:95:a9:e5:bb:a2:c5:6e:e3:
82:1f:0f:23:2d:90:b9:dc:38:8b:20:6d:34:a3:e2:a0:78:34:
06:fb:66:9a:24:ce:f7:56:bb:53:e6:12:f5:1f:b3:63:86:29:
c9:e4:64:1c:1d:85:17:68:da:82:96:d6:2d:fa:4c:ad:83:dd:
b8:83:56:22:c0:6f:f9:c0:65:b6:e4:67:22:18:94:05:9b:56:
df:81:48:d6:ae:a4:26:25:51:e1:4e:18:8d:97:e2:14:12:d2:
71:73:b7:0e:71:a4:c3:89:51:17:d0:b4:b0:28:33:b5:80:a7:
44:0e:ad:a3:fc:cf:8c:f5:c5:b9:4b:64:4e:19:91:6e:b9:0a:
be:61:c1:80:94:73:75:95:6a:e9:94:74:a9:59:ec:77:7f:96:
4a:81:8d:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:28 2023 by rpki-client on console-fra.rpki-client.org