Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/cc48f4-0d93-4b69-8a4f-8724ed5e903a/1/XkfDT7R1cRp_KEgZiWYQ06ebrfc.roa
File: XkfDT7R1cRp_KEgZiWYQ06ebrfc.roa (raw, json)
Hash identifier: f+Kej4HYTXc3c73BQf7Yc1kpi4gCHx/0/5OvOmom4xI=
Subject key identifier: 5E:47:C3:4F:B4:75:71:1A:7F:28:48:19:89:66:10:D3:A7:9B:AD:F7
Certificate issuer: /CN=f3e36222ccbc6c7221360540bab3a9dba9f237a0
Certificate serial: 044530FE
Authority key identifier: F3:E3:62:22:CC:BC:6C:72:21:36:05:40:BA:B3:A9:DB:A9:F2:37:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8-NiIsy8bHIhNgVAurOp26nyN6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/cc48f4-0d93-4b69-8a4f-8724ed5e903a/1/XkfDT7R1cRp_KEgZiWYQ06ebrfc.roa
Signing time: Sat 01 Jan 2022 11:05:10 +0000
ROA not before: Sat 01 Jan 2022 11:05:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21396
IP address blocks: 193.223.78.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71643390 (0x44530fe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3e36222ccbc6c7221360540bab3a9dba9f237a0
Validity
Not Before: Jan 1 11:05:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e47c34fb475711a7f284819896610d3a79badf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:ab:55:de:92:96:9c:e7:52:37:6d:60:20:be:
a6:74:49:ee:ed:77:48:80:b9:91:12:05:67:24:b5:
ca:ff:84:ec:6f:25:c9:ac:9f:a4:67:20:89:77:31:
bd:bc:3d:4e:cd:34:bf:6e:8c:9e:51:1f:d4:19:4b:
0b:87:6f:d6:cd:15:2b:30:a8:51:1d:9d:9b:06:f8:
b1:cc:cf:80:b2:1b:ca:d6:f7:5d:fe:35:0a:a3:6c:
0d:99:de:17:85:12:1e:f3:4f:f5:78:a3:f6:cc:46:
a2:cc:11:f1:5b:be:55:e0:87:22:27:78:0d:61:68:
8a:72:8f:29:fb:7d:47:94:0f:c1:ad:6a:f8:87:23:
43:e3:fe:e9:47:87:98:0a:ab:4b:53:04:4c:99:34:
21:a7:23:ad:89:e7:51:e1:90:9d:3d:5e:9c:2f:1b:
31:c4:27:d4:90:22:26:31:e4:30:a1:f9:22:c3:08:
75:f6:32:6f:90:23:55:37:43:7d:6c:b6:2f:95:1d:
11:5a:0b:8f:95:23:58:9b:49:4a:f6:a6:bc:56:ee:
10:90:a7:b1:c5:eb:18:d0:8b:f5:94:ce:9b:c5:aa:
22:ef:3a:f3:fe:8d:20:29:d2:64:7f:3b:78:22:33:
3d:55:c2:10:f5:7e:c9:f5:26:82:da:91:32:ce:b4:
23:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:47:C3:4F:B4:75:71:1A:7F:28:48:19:89:66:10:D3:A7:9B:AD:F7
X509v3 Authority Key Identifier:
keyid:F3:E3:62:22:CC:BC:6C:72:21:36:05:40:BA:B3:A9:DB:A9:F2:37:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8-NiIsy8bHIhNgVAurOp26nyN6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cc48f4-0d93-4b69-8a4f-8724ed5e903a/1/XkfDT7R1cRp_KEgZiWYQ06ebrfc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/cc48f4-0d93-4b69-8a4f-8724ed5e903a/1/8-NiIsy8bHIhNgVAurOp26nyN6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.223.78.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:da:00:c7:c9:99:fc:70:93:00:c2:9b:90:0d:53:23:09:af:
e3:87:b6:f4:6b:4e:da:7d:95:a6:42:b3:5d:59:d7:3e:ab:58:
c5:ad:0e:e0:3f:eb:5a:88:25:80:f3:16:bc:96:38:d7:dd:c4:
bb:2e:0b:20:2b:0d:eb:70:9c:9b:8d:23:53:1d:d4:9d:e5:5a:
0e:79:a9:3a:a6:b6:b9:11:36:dd:f8:cb:b0:18:18:40:86:12:
db:6c:83:3a:26:44:7d:bf:dd:12:b2:a8:d8:9d:79:41:6d:cf:
44:c1:0c:64:ff:fe:b5:f1:c8:dd:7b:76:71:19:99:f6:ec:d6:
a6:66:e6:dd:65:4b:a1:76:ea:13:ae:3a:c4:79:22:9b:6f:24:
a2:c9:24:90:e0:0e:fb:3c:d8:4f:15:f3:a5:0c:cb:da:82:5b:
1f:6c:98:f6:fd:69:15:0c:3a:42:ea:a3:8c:b0:8b:48:cc:a3:
95:ba:29:09:66:d8:f5:b2:c9:84:4b:ac:1b:11:79:f1:cd:96:
b6:1d:26:ae:06:48:cb:90:41:65:fb:09:88:9d:dd:31:e0:63:
9a:38:1e:ac:87:35:e9:57:ad:4f:10:cc:21:bc:aa:6c:63:51:
81:1f:6a:8f:6f:34:c9:25:46:06:47:5b:ff:2f:a5:d2:14:f5:
d4:32:a3:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-ams.rpki-client.org