Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/c3d10e-f4ab-4f08-956c-3cadec46e5c3/1/G_8BHjcFr_BuC2c1l3EdgZ4Q-kM.roa
File: G_8BHjcFr_BuC2c1l3EdgZ4Q-kM.roa (raw, json)
Hash identifier: ODfPYKjPEq2KU0TkVvy0OeTfirYTzB/hlk0DJCjehHo=
Subject key identifier: 1B:FF:01:1E:37:05:AF:F0:6E:0B:67:35:97:71:1D:81:9E:10:FA:43
Certificate issuer: /CN=e356f5c23ccec64640685e44d59bc4b6d44daab9
Certificate serial: 018562564EE0BE1590BCDC34C9EAA2347970
Authority key identifier: E3:56:F5:C2:3C:CE:C6:46:40:68:5E:44:D5:9B:C4:B6:D4:4D:AA:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/41b1wjzOxkZAaF5E1ZvEttRNqrk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/c3d10e-f4ab-4f08-956c-3cadec46e5c3/1/G_8BHjcFr_BuC2c1l3EdgZ4Q-kM.roa
Signing time: Fri 30 Dec 2022 09:21:41 +0000
ROA not before: Fri 30 Dec 2022 09:21:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35500
IP address blocks: 193.47.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:56:4e:e0:be:15:90:bc:dc:34:c9:ea:a2:34:79:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e356f5c23ccec64640685e44d59bc4b6d44daab9
Validity
Not Before: Dec 30 09:21:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bff011e3705aff06e0b673597711d819e10fa43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:eb:e8:b9:06:38:f1:c7:7d:72:e7:86:21:6a:
3f:68:4d:1d:ee:4a:3e:ec:a5:d3:4d:2f:f7:6c:c2:
97:da:f7:04:29:1b:d5:b0:d6:8e:bb:1f:47:28:2e:
45:85:69:4f:ba:b3:05:27:fd:4b:3c:2d:28:6b:a2:
aa:d2:c4:87:2a:17:58:e9:47:40:d6:aa:5f:e5:a8:
26:ab:3b:a2:24:80:22:d1:f9:6e:9d:c9:6e:cf:cf:
11:c4:91:ed:2e:4c:65:5d:1d:b5:a9:17:37:d3:d7:
94:b6:9d:83:01:5a:0e:3d:96:0d:8a:48:4c:60:ed:
cd:58:13:c0:3f:be:ab:5e:26:bd:00:d4:6a:c1:2b:
57:91:6a:34:c2:f8:8a:b9:d4:27:2a:3c:8a:72:29:
20:20:36:ae:ab:da:41:6c:b0:ce:e3:5d:6b:9c:d0:
78:40:13:5a:55:70:05:af:ec:16:8b:ec:2a:52:b6:
b9:68:9a:55:c1:9e:44:5a:64:94:3a:94:d1:bd:37:
04:a3:5e:3f:24:97:00:b7:37:aa:59:c2:b7:d1:3c:
ea:1a:31:cb:9d:90:0a:98:fe:30:09:95:3e:c2:f1:
14:fd:9c:a3:0d:03:5c:bf:72:c2:6d:2d:aa:be:b1:
e4:e9:fd:03:08:0d:5d:e4:ee:81:3d:48:ac:de:39:
da:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:FF:01:1E:37:05:AF:F0:6E:0B:67:35:97:71:1D:81:9E:10:FA:43
X509v3 Authority Key Identifier:
keyid:E3:56:F5:C2:3C:CE:C6:46:40:68:5E:44:D5:9B:C4:B6:D4:4D:AA:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/41b1wjzOxkZAaF5E1ZvEttRNqrk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c3d10e-f4ab-4f08-956c-3cadec46e5c3/1/G_8BHjcFr_BuC2c1l3EdgZ4Q-kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/c3d10e-f4ab-4f08-956c-3cadec46e5c3/1/41b1wjzOxkZAaF5E1ZvEttRNqrk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.143.0/24
Signature Algorithm: sha256WithRSAEncryption
68:80:4d:8e:57:01:c5:04:3c:8e:fc:1a:f9:c3:6a:ef:33:12:
fd:d4:db:97:69:45:2e:a2:72:51:02:9c:d8:bb:46:3a:80:49:
02:63:4f:bb:a7:02:5c:f1:76:fd:bf:40:2b:9a:45:3c:8c:24:
36:fc:f8:1a:e5:f6:32:e8:a2:1d:c3:9d:29:73:4b:8c:dd:c4:
9a:52:8e:33:4f:f7:82:1e:11:dd:ce:42:73:32:71:c2:06:0e:
a0:04:d4:7b:32:4f:b6:3f:47:3b:b1:a6:11:1e:b7:c2:6c:38:
85:80:72:43:8d:73:00:22:41:0d:bf:64:5b:f2:c3:58:75:35:
74:07:99:f5:98:78:10:18:23:10:72:72:11:88:df:09:3a:a8:
23:c7:0f:89:a9:b9:76:e6:26:45:0b:24:8c:a6:1e:e8:69:86:
83:25:42:a5:aa:7b:ec:3c:fe:d8:0e:cd:81:00:e2:11:77:09:
90:57:8b:ce:80:f9:ef:8e:61:cd:1a:b7:e6:18:e9:ec:bd:ca:
f8:e4:aa:0a:b9:93:a6:2f:da:98:46:f3:99:4a:95:e6:8b:83:
64:7f:d4:3b:25:cf:d5:8d:13:98:60:d1:53:fc:22:3a:d9:6e:
23:c2:91:2a:21:8e:21:ff:df:58:a0:91:7d:40:21:fc:f1:3f:
6e:f1:d1:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:22 2023 by rpki-client on console-ams.rpki-client.org