Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/AoyKc7KI53Lk3d3z76e7vTSOwlo.roa
File: AoyKc7KI53Lk3d3z76e7vTSOwlo.roa (raw, json)
Hash identifier: wNINSPwrZhbYMvHhFYLvQrezcje0JJsy1UNeCjudTiY=
Subject key identifier: 02:8C:8A:73:B2:88:E7:72:E4:DD:DD:F3:EF:A7:BB:BD:34:8E:C2:5A
Certificate issuer: /CN=a5a42d260d5ecdc2fa2b0b5dbf603b90d715444d
Certificate serial: 09F1B20A
Authority key identifier: A5:A4:2D:26:0D:5E:CD:C2:FA:2B:0B:5D:BF:60:3B:90:D7:15:44:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paQtJg1ezcL6Kwtdv2A7kNcVRE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/AoyKc7KI53Lk3d3z76e7vTSOwlo.roa
Signing time: Sat 01 Jan 2022 07:54:53 +0000
ROA not before: Sat 01 Jan 2022 07:54:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44097
IP address blocks: 193.43.214.0/24 maxlen: 24
2001:67c:ec::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166834698 (0x9f1b20a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a42d260d5ecdc2fa2b0b5dbf603b90d715444d
Validity
Not Before: Jan 1 07:54:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=028c8a73b288e772e4ddddf3efa7bbbd348ec25a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:d5:a4:0d:29:ef:ce:1f:07:5d:eb:c7:97:59:
30:89:e2:a6:74:6a:64:57:f3:32:e8:52:31:5c:77:
19:b6:28:48:af:1f:34:43:aa:37:9f:2e:97:e8:25:
6a:b9:79:56:d7:45:67:62:17:62:3b:6e:67:d2:f9:
c5:86:ca:61:f6:92:b2:fc:27:42:62:89:eb:3e:ef:
f1:58:59:9c:f6:dd:5d:e2:5e:81:b6:54:7a:ab:a9:
1f:81:fe:35:de:5e:0f:b4:12:65:eb:8e:b3:cf:99:
23:d3:c1:f8:90:be:57:45:70:82:3c:c2:ac:4f:aa:
5f:10:c1:84:d9:95:36:ec:35:d2:22:76:07:a3:67:
68:8f:45:5c:fa:7f:49:28:9c:79:2d:71:5f:27:6c:
04:21:c9:30:96:c3:45:98:4a:e9:23:54:89:51:16:
9c:c7:8b:ff:45:fa:8d:17:7e:99:3c:39:8b:4f:6a:
24:14:21:72:4e:a0:e6:ca:57:48:af:c3:bc:78:d5:
76:ea:8f:39:51:40:af:57:59:53:46:62:a1:a0:6e:
c6:2c:40:1d:cb:cb:d7:a7:5d:52:88:75:34:09:84:
5f:35:e7:19:a3:08:e7:ae:43:1d:1a:5b:c9:96:e8:
1d:7c:f7:77:db:db:dc:46:95:76:8f:bf:01:1f:72:
ba:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:8C:8A:73:B2:88:E7:72:E4:DD:DD:F3:EF:A7:BB:BD:34:8E:C2:5A
X509v3 Authority Key Identifier:
keyid:A5:A4:2D:26:0D:5E:CD:C2:FA:2B:0B:5D:BF:60:3B:90:D7:15:44:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paQtJg1ezcL6Kwtdv2A7kNcVRE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/AoyKc7KI53Lk3d3z76e7vTSOwlo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/paQtJg1ezcL6Kwtdv2A7kNcVRE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.214.0/24
IPv6:
2001:67c:ec::/48
Signature Algorithm: sha256WithRSAEncryption
06:06:5f:c0:a7:39:e6:d0:b6:36:9a:14:5b:4a:8c:29:c8:28:
2b:96:9b:17:c6:3d:45:32:54:d2:99:04:6c:4a:fc:21:87:22:
dd:6b:a2:57:43:76:62:22:f3:a9:16:04:39:c4:4c:3b:6d:4f:
c1:28:26:26:7f:dc:54:a2:ca:dc:dc:08:58:3a:0f:e4:65:2b:
9b:24:36:93:d1:4e:24:48:be:b7:46:72:42:0a:83:1a:40:69:
75:4f:75:f5:db:2a:c5:05:37:39:0a:81:71:66:69:99:c9:0d:
5e:e5:04:b4:1b:05:3a:83:d9:aa:79:f4:a6:5e:84:fc:6f:29:
80:09:1d:10:74:25:0e:86:41:2b:a9:43:57:54:5f:87:ee:d6:
93:bf:45:ae:54:60:7b:bf:39:14:88:34:83:c7:fa:ad:6a:80:
8f:47:e3:6d:06:05:bb:7a:51:e4:f2:f7:1a:90:b7:c5:3e:08:
a6:d8:e7:f6:f4:5d:ea:d4:86:ef:e7:38:21:12:2f:3e:3f:ee:
03:0c:8c:02:e4:8e:bb:98:ad:04:e6:b7:7f:41:b9:82:4b:8e:
01:dd:ac:bf:f0:76:3c:63:17:b7:b8:fb:97:ee:6f:35:0d:e5:
e5:2c:1f:f3:41:20:4f:17:f7:c9:4f:6c:3e:13:3a:05:83:d5:
b4:68:57:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:09 2023 by rpki-client on console-fra.rpki-client.org