Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/07y9_THcItaHpO4HrfwQ7PB7rHM.roa
File: 07y9_THcItaHpO4HrfwQ7PB7rHM.roa (raw, json)
Hash identifier: pidYCNpqDYCrf69IwxVBTN06IeZrMQy4WJF//cC2OHs=
Subject key identifier: D3:BC:BD:FD:31:DC:22:D6:87:A4:EE:07:AD:FC:10:EC:F0:7B:AC:73
Certificate issuer: /CN=05072a23730bbe1a31051f07e3bb2d39d6085527
Certificate serial: 01828E86E6B95508AEE78DD34CDB8BCD3C7D
Authority key identifier: 05:07:2A:23:73:0B:BE:1A:31:05:1F:07:E3:BB:2D:39:D6:08:55:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQcqI3MLvhoxBR8H47stOdYIVSc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/07y9_THcItaHpO4HrfwQ7PB7rHM.roa
Signing time: Thu 11 Aug 2022 20:09:41 +0000
ROA not before: Thu 11 Aug 2022 20:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 130.193.3.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:8e:86:e6:b9:55:08:ae:e7:8d:d3:4c:db:8b:cd:3c:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05072a23730bbe1a31051f07e3bb2d39d6085527
Validity
Not Before: Aug 11 20:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3bcbdfd31dc22d687a4ee07adfc10ecf07bac73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:b5:49:ed:2e:0f:86:f2:ac:a4:db:a4:7f:8c:
f8:5a:1c:ca:5d:da:c8:db:5d:30:06:cd:59:04:bd:
ff:35:27:57:ed:cb:54:f3:bc:ca:35:4e:10:d2:ad:
90:27:4b:8c:bd:cd:68:71:b5:7b:74:3a:71:b7:48:
58:21:d1:7b:0e:9c:1d:3d:46:a3:83:65:25:ec:07:
01:21:2d:93:73:26:b2:cc:c3:f4:5a:e7:04:23:20:
5c:17:4d:45:7d:40:48:ae:6a:89:db:18:ef:fc:56:
a6:9b:8d:f5:68:bc:68:79:0a:e9:aa:ae:0a:b0:db:
72:51:d0:67:36:ae:60:f0:70:9d:72:86:51:d4:52:
34:c5:4d:e1:61:08:32:be:ed:67:da:bb:7a:aa:33:
3a:ac:74:22:f3:ad:c9:da:5d:b2:e6:bf:37:d6:90:
be:4a:27:57:08:05:15:e4:f0:f4:a1:1b:a5:33:ae:
da:73:b5:4e:a1:a2:92:f6:0a:dc:26:b0:77:c7:01:
db:17:fc:03:8e:d7:78:d6:61:03:4b:fd:c9:86:64:
1b:2c:52:40:7e:13:9e:02:5a:ad:af:52:b4:15:d0:
b3:85:0d:12:e2:2b:db:35:64:05:ff:a6:b8:7d:e7:
46:3d:56:c6:95:aa:26:5c:38:53:19:d5:9e:d7:3c:
04:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:BC:BD:FD:31:DC:22:D6:87:A4:EE:07:AD:FC:10:EC:F0:7B:AC:73
X509v3 Authority Key Identifier:
keyid:05:07:2A:23:73:0B:BE:1A:31:05:1F:07:E3:BB:2D:39:D6:08:55:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQcqI3MLvhoxBR8H47stOdYIVSc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/07y9_THcItaHpO4HrfwQ7PB7rHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/25df87-15ab-4b90-b760-52279153bbf4/1/BQcqI3MLvhoxBR8H47stOdYIVSc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.3.0/24
Signature Algorithm: sha256WithRSAEncryption
52:c6:65:d0:26:7a:ce:09:d6:66:eb:1c:65:fa:ed:84:a6:7e:
1e:bb:bb:7d:50:17:90:de:56:51:de:d8:14:10:4e:0a:b9:0b:
6f:b2:4b:b7:f2:dc:29:85:23:5d:d4:4f:95:a8:65:34:ee:c7:
f7:2c:eb:9d:10:d3:5f:fd:a9:44:1e:6b:30:3c:84:f8:b2:b4:
4d:ea:db:76:c4:b9:6a:6a:62:c9:99:94:f5:20:94:5f:7f:af:
73:ae:df:b9:8c:18:02:84:5c:35:c9:60:da:4c:3d:56:57:06:
1b:bd:89:9b:5b:71:b2:03:1c:07:da:6b:ff:c8:5e:37:4a:dd:
68:ba:9f:c6:f9:40:28:f7:c9:bd:8b:6b:3f:8e:b7:9a:9b:9a:
65:ff:5c:4f:03:ba:34:92:60:a1:a6:d6:70:fa:fa:e1:0b:51:
f7:eb:71:75:c7:d1:a1:18:f0:0e:a1:4d:90:38:5b:2e:33:e4:
1a:dd:dd:0a:37:78:46:2b:fa:02:c2:5d:18:0b:f7:e8:c2:e1:
54:0d:c2:81:19:9e:6f:5e:40:18:aa:98:3d:42:f6:be:78:ee:
a2:b5:75:d5:c8:af:a3:59:a4:78:c8:31:32:d0:6e:81:09:50:
80:e2:6a:2d:82:b1:94:1d:e2:77:32:cd:c2:ae:cc:0b:9d:1c:
29:12:b7:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:12 2023 by rpki-client on console-fra.rpki-client.org