Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/py9wWBREWZ3uA2YxdJFn9bZdTAw.roa
File: py9wWBREWZ3uA2YxdJFn9bZdTAw.roa (raw, json)
Hash identifier: rO4TVQzz+aa98Ty2HDdcCc0niJGijCk9hwKp5y8m1IU=
Subject key identifier: A7:2F:70:58:14:44:59:9D:EE:03:66:31:74:91:67:F5:B6:5D:4C:0C
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018554BF4DBFE611484837103EEC0C9524D5
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/py9wWBREWZ3uA2YxdJFn9bZdTAw.roa
Signing time: Tue 27 Dec 2022 18:01:41 +0000
ROA not before: Tue 27 Dec 2022 18:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 193.239.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:54:bf:4d:bf:e6:11:48:48:37:10:3e:ec:0c:95:24:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Dec 27 18:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a72f70581444599dee036631749167f5b65d4c0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:74:eb:ad:96:1a:3a:3e:4e:06:9c:84:66:16:
65:03:ad:c7:3b:3d:79:c8:7a:7e:e8:be:81:43:db:
67:37:1f:b0:a9:59:2c:9e:5d:75:44:d4:95:48:e3:
dd:8d:c6:41:72:f1:a2:be:a9:62:c2:69:6e:60:c0:
d3:dd:29:d6:e6:5c:78:16:57:ce:b1:f0:af:be:5a:
be:57:9d:a3:b6:99:7b:92:77:dd:be:c0:f2:df:46:
19:d0:10:17:cb:37:68:6e:c3:02:56:1f:42:66:16:
b2:58:e6:5c:cc:6b:c5:7e:4f:cd:fc:6f:06:3d:db:
66:68:a4:02:fd:66:05:12:6a:d4:ad:2a:50:ff:b9:
29:e8:52:9c:c4:a4:4b:58:0f:30:e0:6d:65:c8:68:
1e:b9:2c:83:79:64:0a:87:77:86:4a:86:9a:de:97:
f0:93:20:9a:49:5d:f9:3e:af:fe:71:f8:34:66:db:
5d:05:6f:80:52:71:58:ef:62:6d:b2:b6:03:c0:63:
e4:38:e6:6d:1d:c2:ba:f0:1d:42:ae:26:1d:06:27:
0d:9e:1d:13:84:a7:0a:a8:c7:56:aa:cb:0e:12:53:
4a:1f:f2:f7:e2:e4:b3:c4:36:f6:f2:fd:41:aa:d3:
73:83:b1:85:6e:e5:b2:ff:d8:b0:db:ee:4f:23:42:
0e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:2F:70:58:14:44:59:9D:EE:03:66:31:74:91:67:F5:B6:5D:4C:0C
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/py9wWBREWZ3uA2YxdJFn9bZdTAw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.237.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:da:08:15:8a:a2:cb:00:05:e0:3d:54:ff:29:d3:d4:56:da:
7f:eb:f9:4b:ac:45:4b:be:37:c4:db:b1:38:bd:e4:43:78:15:
ab:e0:5e:4a:6b:41:03:4e:14:14:08:63:73:27:b3:b7:9d:61:
fd:2e:98:b4:86:a1:c8:6b:0e:19:39:08:83:a2:de:db:d4:33:
8d:b4:67:91:62:da:f9:af:35:92:be:a2:18:71:03:c0:cf:2f:
fa:d1:16:0a:4f:76:c7:e5:13:02:da:a0:23:f3:75:b8:01:14:
4f:33:d8:3b:14:fc:09:07:dc:94:39:ab:66:26:cd:72:3e:b3:
47:2c:6c:51:02:ce:99:16:20:85:e3:d1:28:e3:91:a6:bc:7d:
f5:ec:bb:90:25:26:b2:92:ac:01:73:7b:4e:3b:0d:64:6c:8a:
c5:34:59:a1:c4:d0:ce:0b:3e:8b:04:31:45:74:1b:43:0a:93:
a0:67:e2:86:69:88:60:b2:73:6c:f1:c8:00:3c:c0:8f:0d:49:
62:60:9b:81:87:a2:d2:ac:13:37:bb:f2:ab:ac:f0:67:95:c4:
1b:5e:98:53:53:52:f2:ac:62:ea:49:e3:b2:6e:b8:8f:da:95:
24:81:3c:62:02:74:78:34:00:ac:50:bb:50:bd:5c:eb:b6:0a:
ed:64:ad:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org