Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/7vK9TwSZUjK8kRpuGtVdvTuVjtA.roa
File: 7vK9TwSZUjK8kRpuGtVdvTuVjtA.roa (raw, json)
Hash identifier: JbczBdZ/JV8/oogOpTgaBS8TnL3OtoIRPIL76rGQ12w=
Subject key identifier: EE:F2:BD:4F:04:99:52:32:BC:91:1A:6E:1A:D5:5D:BD:3B:95:8E:D0
Certificate issuer: /CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Certificate serial: 0824FB1F
Authority key identifier: B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/7vK9TwSZUjK8kRpuGtVdvTuVjtA.roa
Signing time: Sat 01 Jan 2022 06:03:20 +0000
ROA not before: Sat 01 Jan 2022 06:03:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198580
IP address blocks: 193.32.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136641311 (0x824fb1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72588c00eef715809eb5fdd6d6717cc28c0dfac
Validity
Not Before: Jan 1 06:03:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eef2bd4f04995232bc911a6e1ad55dbd3b958ed0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4c:dc:3b:9d:e8:8a:b2:82:6b:4a:0c:dc:96:
cb:05:46:4a:ea:fb:63:89:67:96:bd:fe:8c:16:a7:
6c:e3:74:1a:99:a0:cc:44:a5:e2:87:25:ac:fb:81:
f9:00:72:14:2e:a4:67:38:7b:6e:6c:eb:e6:86:fa:
b8:46:92:c8:3a:ef:bb:10:1e:2f:4e:b7:ad:9d:a1:
04:bd:9a:67:1a:59:76:5f:cb:0c:75:4a:fb:b8:18:
22:d8:35:98:5f:75:76:93:3e:05:29:cd:31:18:74:
88:a4:d9:c4:fb:0c:ee:ce:ea:1e:95:f7:bc:5f:ef:
c5:00:0f:f4:46:37:64:5a:aa:e2:cc:85:89:83:7f:
47:ce:3c:07:9d:3a:58:87:da:63:29:15:fc:da:c2:
94:a9:62:a6:53:84:7f:cb:7d:d8:64:17:bf:e8:22:
f7:6a:f0:16:d8:70:5d:fc:5c:73:21:e6:7a:5f:b0:
0c:f8:fe:cd:3a:cf:39:b5:da:f7:7d:91:e6:ae:7d:
0a:99:47:17:7e:b3:3b:04:a3:46:b0:7b:3d:26:ab:
04:a1:7c:09:87:ae:9a:a8:70:0b:dc:50:6c:28:d3:
79:0e:d4:60:8c:3f:03:ce:f8:e9:7f:fb:05:93:8d:
a3:d5:bb:45:a1:12:dc:34:2f:30:13:3c:88:eb:a0:
bb:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F2:BD:4F:04:99:52:32:BC:91:1A:6E:1A:D5:5D:BD:3B:95:8E:D0
X509v3 Authority Key Identifier:
keyid:B7:25:88:C0:0E:EF:71:58:09:EB:5F:DD:6D:67:17:CC:28:C0:DF:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tyWIwA7vcVgJ61_dbWcXzCjA36w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/7vK9TwSZUjK8kRpuGtVdvTuVjtA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/ebbac9-fee7-4f3b-8cd5-7a41254eaaca/1/tyWIwA7vcVgJ61_dbWcXzCjA36w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.32.203.0/24
Signature Algorithm: sha256WithRSAEncryption
05:08:64:6c:5d:d3:a2:f1:51:24:24:c4:1d:a9:4b:21:66:1b:
04:f2:36:e6:9d:82:73:f0:aa:dc:63:0a:e8:b9:e4:91:fd:78:
08:ea:6a:9f:e2:41:1e:7c:9b:fe:91:6f:0a:f7:8a:34:c3:a5:
98:27:5c:72:5b:fa:a0:9f:15:5c:50:b9:25:5c:fc:5d:1d:a5:
2c:46:d7:54:df:bc:d9:c0:48:09:ec:7c:e4:aa:89:05:2f:b3:
2c:11:77:38:a1:11:42:83:78:13:dc:8b:f6:d1:75:19:ae:1e:
88:00:2c:f8:72:f8:5d:fe:88:ea:a2:3e:01:8c:37:3c:81:40:
f3:36:90:bd:19:d2:20:59:d5:01:c6:e5:dd:1f:49:83:50:37:
32:7e:c7:2e:c0:12:58:0e:fd:f1:70:13:ba:05:1f:38:2a:5f:
b5:9a:a5:99:16:ba:37:31:1a:f2:aa:df:eb:ae:ee:82:07:0f:
9f:21:14:a3:4e:1a:46:dd:bc:69:c5:d5:bc:39:2c:02:11:92:
fc:78:06:6a:a1:0b:eb:da:70:ac:1c:f3:91:ec:db:b0:bd:5f:
6d:26:9c:a2:f8:28:2b:ff:33:4a:47:fe:88:33:bb:68:19:e8:
68:cc:67:3b:34:5e:ff:9f:1c:94:cc:4e:c4:84:15:a9:f1:f5:
98:64:35:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:14 2024 by rpki-client on console-fra.rpki-client.org