Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/1-yfoO6VNVAkXeBSBtjvRxE2tpX0.roa
File: 1-yfoO6VNVAkXeBSBtjvRxE2tpX0.roa (raw, json)
Hash identifier: Rqw8isYnTLTypQ8gCsOssgVsej7nZjLk00UMgF+LfM0=
Subject key identifier: FB:27:E8:3B:A5:4D:54:09:17:78:14:81:B6:3B:D1:C4:4D:AD:A5:7D
Certificate issuer: /CN=57c76a80ec2912a568935cb57b6a650f03dfd8d2
Certificate serial: 0182F299CF2DC497CB9BDA58CF3E81D8905E
Authority key identifier: 57:C7:6A:80:EC:29:12:A5:68:93:5C:B5:7B:6A:65:0F:03:DF:D8:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V8dqgOwpEqVok1y1e2plDwPf2NI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/1-yfoO6VNVAkXeBSBtjvRxE2tpX0.roa
Signing time: Wed 31 Aug 2022 06:32:22 +0000
ROA not before: Wed 31 Aug 2022 06:32:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48705
IP address blocks: 193.39.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:f2:99:cf:2d:c4:97:cb:9b:da:58:cf:3e:81:d8:90:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=57c76a80ec2912a568935cb57b6a650f03dfd8d2
Validity
Not Before: Aug 31 06:32:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fb27e83ba54d540917781481b63bd1c44dada57d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:0b:dc:87:3c:12:28:8a:31:e3:91:91:7a:3f:
ae:c6:ac:c2:90:55:c8:32:0c:30:f0:34:95:f9:7b:
8c:3e:ba:f4:db:82:2c:8c:e8:a2:06:c3:46:a0:c5:
11:a2:86:8d:2b:f1:e9:ea:f2:4c:31:1b:9c:f9:f0:
48:82:55:a3:91:20:12:a0:c6:8d:8e:ec:36:c0:84:
ee:20:63:a4:ec:c2:87:c2:95:ca:57:da:80:2b:7e:
a9:6c:8e:7e:d4:8b:cc:94:90:9a:f2:fb:2e:27:e0:
af:7b:f0:5c:89:40:9e:67:32:e9:31:60:1d:b7:08:
d5:d7:ea:66:85:e9:30:28:8a:8a:42:b3:10:29:d4:
0d:e7:f3:57:a2:0c:f1:d2:9f:62:97:07:b1:c4:5a:
97:db:47:9a:e5:05:ae:b7:7a:97:da:a0:62:66:b6:
fe:fb:57:15:05:fa:ee:78:85:a5:16:2d:a3:94:2b:
8b:e4:24:cd:3a:a6:cd:0c:a2:54:8b:74:c1:32:aa:
43:e6:a2:32:0f:34:06:9a:f6:ba:ef:5a:40:d4:cf:
9f:7f:69:02:b1:9b:a5:07:c2:08:b0:5b:f0:ea:96:
0a:5e:43:8c:5d:30:2e:b9:58:c0:f9:49:0b:f8:ba:
54:55:f3:4a:16:fd:56:f1:f0:14:1e:96:3b:07:bb:
69:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:27:E8:3B:A5:4D:54:09:17:78:14:81:B6:3B:D1:C4:4D:AD:A5:7D
X509v3 Authority Key Identifier:
keyid:57:C7:6A:80:EC:29:12:A5:68:93:5C:B5:7B:6A:65:0F:03:DF:D8:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V8dqgOwpEqVok1y1e2plDwPf2NI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/1-yfoO6VNVAkXeBSBtjvRxE2tpX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/40e5f4-d056-44f2-899e-2286b89e7a7e/1/V8dqgOwpEqVok1y1e2plDwPf2NI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.66.0/24
Signature Algorithm: sha256WithRSAEncryption
56:a4:14:2d:02:97:35:a2:a6:7f:c5:0d:fc:02:bc:52:b6:2c:
e0:a7:9b:55:77:c7:87:e2:d8:5a:06:40:0c:38:47:a5:89:39:
3d:25:18:ea:14:7d:e1:fe:e0:a9:ff:8c:b5:91:46:b6:32:d4:
30:01:4a:36:54:64:8c:9d:47:3c:e0:6f:31:35:fa:61:7a:cc:
b4:c2:71:97:ce:b0:c1:74:50:23:04:8b:ba:16:c8:7e:6a:3c:
8e:7e:2b:69:4c:16:98:44:9b:76:20:63:b8:ef:c6:c7:62:14:
cb:0f:72:4b:c3:3c:24:1e:84:af:02:26:e0:16:6c:d1:df:0a:
0d:07:6f:13:7f:8e:36:7c:a9:dc:3c:d7:82:80:06:cc:52:a9:
f9:9a:bd:8f:0e:4f:36:ab:8a:9b:65:e7:e7:46:f5:ab:a3:f2:
5a:1d:1b:b4:eb:49:4a:f6:a0:df:01:e1:40:5c:17:44:03:e8:
03:99:85:9d:d2:a4:eb:e9:bc:c3:bf:f2:27:2a:b4:c0:1a:bf:
44:e3:c1:0d:9f:70:54:07:34:9e:f1:a7:46:3a:9e:f9:a7:cb:
3f:04:97:11:83:ea:6b:9e:c6:b7:bb:0c:c3:3c:7e:b9:67:f2:
11:bb:54:67:52:ad:f1:0d:70:e8:5d:10:b8:7b:ab:f0:bb:ea:
11:80:c1:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:38 2023 by rpki-client on console-fra.rpki-client.org