Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/dd6db4-f523-4de6-8be6-e7e9715e7813/1/k4YUq9N37gJXsU1IefP-C50aUas.roa
File: k4YUq9N37gJXsU1IefP-C50aUas.roa (raw, json)
Hash identifier: h3z6SkbCijOVFZpZ8/JZQhPn8QP0Bb3VdUWUjEHb2cs=
Subject key identifier: 93:86:14:AB:D3:77:EE:02:57:B1:4D:48:79:F3:FE:0B:9D:1A:51:AB
Certificate issuer: /CN=5780ce640579476eb7aa73c19cb74ebedfdd682b
Certificate serial: EFC7
Authority key identifier: 57:80:CE:64:05:79:47:6E:B7:AA:73:C1:9C:B7:4E:BE:DF:DD:68:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V4DOZAV5R263qnPBnLdOvt_daCs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/dd6db4-f523-4de6-8be6-e7e9715e7813/1/k4YUq9N37gJXsU1IefP-C50aUas.roa
Signing time: Thu 31 Mar 2022 11:38:00 +0000
ROA not before: Thu 31 Mar 2022 11:38:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2602
IP address blocks: 193.168.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61383 (0xefc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5780ce640579476eb7aa73c19cb74ebedfdd682b
Validity
Not Before: Mar 31 11:38:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=938614abd377ee0257b14d4879f3fe0b9d1a51ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:cc:04:50:57:4c:f2:b4:2c:3c:c1:b9:89:
91:66:fd:33:05:41:cb:80:61:07:66:a0:c9:bc:67:
60:58:87:7b:97:34:dd:9d:f2:2f:88:9f:ce:7f:08:
52:19:23:33:61:ea:59:86:49:3d:98:50:4b:88:37:
35:b1:91:e6:e5:3d:98:7c:67:e5:77:64:0b:34:d3:
94:02:50:51:02:af:02:03:43:b0:0c:67:f8:c8:d9:
7a:3b:3d:b2:9e:ee:60:8e:c2:2e:b9:4c:dd:10:29:
bc:87:b1:89:fa:58:70:e2:41:ca:b4:9d:e6:e6:70:
74:63:96:64:14:21:5f:98:16:73:a3:da:c8:ff:d7:
d0:c9:16:1e:69:8b:2d:7f:8d:a9:0e:78:d3:37:7f:
12:62:e0:7b:97:62:86:9f:5c:31:97:44:79:41:67:
a4:f1:32:3d:ab:ea:e3:34:aa:f0:60:b2:98:53:b8:
19:76:63:e4:91:f4:59:02:c7:b9:9e:90:2b:2d:2f:
e6:17:37:b3:2e:cf:ce:b8:c4:45:b0:9f:2b:4a:b3:
c3:e8:c7:0f:22:4f:90:4a:7a:d9:cb:3d:5f:91:90:
e8:ff:31:26:1c:46:49:b0:fa:10:6c:09:89:44:95:
67:b2:1b:8a:8b:0c:09:c5:8b:c5:4f:bd:b1:c1:8a:
62:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:86:14:AB:D3:77:EE:02:57:B1:4D:48:79:F3:FE:0B:9D:1A:51:AB
X509v3 Authority Key Identifier:
keyid:57:80:CE:64:05:79:47:6E:B7:AA:73:C1:9C:B7:4E:BE:DF:DD:68:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V4DOZAV5R263qnPBnLdOvt_daCs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/dd6db4-f523-4de6-8be6-e7e9715e7813/1/k4YUq9N37gJXsU1IefP-C50aUas.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/dd6db4-f523-4de6-8be6-e7e9715e7813/1/V4DOZAV5R263qnPBnLdOvt_daCs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.1.0/24
Signature Algorithm: sha256WithRSAEncryption
84:b3:49:d7:f8:9d:ba:e6:82:ad:86:7f:28:25:ed:2a:25:94:
a0:b1:c9:11:b1:c8:6f:b8:44:da:a1:3b:fa:20:23:b5:ec:0a:
5e:3d:1b:46:1f:a4:b4:61:71:1a:55:89:f5:53:1d:06:30:93:
32:7a:f1:45:43:1b:81:bb:8e:d5:e8:d5:17:c9:ec:24:c1:a1:
4f:06:37:6c:cc:b2:d6:a1:71:15:49:38:96:0b:38:7d:1b:e5:
77:04:aa:1c:19:a7:20:51:ce:e8:a0:30:dc:40:eb:e3:10:30:
3f:6a:03:39:3f:07:90:e9:ba:19:ae:a4:d2:b3:f1:68:57:65:
af:a4:0b:69:37:5f:d6:30:00:b9:77:5b:5f:27:48:ad:03:85:
6f:dd:ec:8e:6d:f2:d9:91:87:41:b3:02:43:3a:31:e1:65:b7:
bd:12:2d:0c:52:cc:79:4a:ef:92:1c:c8:4c:c8:83:0f:1a:2a:
49:ff:d8:ae:a3:2f:45:1f:13:2c:56:4e:d8:c3:e5:1d:e3:5b:
be:07:87:00:00:16:ff:b3:e8:89:9e:eb:c1:25:2e:6a:2d:57:
cb:3c:9e:9b:f5:ae:4a:6e:4e:cd:ce:e6:5d:c1:6b:6f:8f:89:
6d:50:82:dc:18:66:cd:f3:74:6d:23:d1:63:4e:88:d5:dd:2d:
2c:f2:eb:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:40 2023 by rpki-client on console-fra.rpki-client.org