Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/6jWDYuLwRTcPnYXHwyZXIgQlNc4.roa
File: 6jWDYuLwRTcPnYXHwyZXIgQlNc4.roa (raw, json)
Hash identifier: krPMr1VnWALk3VGFiHfDhGopFzjUaGR6drOfrLKpwZU=
Subject key identifier: EA:35:83:62:E2:F0:45:37:0F:9D:85:C7:C3:26:57:22:04:25:35:CE
Certificate issuer: /CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Certificate serial: 0FA1A18F
Authority key identifier: 4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/6jWDYuLwRTcPnYXHwyZXIgQlNc4.roa
Signing time: Sat 01 Jan 2022 00:51:08 +0000
ROA not before: Sat 01 Jan 2022 00:51:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141757
IP address blocks: 193.118.161.0/24 maxlen: 24
193.118.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262250895 (0xfa1a18f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4cf8ffc088591e4f243baafa21b4298bfb366026
Validity
Not Before: Jan 1 00:51:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea358362e2f045370f9d85c7c3265722042535ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:fc:5d:52:0d:f6:84:9c:d8:5f:7f:d5:1c:89:
dc:8d:ca:08:ee:95:33:c0:32:e3:0f:6f:0a:7e:a8:
a1:21:c1:1a:79:57:99:53:32:0b:2c:68:bb:09:81:
57:4f:60:0a:03:43:e7:02:63:73:99:6b:60:36:0f:
06:6d:bb:6c:71:92:38:78:3e:90:78:fc:f3:32:c1:
03:40:60:63:f6:e5:dd:33:52:a2:61:5d:8b:b1:0f:
82:cc:5e:84:67:91:01:c7:77:2e:08:00:10:74:9d:
f0:ca:68:05:c1:6b:9a:01:7c:6b:a8:d7:14:a9:72:
0d:b6:c9:84:47:49:99:93:fb:20:81:8b:ea:7b:ac:
36:a9:55:b6:50:f8:40:c6:7e:46:6f:11:7d:b8:32:
23:a5:00:aa:b4:a4:06:7b:90:03:0c:bd:c7:9c:b0:
75:e0:38:a3:1b:2b:41:bd:7c:2c:0d:04:f6:1d:c1:
76:c1:c4:61:5c:42:cb:43:fa:e4:79:48:53:c2:21:
db:20:64:75:57:48:3f:39:52:e9:22:1a:d2:d8:2d:
4a:07:8e:1b:da:50:3c:aa:f4:5f:71:b2:1f:99:3b:
0d:c1:13:d1:37:8d:49:4d:a0:98:1a:dd:fe:4c:ba:
e0:72:98:a4:6a:67:8a:9e:81:85:04:82:5f:74:be:
8c:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:35:83:62:E2:F0:45:37:0F:9D:85:C7:C3:26:57:22:04:25:35:CE
X509v3 Authority Key Identifier:
keyid:4C:F8:FF:C0:88:59:1E:4F:24:3B:AA:FA:21:B4:29:8B:FB:36:60:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TPj_wIhZHk8kO6r6IbQpi_s2YCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/6jWDYuLwRTcPnYXHwyZXIgQlNc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/a0a39c-be03-47bb-bdb3-b3b78b0b66ea/1/TPj_wIhZHk8kO6r6IbQpi_s2YCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.118.160.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:e5:21:93:29:34:c9:6e:c3:0d:72:b3:32:d1:66:33:27:c8:
94:aa:3c:8b:43:e4:a4:b3:9c:e1:10:01:06:53:70:06:e4:c7:
42:27:e1:bf:fb:4c:a9:30:58:d1:5f:cd:be:b2:b3:e9:7d:17:
16:55:a0:e3:2f:8c:02:c9:c3:44:a2:bd:75:c2:46:c4:bb:73:
17:ee:d4:d6:00:49:a9:d1:16:08:86:67:6d:17:ef:92:cb:ec:
86:0e:17:b1:b5:2b:55:43:00:6f:2a:56:58:9c:df:51:cb:88:
f5:55:97:cc:3a:20:fd:a5:66:97:10:65:67:ca:28:69:03:81:
22:a4:ae:ff:b5:3e:f7:bd:a3:2b:c7:eb:b5:bd:96:eb:27:c3:
3b:2e:af:b8:a1:b1:9f:57:50:f2:d1:ae:89:a8:dc:06:15:9a:
f1:58:a8:4d:7f:5d:de:3f:25:46:27:84:cd:44:00:42:29:29:
43:af:34:29:c5:6e:9d:1e:eb:5a:4e:3f:32:ab:25:03:11:10:
db:ac:e2:95:d2:a9:54:62:fd:15:29:55:6e:29:2c:0a:5e:9b:
31:40:51:a6:a2:50:f1:10:7d:6e:0b:24:13:87:dc:6f:a4:db:
15:fe:66:99:29:9d:b2:a7:64:c1:f3:e5:e3:d5:22:3a:9d:ff:
04:ed:ca:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:37 2023 by rpki-client on console-ams.rpki-client.org