Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/9rwiZ_CM0PvPgKQOuNMJ6WCNMAU.roa
File: 9rwiZ_CM0PvPgKQOuNMJ6WCNMAU.roa (raw, json)
Hash identifier: n2A2Srgm5Lr9K+Ft6fmKNorsFZ9+62qJo8BrR2F50jA=
Subject key identifier: F6:BC:22:67:F0:8C:D0:FB:CF:80:A4:0E:B8:D3:09:E9:60:8D:30:05
Certificate issuer: /CN=6b22ad4cf647a48b631ff84f227ea0252130552d
Certificate serial: 0371069A
Authority key identifier: 6B:22:AD:4C:F6:47:A4:8B:63:1F:F8:4F:22:7E:A0:25:21:30:55:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ayKtTPZHpItjH_hPIn6gJSEwVS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/9rwiZ_CM0PvPgKQOuNMJ6WCNMAU.roa
Signing time: Sat 29 Jan 2022 23:37:23 +0000
ROA not before: Sat 29 Jan 2022 23:37:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 149440
IP address blocks: 193.247.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57738906 (0x371069a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b22ad4cf647a48b631ff84f227ea0252130552d
Validity
Not Before: Jan 29 23:37:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6bc2267f08cd0fbcf80a40eb8d309e9608d3005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:20:a0:de:ea:5e:4b:1b:34:4d:b5:69:61:94:
aa:73:bb:a0:2a:08:fd:cc:29:71:75:35:09:be:eb:
75:aa:1e:49:a0:46:56:cc:d1:aa:a0:3a:fd:22:16:
9a:70:c1:3e:ea:11:fe:38:b0:f6:b7:12:5e:c5:f3:
2c:a8:8f:2d:a9:62:86:07:78:c5:db:5a:54:2a:f2:
f2:9c:f2:13:3c:1f:46:9b:b3:04:98:32:97:aa:b1:
95:9c:ca:0a:41:1f:cf:cd:6a:c1:f7:d1:bf:96:06:
3f:ac:9c:fd:ab:d2:6a:76:36:46:60:c1:e4:a7:2c:
ea:76:11:d5:08:3e:2d:87:70:8a:ed:0e:7c:65:89:
1a:2a:de:9a:66:b5:b7:ec:1f:d4:ba:99:21:b3:d4:
73:07:a3:9e:bc:b7:cd:a7:66:ac:34:8b:91:14:d9:
0b:36:9d:1e:8f:0c:ff:7f:61:e3:36:8e:87:4b:d8:
f9:4e:5b:fd:11:b6:5d:51:05:f9:d0:27:ee:8a:82:
32:35:04:23:fc:a6:e4:f9:78:86:e4:c9:d6:97:b9:
67:04:82:ca:ee:f3:d4:b3:42:b4:b4:02:49:31:e3:
c5:34:c0:74:05:f5:63:95:43:1b:87:17:43:ed:0f:
eb:bc:de:cf:0d:15:c0:d9:1c:fd:12:07:de:5e:6f:
33:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BC:22:67:F0:8C:D0:FB:CF:80:A4:0E:B8:D3:09:E9:60:8D:30:05
X509v3 Authority Key Identifier:
keyid:6B:22:AD:4C:F6:47:A4:8B:63:1F:F8:4F:22:7E:A0:25:21:30:55:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ayKtTPZHpItjH_hPIn6gJSEwVS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/9rwiZ_CM0PvPgKQOuNMJ6WCNMAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/595024-8bff-4f18-8ccb-69a44f048db8/1/ayKtTPZHpItjH_hPIn6gJSEwVS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.144.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:d5:84:b8:b1:f5:7b:e8:2d:44:8f:08:5d:fd:70:1b:0d:02:
db:96:c9:91:a5:12:20:9b:56:5c:66:94:52:5c:e9:fd:1b:bb:
50:0c:b7:7b:50:e9:e2:e2:6e:71:03:e2:aa:e9:6d:8b:62:f9:
1d:fa:83:c0:10:bf:b7:ac:f2:48:3f:97:5c:c6:ca:d8:de:ad:
6d:a7:0d:5b:3c:da:c4:48:0b:e5:9e:93:62:0b:c3:b5:d5:26:
21:d0:bf:88:73:f7:74:3b:94:f4:82:dc:13:4f:aa:1d:63:cb:
82:70:36:32:73:72:67:c5:bc:f7:3e:02:14:29:bf:cf:c0:e4:
80:26:f0:07:41:e1:e8:e1:6b:70:fb:11:f1:0c:65:ba:5b:14:
47:53:8d:45:32:49:ae:15:42:87:bb:e2:d8:26:38:ba:93:15:
ae:26:52:0a:e0:e9:af:86:79:55:2a:41:b1:8f:75:64:bc:6e:
31:c5:0d:59:cc:1e:06:ce:15:c2:19:17:63:85:75:34:e3:dc:
9c:e0:e4:89:4a:af:a0:47:bd:ca:03:71:11:a4:60:69:56:3e:
b7:eb:c8:a5:3b:92:92:66:41:b9:bd:20:5f:4a:1a:61:a5:a3:
44:66:88:51:4e:1c:9a:f3:e0:23:b4:27:8a:c2:33:2d:23:ef:
a1:40:fc:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:53 2023 by rpki-client on console-ams.rpki-client.org