Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f9082b-cba3-4fbc-ada2-df063767c3f6/1/RestthyK9FXHVwG2bhPaizxbyTQ.roa
File: RestthyK9FXHVwG2bhPaizxbyTQ.roa (raw, json)
Hash identifier: mkIA0Q0Pq07eiFAq4arnjNpH6QpYC7mhAgmHEEdOdLU=
Subject key identifier: 45:EB:2D:B6:1C:8A:F4:55:C7:57:01:B6:6E:13:DA:8B:3C:5B:C9:34
Certificate issuer: /CN=f7e5647cd0b7f722bed4569f37b8bf8f92538cf5
Certificate serial: 040A93D6
Authority key identifier: F7:E5:64:7C:D0:B7:F7:22:BE:D4:56:9F:37:B8:BF:8F:92:53:8C:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9-VkfNC39yK-1FafN7i_j5JTjPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f9082b-cba3-4fbc-ada2-df063767c3f6/1/RestthyK9FXHVwG2bhPaizxbyTQ.roa
Signing time: Fri 22 Apr 2022 06:48:48 +0000
ROA not before: Fri 22 Apr 2022 06:48:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60860
IP address blocks: 193.106.64.0/24 maxlen: 24
193.106.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67802070 (0x40a93d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7e5647cd0b7f722bed4569f37b8bf8f92538cf5
Validity
Not Before: Apr 22 06:48:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45eb2db61c8af455c75701b66e13da8b3c5bc934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:00:79:00:91:51:b5:2d:d4:61:79:27:12:2e:
97:34:45:83:15:da:cc:7a:b1:7f:ad:df:19:ff:68:
a3:e4:b5:47:3f:00:31:22:6f:0e:e6:49:6a:24:d9:
e4:91:e0:6e:25:54:d6:e6:2e:2c:9b:a3:36:38:d5:
5c:02:fa:a6:06:c0:f3:c3:2b:89:89:44:c8:d5:b6:
69:60:ca:c3:b0:40:b6:2f:d5:f0:5c:ae:6a:9c:32:
7f:ff:63:1b:02:51:20:d2:ea:aa:1a:56:df:ce:df:
60:12:94:b7:67:ad:14:55:98:88:99:a6:0d:f7:f2:
0c:10:b0:9c:23:72:ee:00:01:04:09:0d:59:58:0a:
77:d4:8d:6b:38:50:35:1f:cf:d4:c3:0d:b8:b0:c6:
bc:85:61:0e:5d:d3:4a:61:92:c6:d4:b2:57:d3:eb:
77:dc:57:06:f5:e5:a1:b0:a9:ed:ad:df:e9:90:41:
36:08:b5:b6:1f:a8:b1:59:7c:b1:5c:47:d9:23:c0:
01:51:4e:86:cf:d7:df:21:81:3d:1a:05:f2:96:e2:
02:7d:61:d6:7a:78:1d:ff:98:8f:01:b2:4e:53:fa:
5e:6b:29:32:a5:a2:7d:e2:2c:f6:22:d2:4f:c5:b2:
19:7a:8c:6d:1c:9c:82:85:41:9b:44:4e:d6:85:f1:
5f:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:EB:2D:B6:1C:8A:F4:55:C7:57:01:B6:6E:13:DA:8B:3C:5B:C9:34
X509v3 Authority Key Identifier:
keyid:F7:E5:64:7C:D0:B7:F7:22:BE:D4:56:9F:37:B8:BF:8F:92:53:8C:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9-VkfNC39yK-1FafN7i_j5JTjPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f9082b-cba3-4fbc-ada2-df063767c3f6/1/RestthyK9FXHVwG2bhPaizxbyTQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f9082b-cba3-4fbc-ada2-df063767c3f6/1/9-VkfNC39yK-1FafN7i_j5JTjPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.64.0/24
193.106.67.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:d3:17:84:d1:88:41:50:3a:9d:43:df:ca:42:16:df:6d:b8:
ec:72:1f:fa:d0:0d:9a:94:05:d1:12:96:23:93:d5:11:16:a3:
ca:2d:76:95:59:c6:bb:19:81:07:a4:de:bc:19:a3:41:63:54:
4f:9c:0b:57:ec:64:81:ae:c3:60:08:c3:2b:6a:dd:3b:08:33:
e2:43:67:1e:ee:35:9e:54:5f:c8:52:79:cc:6c:bc:d1:43:98:
f7:21:97:21:58:34:3e:53:c4:de:40:b2:d4:f5:9b:1d:60:70:
78:fc:a5:bb:1c:c8:2a:47:f6:ca:d5:d0:27:96:c0:1f:34:42:
b2:04:b0:6b:c5:0d:fc:58:64:fb:07:ee:57:a7:05:73:c0:ce:
00:43:61:bd:0e:17:bf:04:c2:b8:ef:28:0d:22:5f:d4:10:35:
d2:f8:20:9c:03:60:dc:c3:17:35:c0:5e:c1:4c:05:6c:94:5a:
b8:51:3a:22:e8:81:68:7e:07:09:0e:18:e3:52:92:c8:c6:a8:
b7:3e:ad:86:9f:ce:51:13:3e:2d:fd:7e:50:2d:b5:87:d7:e6:
90:13:01:11:47:70:63:5e:c2:b3:39:1c:f7:d6:a4:46:f9:e6:
d9:1c:34:f7:76:48:eb:be:68:6d:6d:13:ba:86:23:35:a2:76:
28:51:db:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:18 2023 by rpki-client on console-fra.rpki-client.org