Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/p_oPV8VkJ4ujltz_TDfYItNmvpY.roa
File: p_oPV8VkJ4ujltz_TDfYItNmvpY.roa (raw, json)
Hash identifier: 76CVDx4nR33UN8ORfusm/8MWlkixdvE1J6Nbg7qUt4o=
Subject key identifier: A7:FA:0F:57:C5:64:27:8B:A3:96:DC:FF:4C:37:D8:22:D3:66:BE:96
Certificate issuer: /CN=65e1a29a4579bf089ce845a4bffaf8b645530d96
Certificate serial: 613FCB
Authority key identifier: 65:E1:A2:9A:45:79:BF:08:9C:E8:45:A4:BF:FA:F8:B6:45:53:0D:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeGimkV5vwic6EWkv_r4tkVTDZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/p_oPV8VkJ4ujltz_TDfYItNmvpY.roa
Signing time: Sat 01 Jan 2022 00:57:21 +0000
ROA not before: Sat 01 Jan 2022 00:57:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 193.163.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6373323 (0x613fcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e1a29a4579bf089ce845a4bffaf8b645530d96
Validity
Not Before: Jan 1 00:57:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7fa0f57c564278ba396dcff4c37d822d366be96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ba:92:ce:e1:82:5a:76:eb:45:ba:40:79:84:
53:28:8e:69:90:04:86:41:1e:f2:d3:df:dd:ad:9b:
a2:ca:91:c3:58:76:a2:d8:a6:47:bb:04:0c:39:bd:
71:e2:82:66:ef:55:67:17:91:4b:5c:ef:5d:02:27:
e1:c6:b9:fa:9d:24:af:67:99:3a:37:ba:cd:85:5a:
61:23:88:f0:41:08:c2:3e:ac:eb:7d:3a:fe:cf:5b:
3e:f8:0b:d5:05:ea:cd:55:be:01:ca:db:3c:23:50:
28:aa:2b:50:89:02:bc:60:47:28:1c:75:11:93:37:
64:5e:77:ca:b5:df:90:9d:e6:8d:fc:cf:f8:35:aa:
7a:58:42:0a:6c:de:bb:5c:a4:6a:46:1a:b1:69:33:
dd:db:74:1a:3d:88:81:90:54:3f:54:ab:9c:73:9e:
ad:18:7d:0d:c9:0f:b4:87:82:14:89:98:38:92:e0:
04:de:be:bb:44:ba:c9:97:3d:95:1d:b1:5a:26:16:
f6:26:ad:6b:cf:63:48:6f:f8:7d:1b:37:4e:1f:13:
9d:1e:63:d2:97:d6:0e:ae:91:08:e8:32:6c:8c:2d:
f0:09:0b:45:a7:f9:78:e8:0b:5d:d8:4e:f3:31:5f:
a1:7a:8d:65:da:22:b0:e6:d8:76:30:b4:6f:a6:12:
ec:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FA:0F:57:C5:64:27:8B:A3:96:DC:FF:4C:37:D8:22:D3:66:BE:96
X509v3 Authority Key Identifier:
keyid:65:E1:A2:9A:45:79:BF:08:9C:E8:45:A4:BF:FA:F8:B6:45:53:0D:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeGimkV5vwic6EWkv_r4tkVTDZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/p_oPV8VkJ4ujltz_TDfYItNmvpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/32ef0a-c5fd-4c1e-ae6e-93283df2c97f/1/ZeGimkV5vwic6EWkv_r4tkVTDZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.16.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:b5:80:90:c1:1e:b9:76:b2:0a:2d:7c:b9:fc:11:55:a5:d4:
ab:a9:d6:78:84:51:9f:aa:12:0a:dc:3f:51:50:8c:ec:aa:da:
b4:3d:74:2e:d3:71:95:7e:15:7f:b2:f7:ee:42:a7:0a:4c:09:
cd:e2:d3:6c:b1:59:4e:68:9b:a0:4c:7f:78:a5:3f:18:a3:7a:
80:19:9f:c8:86:6e:19:ca:44:4c:79:4b:85:21:9a:e0:86:76:
7f:8b:02:30:66:eb:2a:9f:79:b1:62:36:5f:3c:54:a4:c5:b5:
c3:74:77:f3:b7:36:c9:23:f7:b4:2f:a0:71:b1:7a:97:d6:e9:
23:03:43:c4:5d:13:3e:73:02:0d:fc:55:94:2a:8b:15:f7:2a:
32:74:11:11:64:62:ef:62:bb:f6:15:2a:18:66:4f:38:6b:b3:
4b:82:59:22:c5:22:b5:e5:28:73:34:6f:de:a2:93:c6:79:73:
88:e3:47:4d:bd:02:b3:72:91:c9:06:bc:0f:9f:59:05:27:ce:
e5:90:77:ef:09:a4:03:c9:fc:16:22:95:fc:ba:7e:4f:1e:00:
b9:3d:a4:85:f2:21:2a:f0:75:15:44:59:b6:2e:3f:91:d0:98:
d1:5d:a7:74:48:51:54:a9:65:55:c7:9f:c1:85:2d:b8:e4:44:
94:f1:a2:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:48 2023 by rpki-client on console-ams.rpki-client.org