Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/rKcy0zCsMy_eTuf6NlmsS4DqQ5U.roa
File: rKcy0zCsMy_eTuf6NlmsS4DqQ5U.roa (raw, json)
Hash identifier: GDexCHpIL2yTyaTmp4u+LvmU5MhAP6ZNxQRZ4VygK+w=
Subject key identifier: AC:A7:32:D3:30:AC:33:2F:DE:4E:E7:FA:36:59:AC:4B:80:EA:43:95
Certificate issuer: /CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Certificate serial: 07AF6B7A
Authority key identifier: 21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/rKcy0zCsMy_eTuf6NlmsS4DqQ5U.roa
Signing time: Sat 01 Jan 2022 14:04:38 +0000
ROA not before: Sat 01 Jan 2022 14:04:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41584
IP address blocks: 193.164.80.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128936826 (0x7af6b7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21698c1cdc66dc285d0f807629c46261a88b2de7
Validity
Not Before: Jan 1 14:04:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aca732d330ac332fde4ee7fa3659ac4b80ea4395
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c6:10:9e:5a:05:86:59:25:f8:90:d6:09:65:
3a:60:fa:c5:cb:1a:ce:84:34:a6:38:d3:67:38:07:
c7:15:d8:b1:c8:22:bf:96:3b:d5:37:e1:66:2e:36:
5f:77:27:15:15:f6:5f:0e:4e:91:43:6f:5b:d5:4b:
93:a5:a5:7a:2a:7a:d8:7a:af:1a:e6:d3:d7:78:73:
da:40:7e:90:a3:39:e4:1a:10:a0:1a:95:9e:08:8e:
51:6d:a2:3d:f0:97:03:0d:6a:aa:8c:c8:53:00:2a:
c7:13:99:51:13:6f:48:83:1b:10:16:ff:bb:2a:1f:
ea:a8:97:89:18:a4:74:47:26:89:08:8c:d2:dd:c4:
58:0c:ca:d8:26:7a:57:f6:f2:45:98:44:11:53:ac:
25:46:2c:e7:45:3b:19:26:d4:d7:e8:f4:83:7f:ab:
35:fe:5c:06:3a:10:09:31:2a:70:97:35:89:b2:b2:
ee:7c:b1:fb:d6:60:38:3c:c4:64:1e:e3:79:9a:bd:
c2:56:65:a9:18:83:6c:6d:49:07:75:03:1d:c6:44:
f9:04:ba:67:a7:dc:99:68:fd:3a:d4:b7:9a:03:19:
98:77:7d:ff:c9:6a:20:ed:6c:aa:a8:65:50:9f:fb:
e7:cb:e6:37:07:fa:ce:ef:60:67:f6:fe:d4:37:11:
de:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:A7:32:D3:30:AC:33:2F:DE:4E:E7:FA:36:59:AC:4B:80:EA:43:95
X509v3 Authority Key Identifier:
keyid:21:69:8C:1C:DC:66:DC:28:5D:0F:80:76:29:C4:62:61:A8:8B:2D:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IWmMHNxm3ChdD4B2KcRiYaiLLec.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/rKcy0zCsMy_eTuf6NlmsS4DqQ5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/11dc71-8170-45b5-8c5b-4d73730f7d32/1/IWmMHNxm3ChdD4B2KcRiYaiLLec.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.164.80.0/23
Signature Algorithm: sha256WithRSAEncryption
6d:78:12:5f:b7:6f:9b:ec:11:1c:8c:31:48:b0:b0:2b:5f:cc:
8f:10:e8:63:37:29:57:d2:e3:aa:2e:ca:16:61:c3:91:45:8f:
5b:bf:ae:7f:ca:40:bf:3a:f0:87:f1:7d:5a:dd:59:5b:82:79:
43:cf:7b:89:6c:40:36:23:34:7f:15:02:09:38:3c:6b:92:f3:
de:4e:47:fa:f6:d3:df:44:42:ad:e3:56:1a:fc:4f:da:52:da:
ea:d3:35:20:e3:13:11:02:d5:45:db:b7:52:63:c1:27:20:85:
d7:6d:a7:fa:5b:a6:0b:7c:ad:20:8b:5a:b4:2c:4b:9a:66:cf:
91:49:c9:73:63:48:34:5c:e6:b7:83:44:ee:73:a1:53:cf:0e:
3b:4a:ff:32:fc:d6:cc:f5:c1:6a:1c:cf:03:53:c6:5c:d8:3a:
cc:a7:71:51:55:22:dd:b4:07:74:69:97:52:8c:3e:c8:0a:4f:
8d:46:3b:06:f3:53:20:4f:e7:00:10:15:52:b8:8d:18:b3:33:
e2:64:e1:69:c5:bb:e9:bf:62:ab:d6:a6:6b:41:2d:f2:8e:84:
a7:f2:86:b4:3c:d0:cc:ec:34:9f:c5:b2:e1:7f:ba:24:6f:6d:
ee:01:a2:56:6a:81:d5:0c:d3:1c:a5:0a:a3:1d:d5:ed:c4:de:
59:88:b2:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:08 2023 by rpki-client on console-ams.rpki-client.org