Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/x6ki8iNsr_U_KbTH4MW7uYw40Ck.roa
File: x6ki8iNsr_U_KbTH4MW7uYw40Ck.roa (raw, json)
Hash identifier: lFV7QT4rKRxtxEJow1HHOUNP6d35h68YbyEoWeTs8Yw=
Subject key identifier: C7:A9:22:F2:23:6C:AF:F5:3F:29:B4:C7:E0:C5:BB:B9:8C:38:D0:29
Certificate issuer: /CN=a679160a0449e8b50fc01c85dcfce54b2c629b51
Certificate serial: 0161320A
Authority key identifier: A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/x6ki8iNsr_U_KbTH4MW7uYw40Ck.roa
Signing time: Sat 01 Jan 2022 12:59:03 +0000
ROA not before: Sat 01 Jan 2022 12:59:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211031
IP address blocks: 193.38.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23147018 (0x161320a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a679160a0449e8b50fc01c85dcfce54b2c629b51
Validity
Not Before: Jan 1 12:59:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7a922f2236caff53f29b4c7e0c5bbb98c38d029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:86:80:44:a3:33:a2:4a:c2:6e:c0:4b:20:7b:
05:b5:2b:be:30:2e:12:78:c8:f4:d3:f7:96:80:12:
84:14:6b:3c:f8:18:ed:88:fc:07:17:d7:91:fd:52:
04:ae:59:bc:60:9e:dc:16:10:18:42:ec:51:9f:a3:
24:53:7e:06:c0:01:26:ec:29:32:cf:80:3e:68:f0:
9e:30:b5:08:89:02:d6:81:a2:71:69:57:e6:85:8e:
54:43:a3:e6:31:37:d2:cb:2e:17:29:a1:90:1b:ae:
a8:0a:ab:98:d4:5b:5b:c9:e2:06:45:52:ac:fa:1d:
31:87:71:f1:df:71:81:0f:02:82:e9:48:27:6e:8e:
f2:16:f8:6a:f9:fc:4b:dc:94:9a:b2:e8:b6:d9:23:
0b:21:ad:d0:9c:cc:c0:d1:17:2e:52:b8:5d:21:3c:
cf:7b:df:5e:80:3c:0c:23:63:40:55:ee:21:1a:e0:
de:08:4b:18:b4:b8:df:e6:c9:06:5e:3a:e2:73:21:
7b:26:36:35:4d:c4:90:cd:9d:fd:25:1e:21:82:06:
10:8a:34:60:fc:fd:c0:9d:ee:30:45:c6:87:35:ac:
8e:75:bd:9b:38:eb:aa:e6:3f:f8:36:16:75:86:68:
d0:f1:8f:b9:82:bd:53:f6:77:64:d4:6a:d4:88:71:
3d:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:A9:22:F2:23:6C:AF:F5:3F:29:B4:C7:E0:C5:BB:B9:8C:38:D0:29
X509v3 Authority Key Identifier:
keyid:A6:79:16:0A:04:49:E8:B5:0F:C0:1C:85:DC:FC:E5:4B:2C:62:9B:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnkWCgRJ6LUPwByF3PzlSyxim1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/x6ki8iNsr_U_KbTH4MW7uYw40Ck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/72de35-338d-4a43-b719-8b4d08d37c5f/1/pnkWCgRJ6LUPwByF3PzlSyxim1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.153.0/24
Signature Algorithm: sha256WithRSAEncryption
64:1e:93:be:19:4b:8d:64:31:f0:27:47:00:46:aa:47:61:13:
a2:49:64:84:6d:79:03:d5:73:43:8c:f7:83:d8:f1:58:72:b5:
19:37:b0:d9:04:a1:3a:aa:67:b5:4f:ae:5c:1a:a9:c1:66:db:
f9:a4:6a:79:ef:48:c9:6d:b2:99:05:99:5b:d7:73:6b:d8:d0:
c3:a2:d2:93:cd:e6:fa:37:aa:0e:9a:57:2c:08:9f:f3:32:24:
d8:49:50:91:0a:d8:85:8b:5b:e5:7e:94:6b:9b:73:05:63:d2:
12:24:bc:c4:37:34:80:03:21:c1:0d:82:83:ef:cf:1d:bd:9c:
38:63:f4:43:b8:2b:e6:94:92:55:88:ff:ce:a1:37:6c:34:34:
18:53:13:c5:94:bb:ee:45:d1:bb:81:e5:de:c9:04:d0:8e:4e:
bd:b2:86:55:c4:0c:e6:b8:ef:6a:80:3a:2d:ff:5d:b0:b5:10:
a5:73:46:f5:bc:7f:49:93:78:0c:54:fb:1c:28:05:df:ee:28:
66:85:d4:6f:a6:cd:fa:e4:bf:2c:81:2b:83:d5:51:26:04:ab:
20:e4:a8:43:1d:e7:98:3e:71:87:aa:68:ac:3f:00:5c:b1:27:
33:c3:71:4e:ea:67:3c:4d:7e:9c:b9:d8:92:b3:1f:5c:12:d9:
43:47:6b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:46 2024 by rpki-client on console-fra.rpki-client.org