Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/fc9927-63fe-4e3b-bf28-62877fe48618/1/xjwXR7g4XDFg0s1thTBRttcHo6g.roa
File: xjwXR7g4XDFg0s1thTBRttcHo6g.roa (raw, json)
Hash identifier: SVXCfFRQivx9hYS1cCKnTzlOeSS1MZMSi5kwTzsfApo=
Subject key identifier: C6:3C:17:47:B8:38:5C:31:60:D2:CD:6D:85:30:51:B6:D7:07:A3:A8
Certificate issuer: /CN=69af70bda77cf858e164d6b7c709e878fd1a6045
Certificate serial: 11003526
Authority key identifier: 69:AF:70:BD:A7:7C:F8:58:E1:64:D6:B7:C7:09:E8:78:FD:1A:60:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aa9wvad8-FjhZNa3xwnoeP0aYEU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/fc9927-63fe-4e3b-bf28-62877fe48618/1/xjwXR7g4XDFg0s1thTBRttcHo6g.roa
Signing time: Sat 01 Jan 2022 14:04:35 +0000
ROA not before: Sat 01 Jan 2022 14:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28878
IP address blocks: 194.53.72.0/22 maxlen: 22
193.177.160.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 285226278 (0x11003526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69af70bda77cf858e164d6b7c709e878fd1a6045
Validity
Not Before: Jan 1 14:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c63c1747b8385c3160d2cd6d853051b6d707a3a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c0:39:e7:f0:53:df:c2:93:bd:f4:de:27:bf:
66:b3:b9:61:e9:2f:ce:15:86:e7:35:ed:3e:68:7f:
90:2b:50:11:58:94:08:46:cf:cf:fc:14:0c:79:7f:
de:16:8c:b1:3c:69:92:37:4f:76:3c:2b:f2:8f:40:
db:db:a9:41:35:71:af:d9:cf:51:3c:a3:a7:74:1d:
bf:17:35:e4:ab:1f:aa:ed:8a:9b:7c:af:16:25:03:
77:64:b8:98:bc:d0:1f:84:47:54:98:c9:0b:09:69:
c2:44:8a:f2:0d:c8:e4:0e:8f:b9:3f:c9:cf:4a:dd:
00:c3:af:ea:85:99:79:ac:4e:23:01:b1:be:cd:c2:
b7:c8:c0:95:8e:8f:b2:3d:bc:09:e8:21:11:97:3e:
85:a7:20:f8:ba:c7:f4:8b:37:d3:47:de:4a:e1:52:
4d:03:54:9c:9e:3f:05:60:4e:2e:c0:a4:38:3a:a9:
3a:dd:d3:b2:9d:0e:2d:ae:83:77:c7:69:32:41:fd:
2a:75:31:9f:22:4e:27:57:24:62:7a:82:50:5b:05:
2e:d2:f9:23:eb:2c:08:29:5c:cb:10:22:cd:e1:97:
fe:14:41:3e:ce:98:90:26:c6:d3:1b:fc:dc:86:03:
3b:97:55:90:a7:40:8c:30:6e:d5:92:6c:c6:8a:a7:
54:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:3C:17:47:B8:38:5C:31:60:D2:CD:6D:85:30:51:B6:D7:07:A3:A8
X509v3 Authority Key Identifier:
keyid:69:AF:70:BD:A7:7C:F8:58:E1:64:D6:B7:C7:09:E8:78:FD:1A:60:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa9wvad8-FjhZNa3xwnoeP0aYEU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/fc9927-63fe-4e3b-bf28-62877fe48618/1/xjwXR7g4XDFg0s1thTBRttcHo6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/fc9927-63fe-4e3b-bf28-62877fe48618/1/aa9wvad8-FjhZNa3xwnoeP0aYEU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.160.0/23
194.53.72.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:df:8c:a4:01:50:4d:6e:83:7c:39:21:ba:6b:e3:22:ee:17:
55:c4:b9:9d:25:a0:4a:3d:31:b3:85:f5:ca:6b:83:d6:74:39:
2c:3b:b0:b2:28:77:18:88:8f:31:0a:25:6f:81:d5:c6:27:26:
21:f5:f1:6e:1a:40:7d:21:6d:4b:18:73:48:88:1b:39:b0:f7:
ad:98:77:5a:fa:cb:b3:f9:46:01:b9:37:2a:11:8f:75:62:43:
d7:49:65:dd:d7:27:cb:10:ea:c3:2c:d4:c3:a3:ac:70:b0:d4:
b8:aa:15:00:5e:3d:61:06:5a:8d:cb:65:93:94:f1:bb:2c:cd:
58:3a:11:57:8d:e9:1f:43:33:3a:55:fa:9c:c6:c7:ab:7f:24:
9d:e6:bc:11:b1:ec:db:0f:99:9f:da:33:45:f8:61:17:ca:de:
92:a0:f6:24:48:4c:11:80:ae:01:f4:a4:e9:66:5c:c6:33:1f:
ab:8b:ee:f4:82:3a:8a:3b:94:88:5a:df:0a:59:69:0f:09:86:
c3:36:a8:5e:71:0f:1c:e9:e0:71:17:4c:ea:f6:94:00:dc:ea:
f0:c6:28:3b:97:92:35:1a:58:04:2e:1c:a7:ee:df:a8:3a:1b:
e7:68:f5:f3:da:16:51:20:33:9d:5f:57:a8:b5:6b:0a:68:4e:
c6:af:8c:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org