Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/lK35oVazle3id1ieK0E4mJcIiGQ.roa
File: lK35oVazle3id1ieK0E4mJcIiGQ.roa (raw, json)
Hash identifier: ATZWklJdj3DA1IZzg4KIclJz7NnTqWFePndtdDVPc80=
Subject key identifier: 94:AD:F9:A1:56:B3:95:ED:E2:77:58:9E:2B:41:38:98:97:08:88:64
Certificate issuer: /CN=7e0ccef6bc0e7aacddd20daf58a6008e4a8035a8
Certificate serial: 01824E7D2F21F43F32A413B3BEA910526902
Authority key identifier: 7E:0C:CE:F6:BC:0E:7A:AC:DD:D2:0D:AF:58:A6:00:8E:4A:80:35:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgzO9rwOeqzd0g2vWKYAjkqANag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/lK35oVazle3id1ieK0E4mJcIiGQ.roa
Signing time: Sat 30 Jul 2022 09:43:23 +0000
ROA not before: Sat 30 Jul 2022 09:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399641
IP address blocks: 188.93.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4e:7d:2f:21:f4:3f:32:a4:13:b3:be:a9:10:52:69:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e0ccef6bc0e7aacddd20daf58a6008e4a8035a8
Validity
Not Before: Jul 30 09:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94adf9a156b395ede277589e2b41389897088864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:56:61:60:8a:69:ca:d4:58:7d:42:83:3f:39:
95:23:b4:68:ac:52:a2:3c:26:5c:d4:1e:ee:b0:7f:
da:00:d8:c4:bb:c6:7a:1c:8f:f6:26:db:d7:73:9e:
52:e0:3f:09:b6:b5:e9:09:2e:f9:51:7c:43:29:d8:
ed:17:24:57:51:5c:86:2d:4f:3e:22:08:5e:8b:cd:
da:64:a5:a2:71:93:54:3f:a4:da:f6:71:30:d2:17:
25:d2:52:27:cf:ce:56:b5:24:f7:52:2d:d9:f6:22:
f1:63:84:89:e0:a8:d8:9d:29:6f:d0:08:b5:1f:72:
6f:c7:18:14:fa:d0:dc:be:cc:12:0a:24:13:e3:22:
92:8d:71:ce:2f:4f:c3:1a:39:e0:59:15:77:8b:4e:
e4:0e:12:f8:58:91:df:4e:19:57:20:12:42:fe:a3:
b4:f4:51:cc:78:5a:ca:12:c2:17:d2:89:f7:02:78:
3c:ae:9f:b0:37:0b:d6:97:d7:16:a7:e8:ca:13:c1:
0d:b1:b1:7a:3d:c8:b6:92:2b:a0:59:c1:a6:9b:f7:
44:55:17:51:5c:c4:1e:4f:46:0d:b5:84:61:23:c7:
e5:12:e5:15:02:51:92:7f:23:90:7c:d5:10:54:f3:
05:17:22:27:27:69:c3:82:ea:0d:4d:aa:75:93:be:
cd:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:AD:F9:A1:56:B3:95:ED:E2:77:58:9E:2B:41:38:98:97:08:88:64
X509v3 Authority Key Identifier:
keyid:7E:0C:CE:F6:BC:0E:7A:AC:DD:D2:0D:AF:58:A6:00:8E:4A:80:35:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgzO9rwOeqzd0g2vWKYAjkqANag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/lK35oVazle3id1ieK0E4mJcIiGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/fgzO9rwOeqzd0g2vWKYAjkqANag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.119.0/24
Signature Algorithm: sha256WithRSAEncryption
03:3a:cf:51:2b:c4:7f:c5:1f:32:f0:0f:a7:b0:f4:c9:cd:e0:
e6:0f:c4:5a:a2:6e:e7:fc:81:26:ec:65:01:1c:9a:dd:a5:17:
f1:01:33:58:f9:96:0b:ee:7e:02:41:c3:4f:a0:b0:23:73:cb:
ce:45:06:b5:9c:28:6a:bb:68:ed:2b:2f:80:84:53:38:74:4c:
4d:66:6c:e0:e1:ff:3f:9e:af:ea:1e:02:61:e6:59:9b:90:37:
f3:e8:ad:c2:d0:ef:90:a3:21:20:96:78:eb:d9:cb:40:68:21:
81:12:61:ec:f9:47:b9:56:92:ec:90:7e:25:d6:bc:1a:b1:69:
96:c2:5f:6d:4f:97:55:96:05:91:9d:58:de:20:be:5d:1c:ab:
2e:69:37:45:dd:0c:c6:a1:be:a6:2b:07:50:ff:5c:bb:bc:80:
90:21:6b:31:8b:5d:88:d0:41:b7:72:d7:e2:0b:e6:19:69:e6:
73:16:eb:96:ef:d1:5b:94:c4:49:41:6e:e8:c3:bf:e1:c2:d1:
40:91:c7:c4:33:49:05:62:4c:2f:b8:bd:5f:86:16:e6:27:e4:
ed:4c:ef:1a:82:ad:b5:23:7b:ff:d7:6c:cc:5c:2d:55:54:79:
71:c7:91:e3:e3:22:54:62:57:f7:05:fc:12:05:b9:15:8c:66:
d0:b1:39:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org