Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/sOTWAXqn-qYdsntAtMmDIdw0Lgs.roa
File: sOTWAXqn-qYdsntAtMmDIdw0Lgs.roa (raw, json)
Hash identifier: SRb1wruxp8NtOyp2sL/z5ftdhGz9JVBRzFHpuLXEiS0=
Subject key identifier: B0:E4:D6:01:7A:A7:FA:A6:1D:B2:7B:40:B4:C9:83:21:DC:34:2E:0B
Certificate issuer: /CN=7e0ccef6bc0e7aacddd20daf58a6008e4a8035a8
Certificate serial: 027F8051
Authority key identifier: 7E:0C:CE:F6:BC:0E:7A:AC:DD:D2:0D:AF:58:A6:00:8E:4A:80:35:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgzO9rwOeqzd0g2vWKYAjkqANag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/sOTWAXqn-qYdsntAtMmDIdw0Lgs.roa
Signing time: Tue 28 Jun 2022 20:45:03 +0000
ROA not before: Tue 28 Jun 2022 20:45:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 188.93.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41910353 (0x27f8051)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e0ccef6bc0e7aacddd20daf58a6008e4a8035a8
Validity
Not Before: Jun 28 20:45:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0e4d6017aa7faa61db27b40b4c98321dc342e0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:39:36:08:d4:f7:a1:f5:65:97:48:c1:e2:fa:
7f:78:b7:63:ab:86:69:70:a4:78:20:cb:24:34:e0:
0c:52:4f:43:ae:02:17:85:ce:f5:c0:b1:bd:c4:c2:
e3:f7:ca:dc:1a:f8:05:6c:4a:d9:6d:37:f5:9a:61:
d0:8c:99:79:3f:5e:1c:e0:03:86:c6:88:c8:16:b0:
54:31:01:85:73:af:04:ce:ae:fa:32:9a:66:d6:e6:
fd:1d:f6:9a:a2:bd:a1:94:77:ac:a9:b4:d3:6e:7a:
bd:ae:b1:be:43:90:9e:ba:1e:98:62:d0:86:36:50:
ba:78:bf:20:34:d7:30:d1:ef:77:7a:cb:95:94:03:
e0:f3:fd:d3:ed:e8:f2:cc:f9:dd:20:6b:46:22:c5:
38:89:89:85:18:fa:ab:81:05:7f:8a:6c:cd:54:c3:
4d:5b:b3:7a:a2:3f:3a:94:e4:e0:43:f4:fa:49:55:
e3:b5:3b:e4:a4:ec:c2:4d:3e:11:cb:71:2f:a5:43:
cb:c0:30:e0:ea:f5:f5:29:26:ee:ee:e8:88:1a:78:
26:c0:c4:76:38:89:06:57:0a:6d:b5:59:1c:38:2a:
04:2c:e8:19:66:a8:6f:c6:e7:66:40:74:f0:b6:34:
ad:8d:6e:14:c4:b5:a5:c1:9c:61:6d:7d:43:dc:7e:
02:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:E4:D6:01:7A:A7:FA:A6:1D:B2:7B:40:B4:C9:83:21:DC:34:2E:0B
X509v3 Authority Key Identifier:
keyid:7E:0C:CE:F6:BC:0E:7A:AC:DD:D2:0D:AF:58:A6:00:8E:4A:80:35:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgzO9rwOeqzd0g2vWKYAjkqANag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/sOTWAXqn-qYdsntAtMmDIdw0Lgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/39d818-0ae0-4a41-bc10-cca70b2a7d34/1/fgzO9rwOeqzd0g2vWKYAjkqANag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.93.119.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:f0:9c:1b:70:e8:8d:01:19:fd:4f:46:ca:fc:c4:ae:ff:34:
0d:be:f1:e7:69:ff:02:0c:14:f2:cd:6d:6f:d6:05:69:61:22:
10:db:f2:74:64:00:97:62:b4:7c:52:84:3e:3f:bc:d0:19:28:
39:15:8b:38:16:44:84:51:cb:05:c1:4b:a4:9d:ba:ea:1b:60:
30:30:96:48:3a:0b:92:55:64:42:51:8e:e9:1a:0f:62:45:fb:
89:11:10:6a:f9:f6:b3:d5:d9:cb:39:4a:c8:46:27:5e:9b:e2:
89:26:60:bb:fe:52:97:23:c2:2e:89:54:18:4a:5f:ab:6d:e8:
d3:f4:a1:7d:fe:cc:a9:17:33:2c:2f:ad:ea:01:6a:53:c4:da:
77:fe:aa:3e:7d:54:ae:b1:31:0f:a4:28:72:c4:00:be:67:c0:
cd:8f:9f:58:f5:29:3c:5e:86:f1:7f:34:90:87:c7:7a:99:8f:
6d:d6:ad:43:61:61:10:86:19:94:1a:13:01:11:8f:5d:52:e9:
d8:85:34:e8:64:9e:13:0b:b3:b9:b6:c1:78:60:44:6b:66:de:
5a:8e:24:36:69:1c:a8:93:69:64:ac:a9:be:5e:d4:79:72:54:
1e:17:93:d5:35:c4:1f:17:e2:41:eb:a8:fd:a9:0c:6a:e7:2c:
c0:58:62:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:08 2023 by rpki-client on console-ams.rpki-client.org