Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/7ocytCWRIOBDM1xNmoPCwvn7gyg.roa
File: 7ocytCWRIOBDM1xNmoPCwvn7gyg.roa (raw, json)
Hash identifier: B4Y323gbvQYiKEIXoxe5FD8dCkv/cG0l3WSkk+khYYE=
Subject key identifier: EE:87:32:B4:25:91:20:E0:43:33:5C:4D:9A:83:C2:C2:F9:FB:83:28
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01F6D952
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/7ocytCWRIOBDM1xNmoPCwvn7gyg.roa
Signing time: Fri 11 Mar 2022 07:23:56 +0000
ROA not before: Fri 11 Mar 2022 07:23:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 193.108.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32954706 (0x1f6d952)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Mar 11 07:23:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee8732b4259120e043335c4d9a83c2c2f9fb8328
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e6:8c:36:00:b1:79:ee:31:ec:2e:d7:3f:da:
19:34:46:93:b2:01:91:eb:29:4a:54:5c:65:05:98:
73:21:1c:67:38:71:16:b8:ad:a8:17:c5:46:f0:e2:
74:03:3a:dc:7b:00:22:98:03:fc:d9:81:04:fb:d3:
82:40:6c:3a:00:68:71:41:7a:02:4d:44:c2:0f:fe:
25:4c:3e:29:4b:2e:db:b0:f8:ef:4c:51:ec:51:0b:
74:1d:2a:bc:76:7c:6b:fb:f1:69:79:98:6a:aa:9e:
1e:31:cb:21:b0:2d:1c:2c:3a:55:e4:63:30:3e:6e:
1c:b5:93:dc:46:c2:63:fa:e0:10:2c:90:98:52:7f:
22:23:f2:47:3b:77:28:81:ac:32:90:40:7d:6e:92:
a0:57:48:34:d8:76:64:a3:6e:b5:01:7f:ae:3d:2c:
e7:9d:1a:d7:2e:91:c9:42:bd:d9:24:82:2b:40:09:
75:f6:1a:48:c2:35:37:92:44:ab:5a:24:49:11:5e:
1e:be:19:7a:b4:06:02:7a:ba:57:ad:e7:4c:d3:55:
fb:d1:a7:83:dd:a5:3c:0a:92:b8:b4:88:2b:41:81:
17:b2:cd:72:aa:98:d6:e0:69:5f:58:ef:5e:3f:04:
9d:99:df:b2:75:18:af:d4:51:a4:f4:fb:23:7a:b5:
87:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:87:32:B4:25:91:20:E0:43:33:5C:4D:9A:83:C2:C2:F9:FB:83:28
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/7ocytCWRIOBDM1xNmoPCwvn7gyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.104.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:ba:86:e2:b3:ae:e3:b4:bb:ab:3b:9e:2a:b8:6b:8c:1b:c8:
23:49:64:55:d4:05:db:8a:1e:74:76:69:65:5a:d5:9d:5a:0c:
2a:8d:30:83:fe:03:02:b3:58:04:99:c7:05:57:2e:0e:f6:f2:
81:9b:97:94:51:30:f7:9f:96:80:13:96:22:d0:94:8a:6c:9c:
10:b0:b3:a8:97:f5:cf:99:74:60:a4:73:20:66:a9:18:f9:12:
71:c1:3f:fb:75:e9:27:22:57:6d:28:00:59:96:8f:37:61:f8:
61:5d:3c:8e:05:a1:ca:6f:0e:56:13:3e:2c:37:5a:7b:69:95:
81:06:f9:44:43:71:fc:d1:77:d4:e5:99:2f:5a:b4:71:63:9c:
00:8b:6f:3a:d2:c8:c1:4d:86:55:c2:2e:3f:7b:80:8e:fc:34:
c6:28:1b:9a:fc:26:ba:11:cf:07:e7:ef:4f:e3:c5:ab:50:c4:
10:b1:c2:16:89:ef:ea:ad:19:d7:d5:19:7f:14:01:8a:01:eb:
07:b1:4d:8a:6b:87:28:3e:96:79:85:fa:b5:d4:b4:16:20:73:
e1:eb:1c:2e:31:4a:2d:51:5d:c4:1d:45:20:4d:3a:8c:d0:58:
3f:11:8a:6d:c8:18:b6:63:b8:9a:2a:4c:29:77:63:c0:18:45:
f3:30:a1:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org