Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/BvZ0fe5M3O4xJvb4QeWfaZ25rBg.roa
File: BvZ0fe5M3O4xJvb4QeWfaZ25rBg.roa (raw, json)
Hash identifier: PQj1GshYBVskFTeKj+6Es71Rj0WnJgEc0Sv5I4zil8Q=
Subject key identifier: 06:F6:74:7D:EE:4C:DC:EE:31:26:F6:F8:41:E5:9F:69:9D:B9:AC:18
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01F6FD62
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/BvZ0fe5M3O4xJvb4QeWfaZ25rBg.roa
Signing time: Fri 11 Mar 2022 07:23:58 +0000
ROA not before: Fri 11 Mar 2022 07:23:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 193.108.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32963938 (0x1f6fd62)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Mar 11 07:23:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06f6747dee4cdcee3126f6f841e59f699db9ac18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:c9:5a:96:8a:b8:90:2e:5b:27:d4:69:a7:c0:
f5:45:c4:a7:2c:b4:37:fa:6d:e9:94:bd:0d:7a:3c:
a2:b1:d4:c7:64:7e:01:ad:aa:f1:7e:fc:22:2f:6f:
38:51:8c:f3:e0:e3:6a:a5:90:df:65:b4:98:79:63:
7e:04:3c:28:43:5a:43:ef:63:92:5b:c6:97:e7:70:
78:47:2f:0e:f2:70:1b:a7:ee:50:01:a4:c6:2e:db:
75:94:4c:fb:bf:52:65:a5:10:0f:e8:0d:90:46:30:
55:4b:e5:85:bc:28:7d:10:d9:e0:ff:57:aa:55:32:
26:53:33:d4:48:6a:20:68:31:8a:85:79:65:8a:a4:
ce:0f:ed:68:14:7f:5c:9f:22:60:6b:1f:07:6e:cc:
b7:28:18:6e:4e:e8:94:6a:32:34:ba:eb:7a:4b:ba:
1f:4d:85:67:da:03:43:c0:26:d6:45:dd:1c:fc:f8:
7c:41:bb:a9:84:c2:e3:b8:06:75:f5:be:23:00:6e:
72:55:10:7c:ab:92:8a:6a:50:94:20:56:52:a3:4e:
84:ee:61:88:bf:11:a1:c1:59:98:70:0d:ea:84:9e:
e2:3a:89:d6:1c:09:11:5b:5f:ba:17:b7:bc:ec:0c:
ce:0c:9a:07:6e:83:fd:9d:dc:60:62:e4:b5:50:04:
fe:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:F6:74:7D:EE:4C:DC:EE:31:26:F6:F8:41:E5:9F:69:9D:B9:AC:18
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/BvZ0fe5M3O4xJvb4QeWfaZ25rBg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.104.0/23
Signature Algorithm: sha256WithRSAEncryption
84:8e:91:d4:d7:91:09:f5:42:1b:bb:cf:8e:57:99:bd:a1:21:
44:1d:5c:8b:68:d3:95:6c:4c:a1:43:22:b0:6b:a7:67:ff:c0:
fc:80:79:ab:76:bd:07:cf:1b:d3:db:22:04:00:87:8c:26:fd:
f4:c4:f1:50:f3:a8:7a:e8:1f:62:d8:f5:83:af:13:28:88:66:
16:6d:1a:0d:1f:a5:ba:19:fd:ef:fa:44:9d:ac:e7:14:05:be:
69:bf:1a:0a:2c:79:6c:a7:2e:40:b9:61:18:7a:af:2f:26:34:
d1:19:81:e4:2b:e0:ff:99:b4:25:aa:8d:97:b2:72:3a:20:31:
0c:c2:5b:0e:92:63:64:bc:5c:6e:20:c2:ac:41:2d:c8:7b:ca:
9a:93:27:68:b5:31:51:35:ea:af:21:5c:c1:27:6d:ed:b2:e7:
69:ba:72:6c:1e:92:f4:ea:4c:f2:4e:96:10:ec:37:71:a7:93:
4e:c4:98:c2:eb:ca:b2:ee:9f:28:ae:ee:32:93:b5:be:2c:7f:
74:ff:cd:85:c3:9f:12:ca:a5:71:4a:ad:dd:28:d1:96:94:a5:
37:54:80:32:1d:c6:2c:35:2e:0b:36:72:42:f3:73:a4:f5:e8:
99:eb:73:25:68:08:ef:b0:42:ed:02:ad:d0:af:18:bc:87:06:
94:d2:f1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org