Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/OQfRzj64q0YiIwFzbqk7j6-Vfj4.roa
File: OQfRzj64q0YiIwFzbqk7j6-Vfj4.roa (raw, json)
Hash identifier: QcE7r2BwQmLrTuoeNOoYnwP+tGNFoxc5VHeg6QVlyAg=
Subject key identifier: 39:07:D1:CE:3E:B8:AB:46:22:23:01:73:6E:A9:3B:8F:AF:95:7E:3E
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 0184ECAD0A05FA2EFFA4563E75D7CEE783C2
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/OQfRzj64q0YiIwFzbqk7j6-Vfj4.roa
Signing time: Wed 07 Dec 2022 13:01:14 +0000
ROA not before: Wed 07 Dec 2022 13:01:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.108.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ec:ad:0a:05:fa:2e:ff:a4:56:3e:75:d7:ce:e7:83:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Dec 7 13:01:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3907d1ce3eb8ab46222301736ea93b8faf957e3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:78:01:56:ef:74:91:b6:61:69:34:ca:c1:4c:
ea:30:ae:d6:a3:51:91:05:ea:52:5d:48:a0:42:f8:
61:03:25:4e:13:92:4c:e3:c3:b1:b3:49:11:0c:33:
0c:b4:ff:7c:e7:99:7d:b9:5b:c6:37:ed:38:1c:be:
44:e1:c7:12:ef:29:4a:46:99:f1:31:70:c4:9d:cc:
95:5b:be:78:f1:a3:e5:ee:4a:62:31:7a:02:42:c5:
9d:84:4d:90:41:33:3b:7d:a6:fd:2e:58:bd:86:53:
ae:14:d6:4c:9a:bd:b6:28:b8:4e:24:b2:2b:ae:f7:
c2:4a:88:9a:90:7d:4e:67:43:4f:29:62:16:37:45:
c2:e6:4b:ba:25:9a:21:97:2d:17:ab:59:0f:d3:19:
5e:6a:cf:f5:52:4d:68:64:55:78:5e:d7:56:f6:1c:
22:62:56:b3:64:b4:ad:fd:ca:76:a2:5c:84:89:15:
58:42:34:ed:e9:48:1a:56:ae:dc:7c:33:25:b0:c8:
26:52:49:09:c6:08:d3:b0:3f:ff:2d:9d:46:89:4e:
a3:2c:bc:01:51:42:0c:26:80:ce:57:af:15:77:32:
5c:94:8e:c1:d1:8d:24:1c:b8:93:87:69:c9:0f:9c:
4a:0c:bc:ee:52:1e:91:13:94:66:ca:7b:2b:99:36:
38:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:07:D1:CE:3E:B8:AB:46:22:23:01:73:6E:A9:3B:8F:AF:95:7E:3E
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/OQfRzj64q0YiIwFzbqk7j6-Vfj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.57.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d1:6f:fc:f8:fb:36:ca:65:29:97:f6:15:c8:3a:29:16:57:
c0:1b:18:73:a3:57:0d:f0:b4:33:53:14:78:77:dd:e2:64:5e:
bb:14:cd:27:29:a7:d1:75:ee:0d:4e:d2:47:1f:1c:fc:ad:b3:
be:30:fa:78:1c:a1:21:6d:ad:4a:23:af:e3:41:a5:c1:73:88:
38:ea:62:34:59:f8:94:88:ca:c0:fa:a2:86:ef:8b:84:f5:ac:
1a:cc:fb:c4:68:60:c8:7a:38:28:b6:81:5b:06:ff:2b:49:39:
5f:b7:32:81:04:f9:1a:24:cc:5e:91:bf:39:2c:27:aa:dd:6d:
88:b4:a4:48:a9:ad:8f:b4:93:0d:da:b4:6c:a2:7b:7f:77:90:
7f:2d:63:6a:c1:cd:d4:84:bf:15:2b:8b:dd:44:95:05:8a:a0:
6e:e6:23:df:81:b6:6f:1a:ec:64:27:9b:57:e9:3d:84:be:f1:
55:2b:51:6a:47:b9:d3:a5:ba:89:e4:ed:33:3b:20:e5:07:86:
6f:b8:04:6f:47:9c:37:03:d7:e7:2d:61:f1:bf:d9:9d:9a:bb:
41:dc:d8:00:9f:02:72:88:e7:68:22:07:dd:19:49:9b:a8:75:
39:b7:29:17:1a:45:9b:31:ca:c4:e1:e7:5d:eb:bd:c6:b0:20:
2f:a2:eb:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org