Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/RSf0SyD6nae4shiHHll5_6Ps-ak.roa
File: RSf0SyD6nae4shiHHll5_6Ps-ak.roa (raw, json)
Hash identifier: 1Kei/3Bz79LcpU2EJtyXpcYrU3Yzplk0uTAZqutRxDU=
Subject key identifier: 45:27:F4:4B:20:FA:9D:A7:B8:B2:18:87:1E:59:79:FF:A3:EC:F9:A9
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 018248F3098B639D88FB7680B10CD8BBF502
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/RSf0SyD6nae4shiHHll5_6Ps-ak.roa
Signing time: Fri 29 Jul 2022 07:54:23 +0000
ROA not before: Fri 29 Jul 2022 07:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210421
IP address blocks: 193.107.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:48:f3:09:8b:63:9d:88:fb:76:80:b1:0c:d8:bb:f5:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Jul 29 07:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4527f44b20fa9da7b8b218871e5979ffa3ecf9a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4c:a3:a0:b6:91:5d:f9:bf:b6:5f:6b:9e:c2:
cb:40:ff:33:d4:57:d8:36:1f:dd:7d:27:b1:e5:4b:
af:63:d6:d7:e9:48:5a:82:2f:bd:5f:3f:73:90:1c:
d6:85:28:52:d2:d1:31:2e:37:84:11:1d:c3:6c:ea:
5e:0b:0f:ec:36:b1:b5:2e:fb:67:ac:96:99:e3:c3:
2f:4f:62:91:2a:f1:6b:61:f4:b2:63:21:27:be:2e:
14:0c:53:2c:9d:1e:1f:70:85:f5:a8:3a:e0:af:13:
2e:a0:b4:02:18:ea:36:dc:3f:51:37:ae:2e:1e:f4:
55:a5:52:3f:ad:7a:1b:61:98:07:d1:d0:e7:8b:85:
42:82:b8:7e:d0:07:70:1c:6f:75:bb:9a:45:92:ee:
db:2b:d2:85:03:38:8c:19:bf:96:54:7b:81:49:58:
68:c7:c8:db:f9:35:6e:f7:8e:d7:93:90:22:80:d0:
19:b7:f0:52:21:92:d4:e9:1e:3f:5f:4a:34:d4:fb:
0b:23:2e:42:eb:07:d8:ea:5e:b0:76:e4:f2:7d:f2:
12:77:76:f6:df:43:eb:fd:e1:71:83:ca:22:66:f2:
42:45:03:fe:e8:f6:54:36:2f:20:68:e6:d5:43:7a:
6d:d3:0f:5e:76:d5:5d:c6:ed:27:ef:d1:42:68:a1:
90:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:27:F4:4B:20:FA:9D:A7:B8:B2:18:87:1E:59:79:FF:A3:EC:F9:A9
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/RSf0SyD6nae4shiHHll5_6Ps-ak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.21.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:80:db:6e:88:83:0e:5b:a2:f3:f2:e6:51:ea:70:dc:ae:45:
50:37:47:fd:0f:ac:4d:d0:09:c9:eb:d0:3c:75:e1:e2:aa:6c:
2b:f5:b4:47:9f:c3:6c:c4:3f:15:23:2f:1f:a0:c8:2d:3e:1e:
80:f8:9e:c7:38:06:34:12:1e:30:33:86:b7:98:9b:87:54:5b:
8e:6b:99:da:29:53:61:85:8d:b5:51:cb:63:d9:04:df:ad:e3:
69:9a:a6:02:ae:f6:0a:da:8d:6c:f7:87:3d:91:31:9d:30:2e:
96:53:73:7a:63:b8:24:6b:f3:e0:1a:16:02:3e:15:89:c9:8f:
37:de:a2:f9:f0:d1:ea:5b:f3:d6:43:01:d0:39:99:8b:4a:38:
ec:68:10:ac:ba:41:97:99:5b:92:e0:52:fe:cd:f4:d3:a3:89:
55:77:a4:09:d3:c6:92:d5:01:6d:75:50:ff:7d:59:36:ab:55:
0d:ab:b4:03:06:51:98:9f:4d:19:7e:bb:20:1d:83:11:46:68:
64:1a:e4:73:f0:c0:b8:dd:a2:95:80:a3:88:9a:02:80:47:63:
31:76:dc:32:f0:68:fd:f0:ee:0e:a2:81:5e:0f:aa:ad:eb:ff:
38:bb:41:5a:06:1f:17:2e:8b:84:98:fb:80:82:64:28:5b:1e:
8f:36:f0:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org