Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/dCbqJE32Li4XfnPd-JJ4Ltvk-64.roa
File: dCbqJE32Li4XfnPd-JJ4Ltvk-64.roa (raw, json)
Hash identifier: vRac+tR+uoFILqm5lpl6grOiYwcVudWuyAcavA1y6KI=
Subject key identifier: 74:26:EA:24:4D:F6:2E:2E:17:7E:73:DD:F8:92:78:2E:DB:E4:FB:AE
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01A36065
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/dCbqJE32Li4XfnPd-JJ4Ltvk-64.roa
Signing time: Tue 08 Feb 2022 17:06:23 +0000
ROA not before: Tue 08 Feb 2022 17:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.107.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27484261 (0x1a36065)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Feb 8 17:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7426ea244df62e2e177e73ddf892782edbe4fbae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:dc:eb:21:2f:7d:dd:b0:75:1e:50:05:80:4c:
4f:ad:0c:f6:be:93:8e:56:ab:c9:d5:52:49:21:b6:
d5:2f:9d:41:66:00:60:88:07:02:2d:cf:f7:5b:48:
18:40:df:f8:eb:05:5f:a3:e0:b4:ca:c7:86:1e:2d:
73:15:37:38:02:3f:d2:e0:a7:31:20:f7:1c:89:a4:
e2:af:09:89:80:c7:cf:84:f6:9b:e3:1f:bc:6f:19:
6e:86:d3:f1:35:8e:13:a1:87:6d:fb:c1:21:31:2e:
04:57:81:08:50:73:12:a1:eb:52:ec:76:81:de:c1:
67:be:c2:6b:37:bc:ba:2e:12:f2:63:7a:18:cc:c2:
b4:a4:28:0d:d6:4e:ca:e3:6c:5a:ef:ae:f5:f5:00:
fa:92:a5:43:38:79:01:c4:d1:42:0a:91:de:f9:7c:
fa:a1:eb:91:6d:dd:d2:0b:4a:06:8e:86:c5:e0:ae:
68:8d:fa:4a:52:05:69:48:eb:74:c9:0a:5d:3f:0c:
dc:1f:c5:03:17:78:62:9d:7e:2a:69:95:14:b4:65:
0c:02:7c:63:a2:11:87:27:3a:e7:cb:f6:69:06:33:
5d:d1:d1:5f:fb:14:16:1e:88:02:53:5c:68:a9:2c:
fe:66:71:a8:df:5a:d5:d8:ac:91:ee:5c:0a:6a:37:
c4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:26:EA:24:4D:F6:2E:2E:17:7E:73:DD:F8:92:78:2E:DB:E4:FB:AE
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/dCbqJE32Li4XfnPd-JJ4Ltvk-64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.21.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:6e:4d:e4:fd:e0:c4:37:d3:30:00:a4:12:ca:e0:6d:d6:2c:
9c:c1:78:b5:7d:2d:3f:27:db:a4:b6:a6:b5:3a:6a:24:13:b7:
83:db:22:cc:df:d9:84:70:02:1a:91:d2:63:fc:76:d3:6d:42:
49:68:7e:bd:f1:f5:49:db:13:1a:29:40:4b:a8:52:65:08:75:
a4:e5:b2:20:94:d5:47:a7:25:f6:6e:c8:e2:37:0f:ee:ab:99:
97:4f:7b:cd:92:80:23:a1:63:af:43:07:a2:2a:61:48:10:f8:
5b:1a:d4:f7:00:67:14:4a:9e:c4:82:5e:72:5d:9d:66:79:61:
5f:5d:cb:ac:20:e5:20:7c:e3:43:b3:18:fc:cb:19:cf:b4:59:
03:05:e4:f5:59:d1:97:00:a0:dd:84:cd:4f:0f:26:34:a0:a1:
9c:30:b9:4e:e1:e8:e5:9b:0a:62:f3:6d:08:30:e2:7a:61:43:
48:bd:76:83:90:c4:28:16:c5:9b:73:36:f7:68:b8:ec:c4:fd:
95:45:f3:78:d1:c6:64:61:67:44:52:92:44:02:e2:14:4c:e4:
fc:b6:56:6d:59:51:6c:6d:b4:88:65:a4:ce:6b:04:4c:7f:46:
dd:46:11:e0:0e:e3:31:64:da:20:4e:3e:f9:ed:3c:e9:93:6f:
2b:c7:fa:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org