Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/jUVBGow9DVfAmoLWNQkIwLrgHck.roa
File: jUVBGow9DVfAmoLWNQkIwLrgHck.roa (raw, json)
Hash identifier: Q1cgJf+D/Uv6+DTy/wTALi/ZS3QMY57C9LiU2bksEME=
Subject key identifier: 8D:45:41:1A:8C:3D:0D:57:C0:9A:82:D6:35:09:08:C0:BA:E0:1D:C9
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01F68F95
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/jUVBGow9DVfAmoLWNQkIwLrgHck.roa
Signing time: Fri 11 Mar 2022 07:22:15 +0000
ROA not before: Fri 11 Mar 2022 07:22:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 193.107.21.0/24 maxlen: 24
193.108.104.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32935829 (0x1f68f95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Mar 11 07:22:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d45411a8c3d0d57c09a82d6350908c0bae01dc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:4c:dc:21:06:2d:d1:3b:96:12:bc:51:8c:e8:
37:90:e7:8e:f2:be:c3:a5:45:36:b1:49:64:33:14:
6b:d6:26:e2:34:80:be:c8:63:4c:25:70:35:66:22:
7e:03:ee:dd:3a:c8:1a:da:75:b0:88:d9:c5:18:e7:
d8:b4:49:22:b6:dc:e7:9c:ac:0e:f9:3f:4b:1a:d3:
00:ff:8f:2e:a5:f5:b5:c2:73:46:e9:40:07:d6:6e:
ac:1c:18:ca:a4:e3:a8:0a:fc:64:82:47:46:64:14:
74:4f:a5:f5:ba:59:da:01:70:8e:dc:b0:9c:a1:18:
52:27:d9:a2:6e:2f:23:ab:02:69:d1:42:e1:11:59:
9f:0f:0d:b4:9c:27:5c:87:2f:83:5c:81:8b:6a:04:
a9:a9:d3:f2:43:f2:3f:d1:3c:ae:b6:9d:01:01:57:
2a:60:e2:6a:64:90:cf:1e:a9:70:64:f5:c6:39:07:
95:5f:b1:08:43:cf:5a:4f:4c:37:f9:2e:dd:ee:cf:
e3:ae:13:7d:cc:2c:32:ac:b5:cf:98:0d:9f:ca:1a:
79:3e:cd:ec:0b:ef:5b:e9:97:39:d7:42:be:c0:8b:
c4:76:d0:2d:d2:ac:20:33:a0:86:fd:e3:fb:5d:66:
e8:b8:cb:90:f3:26:3b:4a:59:65:e5:c1:51:cd:14:
b2:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:45:41:1A:8C:3D:0D:57:C0:9A:82:D6:35:09:08:C0:BA:E0:1D:C9
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/jUVBGow9DVfAmoLWNQkIwLrgHck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.21.0/24
193.108.104.0/23
Signature Algorithm: sha256WithRSAEncryption
12:02:a0:77:db:4f:c2:a0:b5:29:6f:62:d7:55:07:78:ad:da:
86:9b:1f:59:07:8e:43:f5:37:c6:90:ea:8a:3c:c3:19:3e:13:
97:25:8e:d4:c7:1a:9a:dd:8e:04:46:78:e7:13:44:d6:8a:6c:
f0:ae:1e:d2:16:5f:ad:1c:1a:36:e2:b7:69:ef:e5:3f:ce:76:
ba:f0:2a:46:83:14:5b:3e:1f:b5:10:cf:63:3b:d9:4b:e1:32:
36:bf:97:13:45:80:88:01:e3:bd:3a:16:92:17:fc:dc:2e:36:
92:cb:8f:ea:34:9c:84:ae:d6:c6:88:bc:21:ad:1f:06:a0:ab:
fa:2c:f1:0b:57:5d:61:df:13:b4:9c:c8:0f:84:62:42:d7:d3:
17:50:d0:ff:df:5e:4e:7e:ff:f1:cb:17:45:92:21:17:c9:0e:
9c:94:2a:96:c3:70:e8:30:b3:d3:ea:dd:50:9c:cd:14:66:38:
4d:35:40:0f:86:0a:e0:11:7b:2d:e0:1b:e9:d7:ea:61:96:25:
89:18:7a:e2:e2:ca:aa:cf:05:b7:e3:aa:ef:16:c6:b5:57:5e:
c3:8a:fa:ac:f6:3b:30:97:0e:21:35:41:40:2f:78:74:08:fb:
80:9c:2a:62:1e:45:ed:6a:db:34:62:86:0a:97:c7:83:da:9f:
ca:17:ac:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:29 2023 by rpki-client on console-fra.rpki-client.org