Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ty3cUczprlN6pVBvn7Izh6q4qug.roa
File: ty3cUczprlN6pVBvn7Izh6q4qug.roa (raw, json)
Hash identifier: 1VlcrvnQqAzBl5qRmoodamIw7/sIiF20qrhUJc9TiEg=
Subject key identifier: B7:2D:DC:51:CC:E9:AE:53:7A:A5:50:6F:9F:B2:33:87:AA:B8:AA:E8
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01A2D334
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ty3cUczprlN6pVBvn7Izh6q4qug.roa
Signing time: Tue 08 Feb 2022 17:05:59 +0000
ROA not before: Tue 08 Feb 2022 17:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.108.56.0/22 maxlen: 24
193.108.102.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27448116 (0x1a2d334)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Feb 8 17:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b72ddc51cce9ae537aa5506f9fb23387aab8aae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4f:f7:69:a1:b1:25:d4:44:d3:f0:46:84:89:
93:48:83:79:fb:20:ad:7a:d3:71:3f:4a:e4:9f:73:
9b:4c:47:b3:72:39:ab:01:1f:49:92:61:81:34:3d:
fe:a1:fa:2e:1c:88:d5:c0:07:15:0d:35:90:9a:53:
ea:ca:bf:b5:48:b3:a0:e8:ef:7f:5a:38:85:9d:ce:
e4:2e:d6:05:44:b5:c5:93:ec:e1:dd:a2:a7:b6:68:
0a:3c:1b:2e:6a:7a:fe:a1:ef:34:9e:73:d2:27:82:
1d:74:61:e5:ad:91:a3:d7:3a:2f:38:4a:45:e5:a0:
7b:ea:45:5f:2b:d9:a5:67:f5:4b:df:11:53:21:af:
03:f3:ad:99:66:fa:a3:4a:ed:1b:f0:6a:2b:eb:23:
06:8c:92:85:e2:cb:ec:4b:27:69:a9:d9:4b:7f:d7:
80:5c:51:25:51:6b:0d:b7:c6:a3:ab:6d:36:20:a4:
7a:c5:28:79:14:61:e9:dc:d3:73:d8:6a:9c:f0:98:
c3:45:2b:89:61:d4:bf:ef:e2:76:68:b7:16:af:10:
16:3e:7e:aa:75:64:c8:75:a2:4a:0a:c6:b2:e8:e3:
96:33:88:05:aa:27:a7:7f:e2:35:81:8d:70:f0:5c:
0f:ad:7f:cc:dc:6a:54:df:2b:69:a9:97:66:73:20:
c9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:2D:DC:51:CC:E9:AE:53:7A:A5:50:6F:9F:B2:33:87:AA:B8:AA:E8
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/ty3cUczprlN6pVBvn7Izh6q4qug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.56.0/22
193.108.102.0/23
Signature Algorithm: sha256WithRSAEncryption
59:48:bb:7e:24:ea:1b:c4:df:ef:65:f6:b2:0f:65:3c:26:cd:
d1:92:c9:e2:ee:f1:99:14:ce:5f:97:ad:98:7c:15:fa:96:80:
d4:1f:ca:15:ae:34:ca:94:af:71:a1:9e:cb:21:8f:49:3e:cc:
b0:04:57:21:33:48:b5:6e:8c:87:51:bf:f2:06:f5:61:b5:dd:
58:71:65:40:32:aa:41:c5:18:8b:27:72:2e:1d:b2:38:c9:b2:
2e:a3:d7:85:e7:ae:6d:63:fb:33:cd:2e:69:f3:02:17:0c:85:
87:bb:8f:95:bf:82:47:5c:7d:a1:b1:46:46:d7:f2:ce:ed:28:
bc:c9:e6:9e:fc:c8:f8:50:0e:e5:f1:78:40:c1:b8:1c:be:ed:
de:d0:af:3c:b1:bf:a7:16:72:15:1c:f9:8a:52:54:18:44:f4:
b5:75:09:6b:15:2d:6c:dc:da:2c:7e:7f:07:ac:ec:d0:ca:f0:
5b:a3:15:e0:8f:3f:13:2b:65:5f:6e:8a:5e:d3:99:4a:53:9b:
70:cf:e2:89:42:39:44:30:e3:06:bc:c1:4c:ca:7e:62:be:55:
52:42:f7:9a:c3:59:60:8c:75:d5:57:91:ad:bd:12:99:08:e6:
03:c6:93:94:b4:2d:99:97:6b:9d:b0:17:43:73:29:f4:c5:88:
39:9f:73:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org