Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/urnLhE22JlNo70or1-mvgIR5-w4.roa
File: urnLhE22JlNo70or1-mvgIR5-w4.roa (raw, json)
Hash identifier: 5iQ8lGbIvqEcJWExUsy4zyemg1+x9Vr4pWutuTb/xQI=
Subject key identifier: BA:B9:CB:84:4D:B6:26:53:68:EF:4A:2B:D7:E9:AF:80:84:79:FB:0E
Certificate issuer: /CN=fb1157e81b7c9e43360a1cb50a31401175921808
Certificate serial: 01BC61ED
Authority key identifier: FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/urnLhE22JlNo70or1-mvgIR5-w4.roa
Signing time: Wed 16 Feb 2022 20:47:59 +0000
ROA not before: Wed 16 Feb 2022 20:47:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 193.107.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29123053 (0x1bc61ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb1157e81b7c9e43360a1cb50a31401175921808
Validity
Not Before: Feb 16 20:47:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bab9cb844db6265368ef4a2bd7e9af808479fb0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:e4:1e:49:93:af:a3:dc:f0:5a:76:21:a1:5a:
dc:1f:c4:a8:69:6d:0f:a4:ed:35:36:ce:a0:7f:2a:
13:7e:7a:cc:7a:c2:d7:07:b1:66:dd:60:e1:74:5e:
a4:f0:c4:27:70:84:b4:3d:25:47:08:7e:b5:e9:9b:
88:9c:a8:79:d2:6b:5e:df:4a:b1:8e:48:f7:b9:86:
3e:e2:bd:0f:01:4d:19:29:48:ed:a6:25:17:35:be:
a9:4d:d1:f9:cb:99:64:ff:1e:3b:59:18:dc:2d:ac:
8a:fd:7c:bd:a3:6a:58:6f:21:f6:17:c0:85:a5:70:
55:a9:65:57:d4:f5:08:87:0c:6c:70:5a:d0:88:0d:
a2:9e:57:a3:cd:d9:fc:a2:b9:10:69:c3:f7:85:3a:
8e:23:dc:1f:d4:64:4c:95:6a:ff:59:1e:54:49:5b:
72:8d:cf:94:e1:34:1d:6f:39:53:c1:59:04:28:dd:
33:1d:da:f2:3f:61:49:c0:ec:f7:2d:28:a6:82:e1:
ad:b0:86:84:45:f3:5b:02:ca:60:39:e1:50:1e:9e:
b4:a1:3a:89:d5:6b:a4:40:67:ac:49:93:cc:91:68:
be:24:4d:85:77:0f:8d:dd:7d:6d:41:42:88:3a:3e:
d6:e1:1a:0b:8d:d3:ff:2e:64:c7:69:06:58:73:fe:
53:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B9:CB:84:4D:B6:26:53:68:EF:4A:2B:D7:E9:AF:80:84:79:FB:0E
X509v3 Authority Key Identifier:
keyid:FB:11:57:E8:1B:7C:9E:43:36:0A:1C:B5:0A:31:40:11:75:92:18:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/urnLhE22JlNo70or1-mvgIR5-w4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/193c71-c94a-416f-a186-416664f01a2c/1/1-xFX6Bt8nkM2Chy1CjFAEXWSGAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.21.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:a6:f3:5c:39:0e:44:c1:49:24:18:01:4c:14:6c:b5:71:18:
fa:cd:57:47:f7:9b:d7:d0:13:ab:56:64:6f:eb:14:f7:c0:ef:
aa:dd:63:05:bc:45:24:04:81:f1:3d:3d:df:fa:d4:fe:d4:b7:
37:8c:4c:e1:c3:50:b9:9f:ac:03:56:93:02:f9:b7:f6:a1:61:
50:92:d9:32:d4:57:d7:ec:95:77:20:8a:49:4b:6b:7b:8d:73:
8a:41:6f:2f:7c:52:4a:72:62:31:25:b8:53:11:18:94:a6:b7:
c7:58:6f:ac:89:10:ca:a3:84:2e:95:53:1f:1e:27:97:36:ef:
f2:d7:70:96:87:3f:21:0d:c6:72:82:3b:a6:0c:57:db:f3:0b:
08:b0:2f:62:0e:c9:55:a4:f1:4d:8a:c2:05:94:86:48:ff:10:
f2:66:96:a0:6f:40:54:b0:17:de:8a:37:a9:31:de:d3:49:01:
15:f8:5d:82:cd:2b:38:7a:40:35:38:18:4d:2b:a0:3c:aa:f8:
95:08:cd:f2:b8:e6:37:de:44:8e:9f:bf:cd:15:6f:e7:47:8a:
50:54:aa:1e:61:4e:b7:3f:1f:d4:90:52:82:a5:47:81:7d:ff:
a3:87:3c:84:59:eb:14:4e:f7:ae:86:30:35:ff:4d:3e:ed:9f:
65:10:e8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:13 2023 by rpki-client on console-ams.rpki-client.org