Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d012f0-6b89-40dc-bd56-b354c039375a/1/8hxNkPAp4yiS6N3qqELSOU65bLk.roa
File: 8hxNkPAp4yiS6N3qqELSOU65bLk.roa (raw, json)
Hash identifier: WOTDtSvxW9o85iCDi+Pe9aSzhbdR1JcgkuDybslAu+4=
Subject key identifier: F2:1C:4D:90:F0:29:E3:28:92:E8:DD:EA:A8:42:D2:39:4E:B9:6C:B9
Certificate issuer: /CN=403d63b32e71c1c169243efdb6d56ed5ca6b824e
Certificate serial: 054A98FF
Authority key identifier: 40:3D:63:B3:2E:71:C1:C1:69:24:3E:FD:B6:D5:6E:D5:CA:6B:82:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QD1jsy5xwcFpJD79ttVu1cprgk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d012f0-6b89-40dc-bd56-b354c039375a/1/8hxNkPAp4yiS6N3qqELSOU65bLk.roa
Signing time: Sat 01 Jan 2022 10:57:15 +0000
ROA not before: Sat 01 Jan 2022 10:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15576
IP address blocks: 193.47.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88774911 (0x54a98ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=403d63b32e71c1c169243efdb6d56ed5ca6b824e
Validity
Not Before: Jan 1 10:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f21c4d90f029e32892e8ddeaa842d2394eb96cb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cd:d3:80:e1:68:06:81:8f:72:da:37:9a:f7:
8b:f9:a8:dc:34:ec:0d:b3:c5:70:50:7f:82:ec:12:
3b:03:fd:08:ee:91:57:d0:32:eb:4f:60:6b:62:06:
13:c0:08:0f:92:1b:fe:8f:b0:83:83:6d:53:c8:1c:
08:93:d2:8a:5e:8f:76:aa:d2:f3:19:73:0a:93:56:
d1:67:75:53:db:ae:b3:ab:9e:74:66:c9:b0:66:5c:
c3:5d:4a:f1:a2:d3:84:ef:73:fd:76:2a:e7:89:fc:
4a:7f:1e:c4:f6:4b:d4:19:b6:e6:68:64:24:4f:e1:
42:02:a3:cc:11:30:e0:7a:16:de:c1:de:fc:88:0a:
3e:96:28:95:41:c4:4f:49:d4:29:ba:24:14:b8:c2:
89:1f:74:60:3a:5c:a7:49:9b:61:4f:8a:ff:1f:10:
72:b3:4e:3f:ea:dd:62:62:99:cd:a6:53:b5:5e:ce:
5e:b9:6a:b1:4e:36:18:93:1e:ea:3d:3a:de:63:29:
76:83:05:d6:e2:50:e5:1c:b0:1a:17:ae:76:95:b0:
86:16:03:55:c4:95:91:b2:0e:c5:20:f1:07:d8:11:
64:bf:72:9c:5b:e2:f4:9b:34:ca:04:a4:92:ab:88:
be:83:e5:8f:8d:0d:1d:f4:ad:49:f6:a7:24:97:60:
48:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1C:4D:90:F0:29:E3:28:92:E8:DD:EA:A8:42:D2:39:4E:B9:6C:B9
X509v3 Authority Key Identifier:
keyid:40:3D:63:B3:2E:71:C1:C1:69:24:3E:FD:B6:D5:6E:D5:CA:6B:82:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QD1jsy5xwcFpJD79ttVu1cprgk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d012f0-6b89-40dc-bd56-b354c039375a/1/8hxNkPAp4yiS6N3qqELSOU65bLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d012f0-6b89-40dc-bd56-b354c039375a/1/QD1jsy5xwcFpJD79ttVu1cprgk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.190.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:50:ae:c1:41:59:92:e1:ea:20:32:b8:0d:c5:0c:b6:c3:ce:
b6:59:7a:1d:0c:cb:22:6c:8a:94:60:0d:c2:6d:53:f7:18:e4:
12:f2:62:26:4c:b8:2b:7b:eb:4e:22:ff:c0:65:9f:af:51:80:
4b:ac:0c:87:2c:f5:bc:94:b6:a0:62:1c:07:64:69:96:51:e8:
b3:5d:77:11:3e:c2:0d:c5:98:9d:cb:f3:1b:69:73:1e:0f:24:
82:7b:d1:7f:45:70:81:6b:9e:83:a7:64:f0:10:24:ad:b6:7c:
c3:92:09:e2:77:63:b1:76:8e:53:1f:2f:52:f7:1f:31:4d:a8:
d9:d8:26:cc:fe:7d:8e:07:2c:d0:ba:c1:81:cc:0f:72:e8:13:
c7:1a:a3:21:9e:8c:3c:be:63:35:51:29:dd:cd:9a:87:63:cc:
d9:53:e5:76:1a:52:d1:80:88:40:ff:f3:be:fd:86:a5:6b:32:
35:ec:47:05:75:05:18:32:7e:94:11:94:b0:e6:4c:24:cd:1d:
60:50:7b:dd:c9:24:0b:3c:52:af:3e:18:e4:a9:6f:a1:08:e5:
7a:ed:d5:17:da:de:64:6b:7e:14:d1:db:70:91:12:1d:c3:14:
8b:28:3c:a2:5a:05:fb:e1:a5:55:1a:a4:56:e5:5e:f7:8e:43:
30:4f:8f:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:32 2023 by rpki-client on console-fra.rpki-client.org