Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/5f38a6-a97e-4861-ab3e-85212b9d159b/1/of6p8rVwtBOtJavSHZlyjWgqtaw.roa
File: of6p8rVwtBOtJavSHZlyjWgqtaw.roa (raw, json)
Hash identifier: qKxc5SbCRu0wcjNYnbunCO0/9XG4ylJfbXOZMh+icoU=
Subject key identifier: A1:FE:A9:F2:B5:70:B4:13:AD:25:AB:D2:1D:99:72:8D:68:2A:B5:AC
Certificate issuer: /CN=df53a6b719197a6e7517574d3987f31eb9e9d4c9
Certificate serial: 0F57A75A
Authority key identifier: DF:53:A6:B7:19:19:7A:6E:75:17:57:4D:39:87:F3:1E:B9:E9:D4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/31OmtxkZem51F1dNOYfzHrnp1Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/5f38a6-a97e-4861-ab3e-85212b9d159b/1/of6p8rVwtBOtJavSHZlyjWgqtaw.roa
Signing time: Sat 01 Jan 2022 01:59:32 +0000
ROA not before: Sat 01 Jan 2022 01:59:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62319
IP address blocks: 193.104.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257402714 (0xf57a75a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=df53a6b719197a6e7517574d3987f31eb9e9d4c9
Validity
Not Before: Jan 1 01:59:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a1fea9f2b570b413ad25abd21d99728d682ab5ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:66:a6:5f:0d:9a:08:a3:69:03:98:d6:8e:4e:
59:62:20:48:dd:aa:cc:24:24:8a:5b:37:fc:09:db:
c0:1d:65:f4:8b:66:75:d3:7b:36:de:8c:96:28:1f:
ef:30:cc:c7:45:d3:bc:48:98:e6:31:bf:5e:ea:80:
82:51:85:40:f9:99:13:a9:5c:42:06:85:1c:b2:fc:
10:b7:b3:6b:4c:b5:e8:93:04:b1:93:a4:59:bc:2e:
ed:30:ab:19:93:51:12:d6:2d:da:f4:51:d6:df:07:
3b:7a:3d:9a:59:38:f9:2b:71:b8:cd:ee:75:b1:36:
cf:9f:0b:f3:8f:4b:44:c4:6a:05:ad:9c:74:94:78:
26:e9:a3:01:f8:69:34:04:7c:b5:76:e7:ea:f2:27:
80:56:ee:2d:ce:f6:8a:45:fe:ac:02:0e:25:0c:ef:
df:a9:77:a7:9b:70:52:f0:08:91:90:90:36:ce:e2:
f0:d0:a8:7b:19:81:46:d3:e0:78:1d:ac:2b:a8:2a:
3b:67:24:d8:10:c8:4a:fa:4a:57:a9:a4:c9:e4:d2:
0d:9b:cc:0d:3e:18:e7:14:f8:9f:f4:5a:02:d6:20:
80:97:60:5f:d4:63:2f:24:9e:9a:18:c4:7c:b4:2f:
6e:82:0a:cf:d3:80:7c:59:73:36:ea:83:51:fb:0f:
bd:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:FE:A9:F2:B5:70:B4:13:AD:25:AB:D2:1D:99:72:8D:68:2A:B5:AC
X509v3 Authority Key Identifier:
keyid:DF:53:A6:B7:19:19:7A:6E:75:17:57:4D:39:87:F3:1E:B9:E9:D4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/31OmtxkZem51F1dNOYfzHrnp1Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5f38a6-a97e-4861-ab3e-85212b9d159b/1/of6p8rVwtBOtJavSHZlyjWgqtaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/5f38a6-a97e-4861-ab3e-85212b9d159b/1/31OmtxkZem51F1dNOYfzHrnp1Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.171.0/24
Signature Algorithm: sha256WithRSAEncryption
23:9b:60:f8:65:4c:72:a2:db:14:b2:2d:14:a3:6c:4b:de:52:
d0:43:4a:e3:f3:8a:d2:3d:1a:58:69:63:ff:71:27:c7:e2:a0:
bc:83:73:c8:bd:f0:ee:49:e2:a9:ba:8a:e6:f1:dc:c9:7e:c6:
65:95:11:00:e7:2c:7e:5b:1a:26:39:68:bd:27:98:56:be:13:
f9:18:ac:c0:ac:73:6e:1e:84:46:be:a2:37:c5:53:be:bc:0d:
40:82:69:ed:2c:bb:bb:6e:6e:e4:57:09:ef:e3:89:2e:93:c8:
f1:82:d5:73:80:47:95:f0:94:7d:d6:25:81:33:52:4d:69:c9:
d7:94:88:02:22:fb:c4:cb:05:56:01:99:ac:a0:fb:56:c4:0d:
bd:f2:07:6c:d4:c5:11:f8:b5:fe:60:6c:9d:d3:36:3f:4a:6f:
56:02:a4:a2:90:85:75:bc:22:b4:e5:5f:ea:33:64:76:f7:3e:
11:c2:32:86:af:f9:5b:b0:a9:ad:11:c5:85:c7:14:75:6c:5e:
e6:c5:fb:58:79:a6:e8:9f:90:f4:a3:d3:fc:1e:51:86:57:41:
a2:ed:b1:ad:0e:ef:a9:77:2f:13:a3:08:bb:8e:f5:9f:2b:60:
d0:78:87:99:22:d7:d6:ee:2e:01:15:b8:b0:da:0e:ad:16:0f:
1e:c7:71:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:40 2023 by rpki-client on console-ams.rpki-client.org