Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/tawoygwQfIFBb1GKKHaY1VVZX50.roa
File: tawoygwQfIFBb1GKKHaY1VVZX50.roa (raw, json)
Hash identifier: d/dbC8uXuE7MnIHS+bDRKDs887gpmULC7DQQ3JYN40g=
Subject key identifier: B5:AC:28:CA:0C:10:7C:81:41:6F:51:8A:28:76:98:D5:55:59:5F:9D
Certificate issuer: /CN=e706fc9729034bfb0464dd4c985f14ba210e81e3
Certificate serial: 0414D6DD
Authority key identifier: E7:06:FC:97:29:03:4B:FB:04:64:DD:4C:98:5F:14:BA:21:0E:81:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5wb8lykDS_sEZN1MmF8UuiEOgeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/tawoygwQfIFBb1GKKHaY1VVZX50.roa
Signing time: Sat 01 Jan 2022 14:06:07 +0000
ROA not before: Sat 01 Jan 2022 14:06:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48391
IP address blocks: 193.200.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68474589 (0x414d6dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e706fc9729034bfb0464dd4c985f14ba210e81e3
Validity
Not Before: Jan 1 14:06:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b5ac28ca0c107c81416f518a287698d555595f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:a4:51:6f:c8:ea:87:4f:53:45:e1:7f:12:1e:
61:c3:9b:fe:ff:df:34:d9:a4:ee:69:80:2c:0c:2f:
e9:fd:e9:cc:16:83:0a:0b:67:b7:56:4d:dc:8a:bd:
d6:0e:b6:f0:c4:78:00:87:19:02:cd:6d:31:69:6e:
d5:6b:39:80:b7:b5:60:8d:2b:98:87:a2:81:86:bf:
fd:aa:a6:cd:7e:ec:c8:5f:1a:07:9b:39:cc:3d:7b:
07:52:34:f2:b2:f7:15:1d:db:01:96:d6:03:0a:f3:
4f:19:45:76:ff:9c:6d:b5:9d:79:c1:37:d0:15:e8:
de:a5:32:a6:94:27:f9:1f:b4:a1:17:09:78:0b:58:
88:c2:23:d9:53:9b:9d:c8:6a:12:36:30:dd:6b:2b:
e3:02:60:21:eb:e7:01:1f:78:b2:d5:e9:dc:81:8f:
d0:80:ff:18:79:4b:46:0a:02:c5:8c:b3:51:05:d6:
a4:86:dd:84:38:14:0d:72:60:f2:1f:c0:b2:04:4c:
69:43:0e:6f:bf:1a:16:d8:51:8b:4e:6e:1d:85:42:
1f:2d:cd:f3:7f:12:49:a3:d6:d3:8d:cd:3f:f4:57:
d6:4f:70:05:68:a2:62:d7:73:7d:7a:32:f5:37:dc:
ea:80:dd:54:e3:5f:78:d9:b5:1f:60:da:7f:90:04:
84:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:AC:28:CA:0C:10:7C:81:41:6F:51:8A:28:76:98:D5:55:59:5F:9D
X509v3 Authority Key Identifier:
keyid:E7:06:FC:97:29:03:4B:FB:04:64:DD:4C:98:5F:14:BA:21:0E:81:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5wb8lykDS_sEZN1MmF8UuiEOgeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/tawoygwQfIFBb1GKKHaY1VVZX50.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/476383-f6da-4e0e-8e12-d2dcf05d3376/1/5wb8lykDS_sEZN1MmF8UuiEOgeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.148.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:57:df:52:c5:43:d1:ae:17:b8:6b:37:ab:05:58:a5:6e:5b:
51:a7:84:88:2a:1c:10:1d:66:c0:e2:90:7b:f8:46:f7:a6:d1:
7c:88:17:a3:b0:a5:cc:de:71:57:69:3d:62:e9:69:da:e7:30:
a4:5b:12:21:6b:07:3a:2b:13:fa:32:b4:31:ec:2f:28:11:2e:
25:9e:c7:11:ee:6b:af:40:33:b0:2c:34:65:1f:fb:1b:32:2d:
e1:5d:da:e3:a2:f9:10:0b:de:55:8b:6b:90:53:86:e1:f3:f7:
9e:49:03:70:1d:f7:14:01:5f:fe:3b:0e:36:aa:32:cd:4e:6b:
04:37:5b:0a:42:05:e2:4f:cf:22:78:be:2b:d5:88:46:ca:c3:
45:cb:ce:6a:57:47:cf:3c:2b:90:dc:7c:e2:41:be:dd:27:1a:
3e:86:7b:48:9e:3b:11:01:e1:af:c1:f3:78:18:ab:35:db:20:
e2:57:07:39:21:74:8e:2f:b6:48:62:2b:1d:c3:d2:86:da:bd:
ea:1a:0b:96:27:48:fc:13:c2:17:38:23:61:97:5e:87:49:08:
b1:9c:c8:1a:39:93:27:d2:fd:69:08:0e:de:1b:fc:c7:42:48:
73:96:f7:db:20:f5:07:03:37:d5:df:70:fd:09:c4:d3:27:ce:
81:55:01:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:06 2023 by rpki-client on console-fra.rpki-client.org