Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/c931bc-e90c-4aa9-917c-4a2567aa5fce/1/Sod65VV4Pq0qDvY5RI-_PybP1TM.roa
File: Sod65VV4Pq0qDvY5RI-_PybP1TM.roa (raw, json)
Hash identifier: aXhG2H8K66zZ60LJfEOdOjjQ7qEy/o4xYcwzaI/HrF8=
Subject key identifier: 4A:87:7A:E5:55:78:3E:AD:2A:0E:F6:39:44:8F:BF:3F:26:CF:D5:33
Certificate issuer: /CN=7b94377f71a28799169ee5f2810d9f87cc6ad1b2
Certificate serial: 4792B6
Authority key identifier: 7B:94:37:7F:71:A2:87:99:16:9E:E5:F2:81:0D:9F:87:CC:6A:D1:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e5Q3f3Gih5kWnuXygQ2fh8xq0bI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/c931bc-e90c-4aa9-917c-4a2567aa5fce/1/Sod65VV4Pq0qDvY5RI-_PybP1TM.roa
Signing time: Wed 29 Jun 2022 07:08:02 +0000
ROA not before: Wed 29 Jun 2022 07:08:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48314
IP address blocks: 193.238.88.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4690614 (0x4792b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7b94377f71a28799169ee5f2810d9f87cc6ad1b2
Validity
Not Before: Jun 29 07:08:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a877ae555783ead2a0ef639448fbf3f26cfd533
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:40:7e:e2:56:1a:c3:de:12:4d:56:6d:2a:6a:
20:54:33:95:3a:25:f7:c6:48:7d:de:33:9b:d8:a8:
71:cb:f7:b8:7d:26:a9:2a:48:f9:68:13:8d:95:b6:
41:b2:61:2d:d5:e4:e8:00:bd:62:d8:fa:95:6f:3b:
b8:ca:be:cb:dd:ac:cb:89:9a:fc:e8:58:8c:07:22:
b4:e6:b9:78:b6:b6:24:f4:a7:2c:03:71:c5:31:7b:
5c:8c:04:68:1e:e3:5c:fd:7c:df:52:86:8d:83:f5:
d6:c2:c2:47:b3:a9:01:4b:0d:ea:29:cd:5f:c7:86:
1b:7b:8d:3e:f2:e1:69:bf:36:36:73:60:00:e5:18:
53:44:93:74:05:96:13:a6:5f:cf:5a:91:64:aa:86:
a0:d7:06:71:ab:0e:36:25:93:6f:be:ed:a8:b0:5a:
ea:c4:e3:92:79:8d:ba:3b:97:ec:47:70:f6:84:d5:
ab:e1:bf:71:a9:f9:57:d8:36:27:61:99:48:19:a8:
a6:57:0d:2b:f9:49:37:4a:ce:31:86:75:ec:c4:b8:
cc:b2:58:14:d6:f4:c1:fc:58:2f:b6:3e:5c:82:03:
f5:3b:1d:c5:c5:b4:f8:5c:7f:5c:2e:b1:4c:3f:d2:
86:cf:be:16:b5:e4:bb:80:8a:d8:eb:cf:0c:a3:bc:
f5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:87:7A:E5:55:78:3E:AD:2A:0E:F6:39:44:8F:BF:3F:26:CF:D5:33
X509v3 Authority Key Identifier:
keyid:7B:94:37:7F:71:A2:87:99:16:9E:E5:F2:81:0D:9F:87:CC:6A:D1:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5Q3f3Gih5kWnuXygQ2fh8xq0bI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c931bc-e90c-4aa9-917c-4a2567aa5fce/1/Sod65VV4Pq0qDvY5RI-_PybP1TM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/c931bc-e90c-4aa9-917c-4a2567aa5fce/1/e5Q3f3Gih5kWnuXygQ2fh8xq0bI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.88.0/22
Signature Algorithm: sha256WithRSAEncryption
55:db:b5:cf:80:23:41:05:66:e9:57:e5:b0:83:f0:e8:99:92:
e6:1b:72:9a:6e:36:d2:1d:96:a1:1c:3c:15:1b:b8:0c:43:43:
ff:a5:43:fd:f1:26:86:e7:52:9a:40:d6:00:60:ee:d7:ab:78:
8e:8f:e8:67:b9:99:bd:21:d4:7b:76:63:20:85:3e:f8:10:20:
f8:5e:a5:7f:9a:a6:c9:32:41:d3:13:aa:91:90:95:45:9e:18:
ae:54:18:4e:75:1f:22:ef:1e:e1:1c:69:21:8b:cc:e1:f0:ad:
84:63:11:1a:d9:8e:cc:99:26:ff:73:80:bf:06:64:9f:b9:07:
5f:6b:c0:d8:9d:cd:3a:3d:5a:0f:74:48:72:2b:9a:95:d4:7b:
fe:ac:1d:6b:e1:b6:02:d4:de:28:f7:f0:22:37:77:95:b3:36:
78:43:1e:86:a6:43:9b:36:85:ae:1b:1c:30:26:6d:5c:dc:a9:
4e:dd:2d:43:9c:62:bd:52:62:f0:7b:8c:27:c0:7b:c8:0d:30:
e7:2b:e6:23:62:ff:9c:63:63:cb:76:23:6d:bd:ae:fc:3c:78:
9f:df:c7:1a:e1:a7:25:02:00:c5:90:09:37:6a:b1:a5:b9:c7:
fd:7a:c3:b9:88:4c:e3:28:23:43:05:e7:27:45:aa:cf:07:37:
cd:0b:e1:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:18 2023 by rpki-client on console-fra.rpki-client.org