Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/6fWjsru963p52ItazcMnmKWxD9s.roa
File: 6fWjsru963p52ItazcMnmKWxD9s.roa (raw, json)
Hash identifier: oKf84LBpOAXNenhYkfc2liqiNJAxpLwJ3AnViki59Ok=
Subject key identifier: E9:F5:A3:B2:BB:BD:EB:7A:79:D8:8B:5A:CD:C3:27:98:A5:B1:0F:DB
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 08863E22
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/6fWjsru963p52ItazcMnmKWxD9s.roa
Signing time: Sat 01 Jan 2022 03:50:54 +0000
ROA not before: Sat 01 Jan 2022 03:50:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31117
IP address blocks: 195.168.216.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143015458 (0x8863e22)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:50:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9f5a3b2bbbdeb7a79d88b5acdc32798a5b10fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ac:64:0b:f7:09:92:b5:90:e6:71:db:34:f4:
d1:b0:cb:6f:f7:ab:d7:66:d2:05:67:01:ab:ca:3c:
c9:9a:c5:26:67:3c:ef:8f:55:b7:38:7a:fe:30:47:
1b:6a:ff:9e:8c:b6:70:ac:cb:f4:62:45:d4:25:f7:
92:6e:c5:2f:1f:44:ab:d0:a7:ba:7d:b7:7f:14:a7:
47:60:39:35:21:c7:ac:45:6a:bb:d5:84:4f:ce:46:
48:de:20:ab:bb:44:d2:28:57:70:c2:40:32:e9:98:
97:42:55:74:01:a8:17:17:ca:87:1b:8f:42:a0:c4:
00:f9:b6:99:92:72:f7:7b:81:75:71:bc:d7:a5:65:
27:a0:46:9c:95:8d:5d:5f:9b:2a:b7:33:8f:03:37:
8c:05:d0:05:e5:80:d0:51:f8:81:61:6c:b5:3e:30:
a8:bc:30:40:fd:5a:42:d7:74:3c:79:78:86:20:4f:
f8:e9:60:c6:e3:cb:ff:59:f8:41:c4:3f:df:47:5d:
26:60:64:d9:66:7e:81:f4:e9:49:90:67:5e:57:07:
02:13:8c:ae:27:5e:93:2d:10:cb:e4:09:65:fc:56:
d2:bf:c3:67:95:1e:06:c8:42:64:7d:f8:31:6e:e8:
44:c0:51:fa:aa:e3:f5:64:a2:54:e4:9b:41:c1:7d:
23:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F5:A3:B2:BB:BD:EB:7A:79:D8:8B:5A:CD:C3:27:98:A5:B1:0F:DB
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/6fWjsru963p52ItazcMnmKWxD9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.168.216.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:99:80:f1:9f:06:f5:4a:03:3a:31:f8:c0:65:91:a6:66:e4:
c5:c3:95:01:f3:8f:9e:0e:62:f7:20:cf:64:28:42:c2:45:e0:
f8:b4:12:fc:7d:d4:ce:40:3a:9c:54:73:c7:bb:f8:d6:54:26:
67:ec:ed:56:84:ee:70:53:66:82:e5:23:cc:7e:51:54:5f:d0:
04:31:97:9b:ba:05:31:5e:0a:d2:bc:12:b9:19:10:25:7f:5d:
8b:05:b4:74:7e:a5:02:2e:7a:21:40:eb:b7:dd:4e:e2:88:54:
66:6a:4d:15:b8:a2:7f:59:2f:07:60:c3:bd:df:8c:74:0c:20:
a3:74:46:c3:4f:7b:7d:5e:fe:68:8e:f9:96:5b:b0:c7:96:ee:
0d:6f:45:0e:63:42:e4:81:ef:3b:a2:94:f3:c0:7d:6b:a8:1d:
3e:44:aa:07:d9:8d:ae:d7:0e:f9:8b:88:9c:1a:ca:f4:fb:bf:
d6:2f:5d:18:9a:c9:71:a7:b2:25:51:77:14:7b:9e:2c:62:c2:
08:15:a3:1f:61:ef:c7:d9:08:f2:70:04:41:50:ca:b4:bc:c9:
05:69:c8:0f:ac:6b:6d:f8:f0:45:2b:71:fa:c5:30:1d:fc:b1:
86:d2:f7:b8:25:6e:e9:6f:a3:51:d8:01:e7:89:2c:fb:a9:34:
7a:7c:16:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:23 2023 by rpki-client on console-fra.rpki-client.org