Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/h7Dw0L6sLT5rqoLqm879yF-V5YY.roa
File: h7Dw0L6sLT5rqoLqm879yF-V5YY.roa (raw, json)
Hash identifier: BJjfo+ahf10uvYk8Y6iC7IdBLWFRFvEN7A83tzVdHyE=
Subject key identifier: 87:B0:F0:D0:BE:AC:2D:3E:6B:AA:82:EA:9B:CE:FD:C8:5F:95:E5:86
Certificate issuer: /CN=1e5fe0ae25c6eae27763dcdec51a0e10ebc6c374
Certificate serial: 0185624EFBF9FE5A0A53D35CB45E9CDB58B5
Authority key identifier: 1E:5F:E0:AE:25:C6:EA:E2:77:63:DC:DE:C5:1A:0E:10:EB:C6:C3:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hl_griXG6uJ3Y9zexRoOEOvGw3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/h7Dw0L6sLT5rqoLqm879yF-V5YY.roa
Signing time: Fri 30 Dec 2022 09:13:41 +0000
ROA not before: Fri 30 Dec 2022 09:13:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41072
IP address blocks: 193.104.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:4e:fb:f9:fe:5a:0a:53:d3:5c:b4:5e:9c:db:58:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5fe0ae25c6eae27763dcdec51a0e10ebc6c374
Validity
Not Before: Dec 30 09:13:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87b0f0d0beac2d3e6baa82ea9bcefdc85f95e586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:94:d3:c4:8f:35:d1:91:34:b2:b0:da:a0:c8:
b7:09:07:8a:0f:80:da:87:03:0e:ed:93:f3:1a:db:
01:7e:5a:8a:c8:5c:32:08:62:8c:36:ad:e8:8e:90:
95:37:ab:33:5e:c6:42:9d:0e:8e:db:92:a3:e1:ae:
86:ce:e2:90:d8:45:03:c5:62:45:7e:a1:43:7c:7e:
ff:0d:0f:2a:a9:f1:c4:ee:4c:0e:37:2a:4d:e3:46:
2c:58:81:e0:40:ed:a6:de:92:2a:fd:d2:31:46:a2:
77:59:cb:7d:02:07:a7:9f:e5:f0:64:35:e2:8d:81:
20:94:1d:8b:d6:0d:30:c7:60:0b:66:84:ea:9c:27:
80:48:69:1a:9f:a3:76:03:d9:20:50:d4:20:35:89:
bd:cd:ec:32:15:68:1a:10:86:84:a9:f7:9e:2b:0c:
82:3e:b4:84:09:51:f9:86:90:a4:58:ba:15:3f:99:
80:0a:ea:e2:28:40:d8:23:e6:d6:5e:a3:93:a5:58:
e4:b2:4d:e3:89:17:10:ec:5b:7a:e0:2c:f9:0a:de:
21:fe:d8:3a:7d:d7:46:09:74:15:c6:6a:9f:db:61:
3b:fe:a3:0f:d4:16:1e:f0:f5:be:2d:dc:b5:c9:82:
1f:ef:3f:57:f0:d1:96:a4:5b:a8:b3:1c:7f:84:f2:
78:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:B0:F0:D0:BE:AC:2D:3E:6B:AA:82:EA:9B:CE:FD:C8:5F:95:E5:86
X509v3 Authority Key Identifier:
keyid:1E:5F:E0:AE:25:C6:EA:E2:77:63:DC:DE:C5:1A:0E:10:EB:C6:C3:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hl_griXG6uJ3Y9zexRoOEOvGw3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/h7Dw0L6sLT5rqoLqm879yF-V5YY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/76fb22-124c-4866-8e4d-8b792a42d0ef/1/Hl_griXG6uJ3Y9zexRoOEOvGw3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.0.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8a:4e:d9:9c:c5:0e:38:4b:8a:ec:c2:44:58:4d:08:9b:f6:
17:e5:7c:e4:b7:ad:df:99:82:15:11:6b:4c:08:69:0d:20:c4:
b8:d1:48:c2:16:d6:01:cb:20:96:46:26:1d:a3:dd:33:b0:a0:
3b:80:62:1f:7b:20:9d:15:69:3f:61:1f:cb:f0:42:ae:b6:11:
56:ca:01:88:c3:c0:29:b9:4d:e2:95:e9:0a:b7:ff:81:9b:96:
b2:06:71:39:23:c0:de:5b:44:03:c7:f5:e0:48:09:e0:a5:83:
25:43:ac:d5:47:cc:4b:4f:ec:1d:77:af:f7:4f:d8:9b:07:33:
2f:56:73:02:07:e7:dc:fc:c4:08:fe:43:be:09:53:eb:c5:2d:
00:bc:d5:7c:e8:8a:42:47:2d:f3:16:b2:db:e1:38:5b:36:36:
68:0c:e7:ae:95:a8:ed:e1:7e:f3:52:fa:95:50:86:8f:ce:e9:
bb:ef:92:fa:07:8d:7c:b8:56:36:3e:e7:20:91:0f:b4:72:6e:
c4:b4:be:d5:02:44:40:aa:d1:df:f5:d7:d0:9c:1a:a3:33:f8:
35:d5:dd:03:70:84:27:bd:40:68:6c:f3:bd:f8:26:1b:f3:d2:
d4:45:42:76:91:c6:8e:87:67:8e:9b:8b:da:f4:98:d8:b0:8f:
80:98:72:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:25 2023 by rpki-client on console-fra.rpki-client.org