Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/p7emXTzk5f152sBhNnOxv4_yTu0.roa
File: p7emXTzk5f152sBhNnOxv4_yTu0.roa (raw, json)
Hash identifier: gv8OPM7irhPkSSYfOdPay9u31ftt/FEapXNiFrEO860=
Subject key identifier: A7:B7:A6:5D:3C:E4:E5:FD:79:DA:C0:61:36:73:B1:BF:8F:F2:4E:ED
Certificate issuer: /CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Certificate serial: BBAB34
Authority key identifier: D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/p7emXTzk5f152sBhNnOxv4_yTu0.roa
Signing time: Sat 01 Jan 2022 02:56:45 +0000
ROA not before: Sat 01 Jan 2022 02:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39265
IP address blocks: 193.247.32.0/24 maxlen: 24
193.247.32.0/22 maxlen: 22
2001:67c:21c0::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12299060 (0xbbab34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98b5a5fb138683d1a8cc7019f78970bae678228
Validity
Not Before: Jan 1 02:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a7b7a65d3ce4e5fd79dac0613673b1bf8ff24eed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:fc:91:82:28:f1:6c:bc:d3:3b:b0:89:23:ec:
1f:1a:16:63:e8:92:a0:de:91:84:c8:1c:8f:9a:34:
06:07:cc:cc:7f:92:1d:88:6c:48:93:a8:91:b6:cd:
ec:f8:66:1e:6a:a9:c7:d8:50:53:f2:33:1e:4d:d7:
59:6a:55:64:b6:19:35:a5:5d:75:6c:f7:62:b1:8a:
9f:13:6f:09:f3:59:6f:79:ed:3d:06:14:8b:ae:d0:
5f:8c:27:30:7c:9a:e2:ad:07:19:6a:32:02:16:59:
7b:d4:4a:7c:d5:e3:f3:7d:91:fe:60:d5:26:88:fd:
e9:af:33:b6:79:45:39:60:bd:d3:98:ed:74:6c:86:
53:27:d4:e6:23:4a:76:30:5f:45:08:8e:2d:da:ca:
d4:02:d3:6e:23:61:c1:b9:e7:9c:82:19:0b:45:e1:
79:08:b4:d9:c2:f3:e2:f7:67:36:b8:8d:20:63:36:
07:38:66:c8:53:47:25:17:11:24:e3:3e:98:db:cd:
68:27:9e:ba:53:53:55:9f:cd:15:c7:da:47:91:aa:
35:6e:84:d6:49:da:ad:10:d5:2f:ed:de:58:98:11:
1f:7d:b6:b7:d7:89:09:a7:c3:10:1b:3b:d8:bb:db:
52:b6:24:2e:67:1b:21:c4:2f:62:a2:e0:bd:b6:15:
10:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:B7:A6:5D:3C:E4:E5:FD:79:DA:C0:61:36:73:B1:BF:8F:F2:4E:ED
X509v3 Authority Key Identifier:
keyid:D9:8B:5A:5F:B1:38:68:3D:1A:8C:C7:01:9F:78:97:0B:AE:67:82:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YtaX7E4aD0ajMcBn3iXC65ngig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/p7emXTzk5f152sBhNnOxv4_yTu0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e2e95d-2cb7-46be-a228-8317a8288d10/1/2YtaX7E4aD0ajMcBn3iXC65ngig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.32.0/22
IPv6:
2001:67c:21c0::/48
Signature Algorithm: sha256WithRSAEncryption
2a:53:ca:9d:6d:81:2d:b6:23:41:6d:68:08:41:0d:44:aa:91:
2c:45:c9:f9:41:7b:52:d0:e8:83:9e:47:31:a3:ab:a7:7d:45:
c2:35:74:e2:e3:d4:76:e7:b6:ac:93:ac:42:5e:6a:a0:94:ba:
8d:e9:22:57:0e:ca:75:45:d6:5d:13:cf:2c:cd:0a:ce:a1:3a:
58:0d:71:1a:ad:e9:cf:6f:17:06:83:85:65:56:e2:dc:88:04:
ea:d6:e9:86:fb:99:19:67:39:f5:f1:8c:d7:d9:dc:d5:26:38:
4f:56:ba:f2:d5:f8:a0:b1:b1:c8:ca:ef:69:c2:a4:6a:00:89:
53:b9:8a:e4:e6:ca:94:7d:44:1f:57:66:5c:fb:b0:1f:08:8f:
f4:6d:f5:50:1b:4f:a5:06:47:a7:2b:4b:80:e2:a1:44:8d:26:
d6:cc:bd:77:60:40:51:81:ea:56:cf:b9:6f:1c:89:9d:2c:46:
88:45:2f:78:c8:d6:ac:3a:22:13:34:60:1a:bd:39:c6:fa:eb:
e6:76:a4:1f:a0:da:76:40:58:db:20:d0:7e:26:b9:cb:d1:23:
ce:05:fa:1a:2b:db:f1:88:04:fe:2f:af:b2:3e:63:bd:fc:65:
68:61:ec:a7:12:90:82:0a:7d:35:89:27:87:fd:84:dc:cc:ae:
e0:2c:cf:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:17 2023 by rpki-client on console-ams.rpki-client.org