Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/9f4505-08f1-4da1-8f6d-1fb246d30101/1/j6pOwfkk0hml3ZE9DE9kAj7EP18.roa
File: j6pOwfkk0hml3ZE9DE9kAj7EP18.roa (raw, json)
Hash identifier: ZtJjBKzYtonF/9OkYaK8OWYDgu5lWoG8kNyTWT0mFcI=
Subject key identifier: 8F:AA:4E:C1:F9:24:D2:19:A5:DD:91:3D:0C:4F:64:02:3E:C4:3F:5F
Certificate issuer: /CN=aae73121517086d93ac70e72e3c3f5a0b5e73b89
Certificate serial: 08F83855
Authority key identifier: AA:E7:31:21:51:70:86:D9:3A:C7:0E:72:E3:C3:F5:A0:B5:E7:3B:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qucxIVFwhtk6xw5y48P1oLXnO4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/9f4505-08f1-4da1-8f6d-1fb246d30101/1/j6pOwfkk0hml3ZE9DE9kAj7EP18.roa
Signing time: Sat 01 Jan 2022 09:00:34 +0000
ROA not before: Sat 01 Jan 2022 09:00:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61205
IP address blocks: 193.138.168.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150485077 (0x8f83855)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aae73121517086d93ac70e72e3c3f5a0b5e73b89
Validity
Not Before: Jan 1 09:00:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8faa4ec1f924d219a5dd913d0c4f64023ec43f5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c0:f8:a6:af:97:54:70:b9:50:b5:8e:69:10:
9d:01:13:d7:fc:b6:e3:53:bf:af:ba:b9:df:8a:68:
0f:a9:1f:d7:06:a4:19:62:d5:c4:59:91:c2:91:8b:
aa:b3:d4:b2:7f:78:8e:1e:13:f2:79:27:26:e9:ae:
a1:7e:90:4b:5c:9a:57:df:e7:91:e8:70:fd:11:aa:
d3:45:61:24:54:cf:1c:0f:ac:38:a5:00:8f:8e:50:
28:ef:39:a1:f1:fd:37:dd:b3:0f:79:68:c2:03:09:
b2:d9:59:6a:e6:8a:20:f7:d9:b7:2b:c7:8b:b3:71:
ac:eb:59:78:56:e7:1b:c5:aa:5c:d6:26:f2:74:26:
13:73:cb:09:31:9f:f9:af:9b:ca:66:53:14:13:a8:
93:63:d0:ed:d5:cc:57:75:93:4f:fa:5b:db:5b:de:
a1:b6:c4:a5:3d:56:18:f9:63:ab:6f:7e:75:4e:b2:
67:2b:a7:f3:9d:d8:89:69:96:13:e2:b0:12:d5:48:
d9:30:a8:02:64:6b:36:f4:c1:79:77:e6:bb:6c:9a:
d9:d3:10:2e:71:46:16:2a:be:8d:d6:8e:43:f7:ab:
fa:a8:e8:6b:ce:2a:07:90:66:54:15:cb:19:15:da:
53:c2:52:f5:c8:79:53:52:d1:6a:88:1b:57:af:ee:
6b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AA:4E:C1:F9:24:D2:19:A5:DD:91:3D:0C:4F:64:02:3E:C4:3F:5F
X509v3 Authority Key Identifier:
keyid:AA:E7:31:21:51:70:86:D9:3A:C7:0E:72:E3:C3:F5:A0:B5:E7:3B:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qucxIVFwhtk6xw5y48P1oLXnO4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9f4505-08f1-4da1-8f6d-1fb246d30101/1/j6pOwfkk0hml3ZE9DE9kAj7EP18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/9f4505-08f1-4da1-8f6d-1fb246d30101/1/qucxIVFwhtk6xw5y48P1oLXnO4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.168.0/22
Signature Algorithm: sha256WithRSAEncryption
73:2e:f2:ae:8e:8a:84:bd:0f:87:7b:b0:27:f5:2c:64:ea:0d:
4b:6e:06:61:3a:2f:54:84:42:02:47:b4:99:a0:5f:3b:55:b0:
db:6f:50:e3:bb:36:ba:25:8f:39:4b:ab:86:a7:e4:06:67:00:
49:e2:ee:2d:1b:b3:57:07:6b:81:03:b1:67:be:5b:3e:c8:03:
49:b3:1d:1c:ac:2e:82:58:80:7a:bc:1c:30:da:2e:52:c7:23:
a7:cc:bd:36:c9:4b:e2:92:bd:9d:c7:dd:3a:3d:e5:2d:9a:3c:
87:56:7c:72:c1:5f:4b:92:53:fc:23:89:a1:e9:22:ab:c0:93:
eb:fc:97:8c:7b:37:cd:b2:d6:33:79:ea:0b:b8:b0:61:2d:44:
d2:a7:91:28:99:52:f5:e8:02:ce:b9:ba:ac:29:11:65:17:99:
61:5f:8d:87:69:f1:d7:e7:84:6a:43:ea:21:cf:61:f6:3e:49:
b1:f1:61:23:36:31:18:90:c4:ab:ea:52:94:80:4a:f6:fa:c0:
e0:db:6f:97:23:ce:1e:5d:e3:a1:4f:10:34:43:9b:38:2c:0e:
0c:4d:51:93:55:64:03:10:a0:01:c2:82:2d:c2:48:08:47:b5:
20:3b:fb:51:78:75:c5:12:de:df:04:a2:71:92:ba:6d:59:d6:
ff:ac:ae:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-ams.rpki-client.org