Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/COUuKusQy0lmKPLJ-U2AuZGG9fs.roa
File: COUuKusQy0lmKPLJ-U2AuZGG9fs.roa (raw, json)
Hash identifier: maxtnkEfX1rd66OMWuKB8gX05VKX3lZRfPzAg6g04WA=
Subject key identifier: 08:E5:2E:2A:EB:10:CB:49:66:28:F2:C9:F9:4D:80:B9:91:86:F5:FB
Certificate issuer: /CN=f9cd2980c1c78bcf6bb9b80a0792058b0bcaed4b
Certificate serial: 0595260E
Authority key identifier: F9:CD:29:80:C1:C7:8B:CF:6B:B9:B8:0A:07:92:05:8B:0B:CA:ED:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-c0pgMHHi89rubgKB5IFiwvK7Us.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/COUuKusQy0lmKPLJ-U2AuZGG9fs.roa
Signing time: Sat 01 Jan 2022 10:57:05 +0000
ROA not before: Sat 01 Jan 2022 10:57:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208040
IP address blocks: 193.161.24.0/23 maxlen: 23
193.161.28.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93660686 (0x595260e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f9cd2980c1c78bcf6bb9b80a0792058b0bcaed4b
Validity
Not Before: Jan 1 10:57:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08e52e2aeb10cb496628f2c9f94d80b99186f5fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:74:1b:15:8c:85:ec:a4:32:c1:a3:77:fb:21:
8b:b8:cc:1c:d5:6b:96:82:51:a6:7b:a2:a8:5c:18:
fc:68:14:9c:03:99:0e:12:df:28:f5:fb:52:ad:d9:
02:a6:33:f1:4c:66:94:cc:91:bd:3b:2c:5c:86:4c:
77:c6:b3:c7:a7:97:e9:75:94:51:e8:7f:98:ef:60:
42:d0:2b:13:8d:cb:1b:fe:ac:d2:30:47:6f:c0:bc:
27:f5:0e:28:3c:28:da:83:4d:c2:91:4e:d2:4a:77:
97:e7:b3:65:61:51:41:83:3b:b1:28:23:b3:bb:c5:
78:85:30:f8:eb:83:8d:2c:80:59:7c:0e:f6:bc:fe:
8e:fc:07:7f:62:51:5d:6c:ea:c0:49:e6:2b:e4:0e:
0e:15:ba:6b:31:44:3e:2a:21:f3:4d:85:32:20:f2:
22:4e:66:34:fc:ce:2f:4f:72:89:0a:62:22:b9:c8:
71:b8:13:9d:cb:30:48:4b:fd:52:9f:d3:82:fb:ee:
46:35:a5:68:52:2c:78:4c:05:c2:d9:7a:53:44:33:
ef:bb:25:5b:a6:c1:c9:64:8b:c0:9e:66:8c:50:27:
ea:05:63:58:47:79:98:ea:a5:f6:88:ce:05:47:2f:
f5:67:c7:3f:df:3e:c2:74:65:44:72:7d:e1:c3:66:
3e:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:E5:2E:2A:EB:10:CB:49:66:28:F2:C9:F9:4D:80:B9:91:86:F5:FB
X509v3 Authority Key Identifier:
keyid:F9:CD:29:80:C1:C7:8B:CF:6B:B9:B8:0A:07:92:05:8B:0B:CA:ED:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-c0pgMHHi89rubgKB5IFiwvK7Us.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/COUuKusQy0lmKPLJ-U2AuZGG9fs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/1-c0pgMHHi89rubgKB5IFiwvK7Us.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.24.0/23
193.161.28.0/23
Signature Algorithm: sha256WithRSAEncryption
e0:e3:12:cc:2d:18:0b:85:7f:75:5f:35:8f:f0:17:9c:e8:f8:
aa:9b:11:4e:2e:c8:1c:cc:fb:95:62:02:f3:e5:55:a3:25:4e:
66:1b:ee:54:ae:16:8f:ef:c5:d0:74:67:82:b3:b6:4f:30:36:
a8:e5:eb:96:8e:a8:c9:7a:d8:90:4f:44:22:bf:9f:c8:9c:91:
03:5b:85:32:1f:62:8b:3a:c6:33:6b:07:dd:6f:4c:ad:b2:9f:
0c:5f:31:6c:89:82:23:c8:f2:39:07:06:1b:ce:61:13:a7:30:
41:87:f7:6a:fe:47:a1:2f:36:9a:fb:90:6f:b9:eb:00:8f:26:
6f:21:b0:6d:10:85:84:bd:4a:96:0d:31:32:f6:e0:d0:16:ea:
ec:59:0f:85:03:9a:ed:a4:da:12:35:fa:fc:f4:06:fb:a4:05:
90:13:69:cb:93:f5:1c:15:a8:63:e6:3c:2d:94:b0:2e:00:ce:
29:d7:95:7a:ea:54:89:63:6c:a6:8b:26:93:84:9c:c9:71:69:
21:04:1f:27:36:49:97:b9:c8:99:04:0b:66:1e:bf:0a:1b:00:
f7:ac:d7:e4:82:ac:72:54:15:12:36:ca:9f:3b:7e:4b:3d:a8:
36:52:02:56:cf:eb:aa:83:ce:03:17:c1:83:8d:b0:93:d1:9f:
05:3e:2a:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:54 2023 by rpki-client on console-fra.rpki-client.org