Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0ef6de-b3f1-4430-8b49-114ffc20f9aa/1/_AWjbY_3PAFyfxTeNst3BVv-CKU.roa
File: _AWjbY_3PAFyfxTeNst3BVv-CKU.roa (raw, json)
Hash identifier: l1bNd4aPq7BxQELBMMDbI8H+2bZBwktqX9+azUUkF/c=
Subject key identifier: FC:05:A3:6D:8F:F7:3C:01:72:7F:14:DE:36:CB:77:05:5B:FE:08:A5
Certificate issuer: /CN=1d6d9ccb02715849b3a1ecbcd34b6887f649940f
Certificate serial: 0364C595
Authority key identifier: 1D:6D:9C:CB:02:71:58:49:B3:A1:EC:BC:D3:4B:68:87:F6:49:94:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HW2cywJxWEmzoey800toh_ZJlA8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0ef6de-b3f1-4430-8b49-114ffc20f9aa/1/_AWjbY_3PAFyfxTeNst3BVv-CKU.roa
Signing time: Sat 01 Jan 2022 02:59:20 +0000
ROA not before: Sat 01 Jan 2022 02:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.141.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56935829 (0x364c595)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d6d9ccb02715849b3a1ecbcd34b6887f649940f
Validity
Not Before: Jan 1 02:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc05a36d8ff73c01727f14de36cb77055bfe08a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:28:90:48:6c:63:7d:4a:25:06:0a:28:6d:70:
c0:f9:5f:96:73:98:40:fc:96:fd:01:e6:2c:d7:cc:
f1:c0:fa:d8:01:be:d8:6b:f4:11:08:96:5f:79:c1:
ff:fd:92:ad:e7:ed:ae:dc:59:ec:5e:cb:b7:7c:9d:
73:72:d4:16:0f:00:6b:c8:0a:7a:a4:3c:e4:65:18:
5b:d4:24:37:30:37:b9:f3:0c:e2:41:ba:dc:52:6b:
7b:f5:cc:14:d5:29:20:aa:76:3e:d0:ed:09:f3:c3:
33:ee:10:5d:84:e6:fe:8e:d3:e9:13:19:21:8f:b2:
51:33:cb:65:f8:92:69:5d:a7:b9:03:2e:42:9f:cb:
d3:56:8e:82:3e:3e:1b:47:a0:b8:91:ce:d4:4c:de:
fd:16:70:ca:02:8a:d7:9c:fc:a8:28:c4:df:bb:cf:
d9:50:ba:52:50:05:64:d7:53:92:38:9e:f8:25:00:
43:ce:56:47:f7:86:3e:b4:e3:0d:85:a5:77:6a:7b:
19:34:a1:97:f0:22:7f:4f:1b:3f:51:93:9c:1f:46:
74:b5:3d:50:9b:e2:84:97:93:e5:d7:98:73:4f:07:
e8:6b:f5:31:d3:c3:69:b8:f3:b2:b4:6e:eb:d5:39:
55:0a:ef:3c:6c:96:e6:8b:cc:fe:49:24:5a:61:20:
fb:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:05:A3:6D:8F:F7:3C:01:72:7F:14:DE:36:CB:77:05:5B:FE:08:A5
X509v3 Authority Key Identifier:
keyid:1D:6D:9C:CB:02:71:58:49:B3:A1:EC:BC:D3:4B:68:87:F6:49:94:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HW2cywJxWEmzoey800toh_ZJlA8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0ef6de-b3f1-4430-8b49-114ffc20f9aa/1/_AWjbY_3PAFyfxTeNst3BVv-CKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0ef6de-b3f1-4430-8b49-114ffc20f9aa/1/HW2cywJxWEmzoey800toh_ZJlA8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.141.139.0/24
Signature Algorithm: sha256WithRSAEncryption
42:d3:90:11:9d:ba:47:64:b5:20:10:fc:57:38:fe:bc:5b:87:
be:86:95:15:4a:71:d6:71:d1:96:78:b0:3c:a2:69:05:6f:83:
9a:70:8b:57:d2:a5:27:08:90:26:91:62:0c:68:67:7b:f9:f0:
e3:c9:22:1b:79:51:02:64:ae:5e:14:18:8c:42:c7:1c:82:e6:
4f:b8:5f:d6:e4:bd:76:00:2e:48:d8:8c:19:e8:e6:c4:56:49:
fc:49:2d:c0:83:e8:fb:5c:68:f3:25:37:15:f6:58:0e:75:85:
c3:63:4a:b2:a7:d2:b9:f9:c8:ed:6b:df:67:4b:f0:65:36:5b:
5f:c2:80:98:f0:91:5c:d8:a3:c8:dd:f5:e8:5c:7e:1d:11:d4:
34:41:57:b7:35:0c:75:c2:50:72:50:77:fd:ab:db:e5:28:84:
4d:80:50:e8:99:26:2a:fd:86:4f:70:95:52:6b:4b:0e:b2:75:
08:e2:25:e8:a5:dc:3d:0f:e4:86:13:4c:32:48:ba:53:94:a4:
17:ab:09:53:fb:f1:e4:0c:cc:f3:ff:8b:94:dd:d5:d2:de:9d:
71:6f:29:a0:c8:ef:fe:8d:a6:1c:d1:d1:5f:fd:99:de:9b:c8:
e7:b7:ca:4b:79:e4:78:ce:f4:1b:44:15:1c:0e:15:78:63:1e:
38:ac:f1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:55 2023 by rpki-client on console-fra.rpki-client.org