Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/SqBhKn1popayT1JjBm7i5ScwF2s.roa
File: SqBhKn1popayT1JjBm7i5ScwF2s.roa (raw, json)
Hash identifier: DiQqEatJxkxs/0jmyb14599kSc10SWCccGd/kref564=
Subject key identifier: 4A:A0:61:2A:7D:69:A2:96:B2:4F:52:63:06:6E:E2:E5:27:30:17:6B
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 0577B302
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/SqBhKn1popayT1JjBm7i5ScwF2s.roa
Signing time: Sat 01 Jan 2022 15:01:45 +0000
ROA not before: Sat 01 Jan 2022 15:01:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48152
IP address blocks: 193.200.218.0/24 maxlen: 24
2001:678:878::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91730690 (0x577b302)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Jan 1 15:01:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4aa0612a7d69a296b24f5263066ee2e52730176b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:65:36:e0:0d:c9:92:92:55:c2:78:ca:07:58:
01:d7:da:1b:8f:fd:34:da:48:7e:aa:a6:36:73:7a:
b0:ad:04:0a:16:ac:a8:fd:c0:31:05:9d:ae:de:be:
72:ba:11:b3:fb:f2:da:fd:d5:a7:8f:c8:ac:36:a3:
95:78:e2:10:47:0d:1f:3e:99:1a:81:53:91:74:6c:
60:6f:57:bb:9b:63:d1:42:fb:c6:b9:11:71:8a:28:
72:65:0a:70:02:91:62:5d:cf:62:ca:c6:f2:f0:32:
3c:dc:0b:6f:45:15:6a:5c:7c:ed:59:fc:fb:49:a8:
fc:a5:3b:64:27:45:4c:af:75:28:18:08:a0:b9:6d:
f4:ff:c6:9b:dd:34:26:f5:f2:4d:ad:47:68:ec:3e:
e2:58:ee:64:1f:55:46:47:6c:cd:d3:0c:e6:25:bb:
28:b9:d8:4f:05:50:57:d6:79:e4:30:60:00:f2:a4:
cc:a8:4d:9f:10:7f:cc:ab:91:5c:92:52:c6:12:ed:
52:93:8d:7a:38:13:1e:b4:b7:4b:19:73:4d:47:44:
60:55:bb:8c:ee:3c:9e:33:89:9d:97:bd:79:d8:c8:
b8:e0:22:af:fc:69:62:bd:d8:ba:e0:29:01:88:8b:
29:fa:18:9f:47:58:8e:fd:fb:88:ee:d0:39:c4:42:
5b:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A0:61:2A:7D:69:A2:96:B2:4F:52:63:06:6E:E2:E5:27:30:17:6B
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/SqBhKn1popayT1JjBm7i5ScwF2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.218.0/24
IPv6:
2001:678:878::/48
Signature Algorithm: sha256WithRSAEncryption
8c:e2:23:a7:04:01:42:b3:a3:09:67:47:aa:2b:49:8f:44:9d:
1e:18:3a:79:fa:83:64:f9:22:68:4a:bf:cf:54:ee:5c:e3:74:
39:56:54:54:cd:64:40:8b:8c:ca:76:94:c8:ea:a2:c3:aa:5b:
f5:09:64:98:8b:f7:c2:6f:d6:c7:fd:b6:40:d4:8d:ae:15:99:
51:1a:6a:46:a1:4d:55:9d:94:5b:d9:04:4c:42:7c:b7:c8:ce:
37:85:1c:40:10:ed:2e:e5:4e:bb:97:f6:7c:8e:5d:a2:43:60:
06:70:6c:e8:df:6d:fa:21:2f:3f:62:98:73:16:86:f6:8e:a1:
49:78:9d:1e:89:f7:bd:38:20:fc:97:68:ea:56:49:49:73:b5:
ea:20:4d:ef:c5:01:bc:9c:92:20:76:b9:a2:22:f0:0f:ba:68:
3e:98:25:e8:f3:d4:1f:f3:49:c0:0c:a0:71:3c:52:a7:4d:f8:
99:44:34:f5:2e:02:69:f9:e0:4b:99:40:77:76:cd:26:49:0e:
ee:d0:61:a6:52:c7:43:e3:79:4e:06:66:1e:21:61:85:3f:cb:
8f:36:ee:1e:2e:1e:e2:6e:c3:a7:27:4c:7a:ed:c0:f3:6a:18:
62:1d:c7:13:b0:85:f7:2c:f5:ef:0c:ea:be:18:87:f4:28:ab:
25:e4:80:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:34 2023 by rpki-client on console-ams.rpki-client.org