Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/481408-b215-4d1a-b330-115aac92e9bf/1/fDI4x3smyY6JTLNkepvMLmShJuY.roa
File: fDI4x3smyY6JTLNkepvMLmShJuY.roa (raw, json)
Hash identifier: xmWRsIre9v70R7+Af2ePNn6i63tzVcP+tmzQ2TZaxiU=
Subject key identifier: 7C:32:38:C7:7B:26:C9:8E:89:4C:B3:64:7A:9B:CC:2E:64:A1:26:E6
Certificate issuer: /CN=470c2c983b627169218571c6b82947aeeea5f7ce
Certificate serial: 0ADA5869
Authority key identifier: 47:0C:2C:98:3B:62:71:69:21:85:71:C6:B8:29:47:AE:EE:A5:F7:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RwwsmDticWkhhXHGuClHru6l984.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/481408-b215-4d1a-b330-115aac92e9bf/1/fDI4x3smyY6JTLNkepvMLmShJuY.roa
Signing time: Sat 01 Jan 2022 00:53:20 +0000
ROA not before: Sat 01 Jan 2022 00:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43341
IP address blocks: 193.26.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182081641 (0xada5869)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=470c2c983b627169218571c6b82947aeeea5f7ce
Validity
Not Before: Jan 1 00:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c3238c77b26c98e894cb3647a9bcc2e64a126e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1f:20:5e:0a:16:da:3d:f1:a5:66:82:ef:2b:
b7:89:c5:79:8b:35:3e:8d:41:3f:bf:20:c2:0a:43:
1a:6b:6b:3b:43:2e:3e:62:f6:56:e7:02:61:87:91:
4e:d5:a4:2f:74:1d:58:29:4b:f7:fc:58:9a:59:c7:
7b:f2:2c:08:5f:06:2a:b0:98:9e:53:e2:e7:10:b0:
51:e0:f7:b7:bd:a9:2a:04:b0:3b:63:e0:a2:f4:24:
a1:bd:a6:6e:5b:36:d5:af:98:c3:26:23:41:e7:73:
54:8e:51:46:6f:97:d5:b5:8d:3b:6a:99:39:0c:c6:
78:59:85:a7:0f:c0:ed:5c:4e:62:b1:f4:5c:df:9d:
69:23:06:ed:74:a2:7c:88:88:f0:c1:98:1d:8e:a8:
50:a9:e6:1d:35:92:f8:f2:f4:b3:18:a6:03:d4:64:
a8:06:64:d0:87:34:ab:d2:07:12:9b:cb:16:36:b7:
8c:ac:19:10:65:8f:63:41:1a:ed:aa:2b:0d:78:9a:
8f:24:84:1d:0c:21:f4:f5:0e:c7:69:c6:68:af:13:
68:5a:5e:15:95:a6:42:98:07:1d:e4:47:34:02:df:
6b:13:26:c5:3b:d4:ba:bd:a5:b8:cf:d6:de:79:93:
04:56:0d:ce:41:6c:f1:6f:15:c9:9a:3e:ea:c5:8a:
54:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:32:38:C7:7B:26:C9:8E:89:4C:B3:64:7A:9B:CC:2E:64:A1:26:E6
X509v3 Authority Key Identifier:
keyid:47:0C:2C:98:3B:62:71:69:21:85:71:C6:B8:29:47:AE:EE:A5:F7:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RwwsmDticWkhhXHGuClHru6l984.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/481408-b215-4d1a-b330-115aac92e9bf/1/fDI4x3smyY6JTLNkepvMLmShJuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/481408-b215-4d1a-b330-115aac92e9bf/1/RwwsmDticWkhhXHGuClHru6l984.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.26.123.0/24
Signature Algorithm: sha256WithRSAEncryption
05:f9:d8:57:e5:a9:d9:c8:4e:6d:26:6a:0f:27:6c:89:49:66:
87:e3:9d:c6:e3:b7:68:98:3e:53:c6:e0:3e:54:73:3c:ea:56:
a4:98:83:b7:ee:8f:e4:8b:79:8e:c4:d7:85:cf:cc:3c:b6:5d:
fe:16:23:07:f9:2d:13:fd:6e:74:6f:43:aa:7a:d7:af:0b:1b:
5f:28:f9:1c:39:d0:d0:f9:9f:eb:c8:2a:57:07:1e:89:29:48:
1d:79:8a:4e:1d:8d:8d:fe:82:48:be:34:80:d1:ee:3f:71:6b:
de:bd:e1:65:3e:17:f5:ad:5e:d5:10:70:64:af:1f:1b:e3:40:
ab:3d:b1:e9:d9:12:3d:b4:69:72:ea:8b:c4:6f:a7:de:5e:93:
79:5c:f5:3a:99:dd:57:61:a7:de:37:63:d4:de:66:9e:64:d9:
fe:2e:11:ff:f2:ed:cc:b0:04:a2:52:62:44:52:b9:23:9d:0c:
f9:d2:e4:28:49:2d:8e:7a:c1:d6:12:e6:83:9d:28:81:b3:f2:
b0:0a:f2:73:ee:99:04:67:89:f8:21:02:2b:e5:33:93:95:19:
aa:4c:5d:c2:bc:fd:fa:23:eb:22:e9:0e:6e:fe:a0:16:f7:f6:
9b:d0:9b:96:f8:85:e8:3b:2b:28:22:1a:ea:65:27:bd:a8:c2:
75:a0:59:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:04 2023 by rpki-client on console-fra.rpki-client.org