Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/6Kr3ata7iSslvXOigDp0pme78sI.roa
File: 6Kr3ata7iSslvXOigDp0pme78sI.roa (raw, json)
Hash identifier: haLVKt43KOlMhqHS0hgSXmVzsVsUn7Sp9aavsXqWRsE=
Subject key identifier: E8:AA:F7:6A:D6:BB:89:2B:25:BD:73:A2:80:3A:74:A6:67:BB:F2:C2
Certificate issuer: /CN=e1977859d071f7150837b2acb4353ff33efd831c
Certificate serial: 0435F37C
Authority key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/6Kr3ata7iSslvXOigDp0pme78sI.roa
Signing time: Sat 01 Jan 2022 16:06:41 +0000
ROA not before: Sat 01 Jan 2022 16:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 193.221.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70644604 (0x435f37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1977859d071f7150837b2acb4353ff33efd831c
Validity
Not Before: Jan 1 16:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8aaf76ad6bb892b25bd73a2803a74a667bbf2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:87:34:76:4a:5b:b2:07:62:24:3b:a6:b2:11:
19:f0:22:26:a4:2d:9b:f3:52:c2:f4:97:fd:ee:8a:
c6:12:de:a8:b5:61:88:6c:5e:a5:d9:37:89:a0:ec:
bd:0f:06:cf:5f:39:e4:45:e2:85:59:25:21:fd:8d:
9a:d8:d6:3f:d7:10:4e:c7:a5:a5:08:36:95:3a:7c:
99:25:cf:70:18:e9:23:9a:49:40:55:c8:4e:ab:a8:
7e:00:f4:c8:0a:cf:5a:ea:b1:42:7d:79:b2:97:dd:
a7:57:41:da:99:84:50:22:31:88:5e:85:3e:b4:c9:
37:10:59:18:28:c3:f8:e6:b3:64:bd:73:01:e2:2c:
46:82:03:93:dd:ab:66:f5:90:2f:61:dc:fe:46:c3:
32:ae:f1:0a:a9:8e:7f:86:b2:ab:6e:2b:cb:b2:80:
b8:79:28:72:02:63:1f:eb:4d:58:86:45:18:01:46:
a1:97:41:b0:52:6f:52:41:02:f9:e0:02:34:eb:86:
05:13:b0:96:26:e1:b3:ab:93:0e:1b:1c:c0:f7:eb:
93:a0:2c:f0:4d:75:1b:11:0c:57:aa:30:51:ee:73:
98:b2:ec:ea:71:21:95:79:39:fb:70:d4:ff:53:50:
86:4d:31:b5:d1:11:58:c6:8d:05:fe:97:c5:65:2f:
c1:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:AA:F7:6A:D6:BB:89:2B:25:BD:73:A2:80:3A:74:A6:67:BB:F2:C2
X509v3 Authority Key Identifier:
keyid:E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/6Kr3ata7iSslvXOigDp0pme78sI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.125.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:e2:a7:e2:6b:cd:e7:74:9e:20:1a:cf:ee:d6:3a:ab:4b:
bc:37:2b:95:53:eb:86:17:5d:b1:4d:6a:55:ec:06:4f:49:c2:
5e:89:90:53:7e:fe:62:05:ed:f9:94:7d:4a:ab:12:b8:55:10:
80:d1:1d:ea:7f:50:6d:38:bd:81:81:44:0e:35:eb:ce:89:cb:
c4:9d:42:6b:21:32:e6:31:a2:aa:d1:04:6f:3e:ad:e2:ce:84:
34:37:d6:f9:41:55:b2:75:c5:67:3e:0c:94:c5:c1:4b:aa:88:
3d:89:33:5a:1b:6d:0e:bd:51:ad:6e:b7:7d:21:83:25:0d:ac:
40:7f:ce:d0:03:e6:4f:bd:a4:88:6a:6d:c7:4d:40:27:94:75:
c6:52:ed:21:23:7a:f7:0e:bc:94:4c:40:13:f2:10:21:39:f8:
dc:fe:69:43:9f:de:73:90:24:ef:39:03:e7:af:39:27:67:b5:
7c:7a:8e:3d:4a:bd:40:17:15:6a:1c:c0:34:58:2e:2f:df:8d:
3a:2b:0b:72:2f:b1:99:ae:07:5f:d4:29:8d:90:16:07:23:7d:
24:75:66:75:cb:75:da:ef:90:cf:14:84:10:31:73:07:87:4b:
e3:f1:3c:91:38:cf:ae:15:5f:d5:38:ae:a8:5f:4b:39:28:e3:
7c:76:0d:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:42 2023 by rpki-client on console-ams.rpki-client.org