Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/RRnnjN6hheJJhqPaNrpGM_7UiLM.roa
File: RRnnjN6hheJJhqPaNrpGM_7UiLM.roa (raw, json)
Hash identifier: FA5I45W9tlPrZmyqOYtukuhRG4YlEtcEkcEuBGKMXJY=
Subject key identifier: 45:19:E7:8C:DE:A1:85:E2:49:86:A3:DA:36:BA:46:33:FE:D4:88:B3
Certificate issuer: /CN=e1977859d071f7150837b2acb4353ff33efd831c
Certificate serial: 04349FA1
Authority key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/RRnnjN6hheJJhqPaNrpGM_7UiLM.roa
Signing time: Sat 01 Jan 2022 16:06:41 +0000
ROA not before: Sat 01 Jan 2022 16:06:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.221.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70557601 (0x4349fa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1977859d071f7150837b2acb4353ff33efd831c
Validity
Not Before: Jan 1 16:06:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4519e78cdea185e24986a3da36ba4633fed488b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:25:62:91:b9:a2:7b:f6:d4:15:77:6c:c9:ac:
1f:16:c1:67:d4:e1:bc:33:c0:3f:54:75:1a:f6:96:
81:90:c6:cc:c3:f4:1d:5a:be:c2:cb:cf:78:71:45:
ed:c0:e4:8f:b1:bb:83:d2:9a:b4:4a:79:e1:0d:c5:
00:19:23:de:9f:d7:43:a1:3b:ce:84:a7:c5:ed:80:
eb:e3:4b:53:1a:4e:40:47:ed:8d:38:2f:59:2d:2a:
a3:1a:fa:d7:c5:17:da:8e:f2:7a:99:26:d6:64:45:
62:f8:17:62:8c:45:f5:fd:75:93:e4:67:ab:9d:9b:
2c:10:46:b7:09:78:e4:39:82:07:ad:93:8e:0e:03:
25:07:23:37:71:ec:9f:20:aa:27:9e:c6:30:f8:66:
9c:ec:f6:ed:99:ec:51:ac:7c:07:95:e9:b0:46:37:
df:aa:e4:88:e9:97:69:30:5d:a1:7c:12:ae:0c:6a:
de:6b:c9:96:6f:0c:b3:1a:f4:94:1a:25:cb:e7:60:
92:84:a0:be:f3:09:84:32:31:30:06:3f:9b:f1:e2:
15:b8:15:34:6a:34:4e:46:db:ba:af:67:9c:33:46:
c5:85:e5:68:77:5f:69:d9:dc:65:b9:1b:d0:49:f4:
ec:11:6e:eb:92:8e:10:4b:be:2c:a6:f9:db:6d:41:
4e:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:19:E7:8C:DE:A1:85:E2:49:86:A3:DA:36:BA:46:33:FE:D4:88:B3
X509v3 Authority Key Identifier:
keyid:E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/RRnnjN6hheJJhqPaNrpGM_7UiLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.221.125.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:99:47:6e:3a:a0:1e:16:f9:77:c0:ec:42:d4:77:75:70:1d:
40:54:05:99:58:4e:8c:73:d8:69:93:28:d7:34:98:89:80:d5:
2e:4f:96:ae:55:f2:3b:60:f7:bf:ec:e4:54:5f:b9:c2:e3:06:
d7:45:ad:54:75:99:45:ed:9a:0f:15:9d:2a:4d:e5:78:89:0d:
d3:ce:f5:a0:9e:f3:9e:c9:a1:0f:bd:3e:50:79:5d:85:3a:0f:
1a:28:34:88:a1:8c:70:a8:ad:a8:1c:89:36:64:27:92:44:0b:
5c:dc:a3:6c:08:82:ec:8f:e8:06:1b:ba:1e:d3:30:1a:29:5e:
34:ae:c3:83:85:fc:53:b5:cc:40:85:b8:3c:c5:e0:4d:6b:df:
7d:95:10:5e:d2:92:90:0f:65:b5:28:68:11:02:0e:c5:9e:95:
06:45:d1:c4:57:bb:07:de:1b:61:3c:e3:a6:72:fc:ca:00:50:
f2:ac:d9:af:ea:c0:46:51:15:34:92:8b:3e:0e:7e:de:a8:4b:
3d:ad:1a:87:55:d3:3e:8b:ea:91:ee:8a:ba:79:b4:fb:b3:d5:
f5:cd:89:b2:d0:88:1f:74:2f:6b:cf:55:a9:eb:ba:40:38:27:
98:8d:62:b9:51:1e:32:77:4c:84:ed:6a:b6:31:d7:a8:7a:37:
16:43:80:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:05 2023 by rpki-client on console-fra.rpki-client.org