Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/9e61b8-6223-4dce-91d5-c6d5f2a02c6f/1/whLdKoSK7znhs3W8eZPNH_hnq30.roa
File: whLdKoSK7znhs3W8eZPNH_hnq30.roa (raw, json)
Hash identifier: fGpFbv62BVRUsE2A5bOvHLdHLScurKAIs1VSCyK+I/Q=
Subject key identifier: C2:12:DD:2A:84:8A:EF:39:E1:B3:75:BC:79:93:CD:1F:F8:67:AB:7D
Certificate issuer: /CN=946a7aae15ff3e831e3803fd98c1063ccc4bf3ec
Certificate serial: 0182634E781D9D9AFF9FE3109FDAD79751D8
Authority key identifier: 94:6A:7A:AE:15:FF:3E:83:1E:38:03:FD:98:C1:06:3C:CC:4B:F3:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lGp6rhX_PoMeOAP9mMEGPMxL8-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/9e61b8-6223-4dce-91d5-c6d5f2a02c6f/1/whLdKoSK7znhs3W8eZPNH_hnq30.roa
Signing time: Wed 03 Aug 2022 10:44:23 +0000
ROA not before: Wed 03 Aug 2022 10:44:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42074
IP address blocks: 193.108.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:63:4e:78:1d:9d:9a:ff:9f:e3:10:9f:da:d7:97:51:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=946a7aae15ff3e831e3803fd98c1063ccc4bf3ec
Validity
Not Before: Aug 3 10:44:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c212dd2a848aef39e1b375bc7993cd1ff867ab7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ec:e1:bd:22:6d:15:0f:19:f2:db:0f:a2:54:
77:52:6c:91:d6:a7:e8:c0:26:74:71:db:a1:76:94:
e5:54:e9:f2:51:7b:8a:16:32:d2:fa:07:4c:49:ae:
b6:4a:07:b9:3f:bc:35:6a:c4:dc:53:af:64:b3:7d:
d0:5d:22:60:ac:0c:08:22:98:88:d0:03:d6:06:43:
34:98:92:52:b1:b9:ff:b1:72:e3:2e:96:60:7b:a5:
42:ec:d1:9c:5b:fe:4c:9f:26:d8:34:61:20:a3:8e:
6c:79:f7:e8:91:d6:16:cc:fe:7b:e8:da:b8:dc:cc:
df:7d:78:89:47:29:79:fc:15:40:ca:f9:6a:65:c2:
a2:16:28:c6:56:e3:be:19:25:64:ae:76:43:67:3e:
1b:25:98:5a:6e:49:42:8f:48:fe:db:87:b5:1f:d4:
44:a9:0f:fc:0a:7d:8c:85:e4:c4:eb:a4:ed:08:13:
58:7c:14:16:5a:63:b2:5d:96:85:51:39:3b:3e:63:
cb:83:86:ab:cc:c4:dd:c4:a3:fe:43:cf:cf:9a:b7:
6f:94:a9:94:19:9d:19:db:fd:0c:ab:17:d3:67:5d:
b2:a6:88:0e:c4:35:a1:ac:b1:5a:19:41:84:d7:00:
39:6c:a9:c5:9d:00:70:3f:4e:f9:e9:4d:63:42:89:
4b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:12:DD:2A:84:8A:EF:39:E1:B3:75:BC:79:93:CD:1F:F8:67:AB:7D
X509v3 Authority Key Identifier:
keyid:94:6A:7A:AE:15:FF:3E:83:1E:38:03:FD:98:C1:06:3C:CC:4B:F3:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lGp6rhX_PoMeOAP9mMEGPMxL8-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/9e61b8-6223-4dce-91d5-c6d5f2a02c6f/1/whLdKoSK7znhs3W8eZPNH_hnq30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/9e61b8-6223-4dce-91d5-c6d5f2a02c6f/1/lGp6rhX_PoMeOAP9mMEGPMxL8-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.241.0/24
Signature Algorithm: sha256WithRSAEncryption
45:57:52:7f:68:7b:a9:3c:74:e6:33:63:48:ed:c1:1a:d1:35:
00:37:7a:b0:64:72:30:cb:30:1b:f4:cc:e1:af:63:9b:ed:43:
fd:3f:ec:48:30:7a:12:e3:38:78:c3:9d:1c:17:59:d5:35:27:
42:9a:e3:2c:48:90:99:f9:d1:75:f3:64:51:b2:04:83:6c:bd:
77:ad:48:70:c0:c7:f2:a4:bc:10:c9:92:97:7d:1f:22:2e:fb:
ff:73:bc:67:5f:f3:6f:a2:c1:aa:25:5a:94:12:f2:2f:56:16:
b1:be:e0:ce:88:b1:45:50:41:61:2f:89:7d:19:5b:4f:7a:d6:
96:f1:e0:e3:94:42:54:57:e8:32:c2:41:7a:34:a1:ff:50:10:
9b:27:cb:d6:2d:37:ce:01:71:87:f8:fe:7b:31:7a:1c:7e:87:
31:61:3d:17:7e:f8:72:eb:df:8f:f8:3f:20:45:a6:66:2a:28:
f6:12:7d:de:38:0c:c2:e4:b1:52:36:2a:60:42:6e:45:a3:70:
75:a3:d7:64:8f:51:b5:05:8b:80:52:d1:d2:b0:88:9e:a2:6a:
4e:c5:fc:40:84:fb:ee:50:6b:de:b5:92:eb:9b:c3:c4:bb:0f:
e1:e5:c0:40:d5:01:3e:40:5d:b3:25:24:37:a4:39:a0:ed:87:
92:6e:f2:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:51 2023 by rpki-client on console-ams.rpki-client.org