Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/b55ef1-ca63-4ca1-a659-f9720285e797/1/a8FpbLBvIVqD2gVsqgZMbPECnMY.roa
File: a8FpbLBvIVqD2gVsqgZMbPECnMY.roa (raw, json)
Hash identifier: 7j9q+rEEI3F1yk2sd3jeDJGWxFfekFJOqoRrVORTvoY=
Subject key identifier: 6B:C1:69:6C:B0:6F:21:5A:83:DA:05:6C:AA:06:4C:6C:F1:02:9C:C6
Certificate issuer: /CN=6f074d2efb5f3e1d35c291f8a11c0bc0be7ec1b8
Certificate serial: 018382963FCCFF4F8E5E4AB65480BFC7D7BC
Authority key identifier: 6F:07:4D:2E:FB:5F:3E:1D:35:C2:91:F8:A1:1C:0B:C0:BE:7E:C1:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwdNLvtfPh01wpH4oRwLwL5-wbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/b55ef1-ca63-4ca1-a659-f9720285e797/1/a8FpbLBvIVqD2gVsqgZMbPECnMY.roa
Signing time: Wed 28 Sep 2022 05:33:48 +0000
ROA not before: Wed 28 Sep 2022 05:33:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53667
IP address blocks: 193.108.130.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:82:96:3f:cc:ff:4f:8e:5e:4a:b6:54:80:bf:c7:d7:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f074d2efb5f3e1d35c291f8a11c0bc0be7ec1b8
Validity
Not Before: Sep 28 05:33:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6bc1696cb06f215a83da056caa064c6cf1029cc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:09:97:bb:29:0f:ae:4d:6f:b0:ac:c5:02:8f:
7a:fb:19:dc:ab:3b:c7:55:56:a0:52:d0:4f:d0:76:
46:78:cb:26:b1:60:43:9f:c6:73:1e:2e:10:c5:fe:
8d:69:4a:1b:ec:24:af:ea:a3:f3:e8:21:fb:dc:13:
09:e9:c7:06:43:02:a8:90:a5:1d:0a:8a:7c:c9:d8:
05:fe:13:e1:62:32:49:fa:4e:fa:24:7e:2b:0c:87:
d6:78:d9:08:84:0b:81:7e:36:76:16:e0:9b:4b:77:
70:d5:34:c4:07:bc:5c:35:cb:ff:95:65:35:9e:ab:
6f:3e:5f:db:6b:27:8d:06:12:2a:f7:f2:de:a4:cf:
87:dc:df:e2:2d:84:e8:a0:97:b9:a3:2e:87:22:cd:
e7:6a:83:3e:14:7c:1f:2c:e4:2e:74:27:1d:29:2e:
03:82:70:b1:90:8f:ca:d5:b4:9a:87:cd:9f:97:ad:
5f:7f:4b:20:ab:f0:07:bc:23:81:01:37:c5:41:20:
5f:bc:bc:7e:5e:4b:63:c9:37:75:28:be:40:31:26:
6e:39:9a:7a:05:42:0e:03:7e:46:96:15:3c:0f:18:
99:ae:14:26:6e:8e:76:59:72:fc:6a:e0:41:0c:f8:
fc:1e:ee:32:46:c8:e2:0a:b1:cf:f9:78:1c:7c:bf:
f9:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:C1:69:6C:B0:6F:21:5A:83:DA:05:6C:AA:06:4C:6C:F1:02:9C:C6
X509v3 Authority Key Identifier:
keyid:6F:07:4D:2E:FB:5F:3E:1D:35:C2:91:F8:A1:1C:0B:C0:BE:7E:C1:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwdNLvtfPh01wpH4oRwLwL5-wbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/b55ef1-ca63-4ca1-a659-f9720285e797/1/a8FpbLBvIVqD2gVsqgZMbPECnMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/b55ef1-ca63-4ca1-a659-f9720285e797/1/bwdNLvtfPh01wpH4oRwLwL5-wbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.130.0/24
Signature Algorithm: sha256WithRSAEncryption
21:cc:96:bf:a1:dd:84:eb:60:51:6f:0e:ee:b4:d4:02:c2:8d:
8c:02:f5:ec:3f:04:34:9c:16:01:fa:0b:fb:2c:04:57:be:37:
ed:b7:14:4c:89:88:9a:f5:c1:e7:19:3f:9c:76:e9:d8:7b:0a:
c3:84:ff:e9:5e:93:a2:fa:99:9b:de:fa:a2:d9:d1:41:ea:ce:
c1:b6:f2:02:81:de:2f:ad:c5:72:63:5d:9b:66:03:4e:34:09:
8c:89:62:da:4e:52:ae:d1:3f:4d:6b:80:07:66:4f:76:a8:b9:
75:aa:57:ab:d3:60:0d:96:ad:fc:22:dd:9f:75:5a:65:9b:ab:
8a:bc:71:d8:53:2a:8b:a8:13:cf:e6:98:33:13:d0:79:20:d0:
bf:85:23:38:57:a4:50:f9:63:c0:b1:ff:14:9d:fb:de:88:09:
b4:51:85:27:39:20:91:c9:ce:31:5e:9e:7e:9b:a7:8e:5c:3e:
e3:cf:d8:32:52:fb:01:bf:e3:75:16:10:64:b8:33:15:d7:84:
a4:e4:2c:fb:b4:1e:8e:a3:d6:23:eb:6f:21:6e:7e:e0:71:a3:
4f:d9:ee:37:7b:49:0e:5f:5e:73:d6:f2:cc:0d:be:14:22:c0:
24:95:80:33:5c:8f:d9:ba:19:1d:02:54:68:0c:df:2f:d4:79:
67:5a:94:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:32 2023 by rpki-client on console-fra.rpki-client.org