Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/XweNCT-dFWEbSbxErTYhYfMS3og.roa
File: XweNCT-dFWEbSbxErTYhYfMS3og.roa (raw, json)
Hash identifier: Rv+TcpWghr+1gcvApHeA3ooBeMHtusBlePXsngb4+VI=
Subject key identifier: 5F:07:8D:09:3F:9D:15:61:1B:49:BC:44:AD:36:21:61:F3:12:DE:88
Certificate issuer: /CN=f7c0ebd9ff7dc6e81f8c3548c7c2e8cdc7967d6f
Certificate serial: D5BE
Authority key identifier: F7:C0:EB:D9:FF:7D:C6:E8:1F:8C:35:48:C7:C2:E8:CD:C7:96:7D:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98Dr2f99xugfjDVIx8LozceWfW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/XweNCT-dFWEbSbxErTYhYfMS3og.roa
Signing time: Fri 04 Feb 2022 12:43:07 +0000
ROA not before: Fri 04 Feb 2022 12:43:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50111
IP address blocks: 193.104.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54718 (0xd5be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7c0ebd9ff7dc6e81f8c3548c7c2e8cdc7967d6f
Validity
Not Before: Feb 4 12:43:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f078d093f9d15611b49bc44ad362161f312de88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4a:d0:ee:01:f0:14:0d:84:96:76:6b:d6:00:
08:0d:39:fd:16:c2:9e:9a:f9:49:6c:af:a5:18:98:
d7:1b:eb:ec:88:a2:89:0c:84:a0:d7:08:69:bd:67:
fd:aa:79:da:fa:ae:73:54:7a:14:7e:b6:7b:a1:b9:
f2:bb:25:30:be:3e:b8:5a:fb:e1:56:49:2b:88:3c:
ed:16:ed:5e:53:0a:df:9b:ad:37:91:b2:0e:91:7b:
ad:d3:8b:ca:41:16:13:27:62:d5:f4:9f:4d:50:90:
7f:9d:63:4e:ee:38:39:fa:62:bd:d1:23:a2:9c:05:
a8:38:a6:8e:83:b9:3c:e3:1b:f3:32:4b:aa:3a:be:
dd:3e:e3:be:5e:46:2e:42:8a:df:cd:c3:74:d9:72:
88:44:b6:23:95:13:e3:bc:74:c0:2c:9c:67:2e:70:
fc:d0:24:0a:33:b2:8d:7e:80:4a:d5:7e:63:80:c8:
21:13:59:96:2e:d2:29:a0:f0:f5:fd:89:d1:c1:4e:
45:d6:a9:a2:d4:72:35:f3:03:a1:0d:fa:f8:81:2d:
c4:cc:6f:06:ea:b5:3e:be:2c:71:50:b7:5b:48:68:
1c:2a:1d:3e:47:93:c5:6c:0f:85:2a:97:92:ca:18:
38:bd:39:7e:13:5b:ab:a6:34:5b:47:8d:ed:6f:6b:
62:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:07:8D:09:3F:9D:15:61:1B:49:BC:44:AD:36:21:61:F3:12:DE:88
X509v3 Authority Key Identifier:
keyid:F7:C0:EB:D9:FF:7D:C6:E8:1F:8C:35:48:C7:C2:E8:CD:C7:96:7D:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98Dr2f99xugfjDVIx8LozceWfW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/XweNCT-dFWEbSbxErTYhYfMS3og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/d3684a-4525-476f-8c48-69d71bf2d353/1/98Dr2f99xugfjDVIx8LozceWfW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.138.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:79:2a:51:a8:e8:52:84:29:a7:7f:a7:90:85:58:19:9d:da:
24:62:d4:13:50:9f:c6:8e:b5:c1:6e:d0:71:55:b3:a6:24:2f:
2c:45:69:21:eb:90:17:8c:19:df:c4:50:1e:56:31:33:b5:40:
cc:2a:df:6b:de:36:3d:1a:b9:2f:69:a4:71:49:62:eb:f2:82:
9f:56:b0:e9:42:32:07:ad:d7:3f:4a:f4:27:8d:7d:fc:0b:d4:
b2:28:e9:87:13:2e:89:7e:ef:e2:4e:8b:74:78:77:33:1f:86:
97:a9:38:47:24:b6:90:ac:24:0c:2d:0e:65:b4:43:72:15:5e:
40:ac:31:ac:f0:a5:d3:52:a1:cd:9d:ba:45:e9:70:ed:43:1a:
1c:68:38:f3:ca:7c:1a:40:cc:47:a1:da:2a:83:79:28:40:10:
6a:d6:ca:ba:b1:66:c2:84:d2:a9:8f:06:f7:0d:7c:fe:98:b1:
c9:87:dc:ff:32:2c:c8:f3:79:fb:fb:3a:07:a0:36:86:2a:cd:
c8:32:f4:3b:09:bf:0c:71:84:54:99:55:9a:fb:c2:c7:9d:8d:
f1:b1:1a:fa:7d:29:5d:39:e2:e6:34:8d:8e:35:48:4f:89:88:
d1:ba:22:6b:af:e2:4f:93:b6:a3:b4:24:27:49:cb:7e:6a:a0:
35:a0:13:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:15 2023 by rpki-client on console-ams.rpki-client.org