Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/0f3a87-5ea1-4671-90b7-ae1759916df0/1/4fXqoeTpy4hu8dv2z7v3LlkupXk.roa
File: 4fXqoeTpy4hu8dv2z7v3LlkupXk.roa (raw, json)
Hash identifier: XJfDyMivPqQTcQyzU73Yf10P4qMvcMAlTwg6qn56afI=
Subject key identifier: E1:F5:EA:A1:E4:E9:CB:88:6E:F1:DB:F6:CF:BB:F7:2E:59:2E:A5:79
Certificate issuer: /CN=d93e302c21a9dda67509fc8f13daf4c62acff0ee
Certificate serial: 0200A083
Authority key identifier: D9:3E:30:2C:21:A9:DD:A6:75:09:FC:8F:13:DA:F4:C6:2A:CF:F0:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T4wLCGp3aZ1CfyPE9r0xirP8O4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/0f3a87-5ea1-4671-90b7-ae1759916df0/1/4fXqoeTpy4hu8dv2z7v3LlkupXk.roa
Signing time: Sat 01 Jan 2022 01:57:49 +0000
ROA not before: Sat 01 Jan 2022 01:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48173
IP address blocks: 193.101.179.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33595523 (0x200a083)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93e302c21a9dda67509fc8f13daf4c62acff0ee
Validity
Not Before: Jan 1 01:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1f5eaa1e4e9cb886ef1dbf6cfbbf72e592ea579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:70:5c:79:ae:07:60:a4:02:dc:13:4c:b2:e9:
69:d8:bb:e7:5e:88:5a:b1:6d:47:d5:6b:e6:9c:70:
a1:f3:6d:11:83:35:52:33:21:b9:82:47:79:c1:13:
da:e4:ae:e3:b9:72:9e:09:3d:02:1b:1a:e2:4d:28:
71:2b:07:8f:b7:73:09:00:19:75:ad:20:cf:62:0a:
dc:48:e2:f2:f3:2e:68:de:eb:08:b8:f1:4d:63:20:
48:ed:fb:a2:68:bb:65:07:db:f6:f6:31:45:5e:dd:
db:6a:99:74:bf:d7:40:ea:23:77:3e:cc:72:b6:a5:
51:2b:7b:fa:73:1e:1f:44:0b:fa:07:38:00:72:ac:
de:7b:24:1e:32:91:cd:0d:00:cf:30:1c:39:a2:4d:
af:3e:36:7f:60:c9:9a:7b:56:12:39:3d:57:3b:c8:
01:36:96:91:da:de:a7:fe:84:c0:df:cb:bd:2d:71:
df:83:05:26:34:22:ae:e2:cd:91:ca:e8:ad:54:06:
29:7a:ee:02:db:c2:d9:0a:07:57:c0:54:2c:6c:b5:
55:97:3d:c2:32:02:68:b8:a8:60:90:d6:79:b3:b2:
5d:9b:37:12:57:d6:35:ec:b5:c9:41:b0:ac:9d:92:
da:f1:c2:b0:6d:5a:79:03:8f:83:1d:26:94:51:5e:
21:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:F5:EA:A1:E4:E9:CB:88:6E:F1:DB:F6:CF:BB:F7:2E:59:2E:A5:79
X509v3 Authority Key Identifier:
keyid:D9:3E:30:2C:21:A9:DD:A6:75:09:FC:8F:13:DA:F4:C6:2A:CF:F0:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T4wLCGp3aZ1CfyPE9r0xirP8O4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/0f3a87-5ea1-4671-90b7-ae1759916df0/1/4fXqoeTpy4hu8dv2z7v3LlkupXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/0f3a87-5ea1-4671-90b7-ae1759916df0/1/2T4wLCGp3aZ1CfyPE9r0xirP8O4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.101.179.0/24
Signature Algorithm: sha256WithRSAEncryption
99:e9:6d:48:d7:ac:cc:e0:14:82:67:57:ff:a3:d1:c9:6d:ca:
39:fb:4e:0d:c4:81:21:b8:1c:ec:98:e5:3e:f6:32:ee:55:50:
8a:8a:ba:cc:14:84:6a:03:7b:d0:31:15:ea:00:b2:15:85:a9:
b7:04:02:59:98:fd:06:f1:8f:f5:61:ff:cf:7c:5e:01:4e:96:
08:52:40:5d:ab:b4:5e:31:ea:10:77:29:ca:67:99:7a:b6:dc:
3c:c3:6d:18:81:97:d9:f0:2c:1a:c1:13:89:0f:b3:f2:86:d6:
2d:3e:ed:0b:2d:48:ba:4b:1f:09:d0:9c:4a:44:69:de:1c:a7:
c1:14:50:26:60:98:41:0e:35:e4:c4:47:da:79:6c:2e:20:70:
11:f4:21:b0:db:28:7d:ee:e6:0e:c8:a1:9f:49:31:1f:26:53:
fd:9a:7f:f5:0b:77:b2:4d:e5:4f:0c:31:03:1a:54:7c:2f:28:
ec:99:a3:04:7f:d4:32:db:e8:e1:9b:95:09:97:0d:aa:5a:15:
37:68:ef:8f:66:91:b7:49:18:4a:de:55:54:4d:4f:7f:7e:94:
8d:f8:d9:9c:1f:b1:94:19:83:04:ee:07:da:db:76:b7:ac:e5:
d4:d9:d7:0a:44:b4:3c:76:f1:c0:97:90:1c:4f:77:e8:e9:b2:
11:2f:e9:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:30 2023 by rpki-client on console-ams.rpki-client.org