Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/_40jb9uigaP4QbJIWoIkZZa7JJU.roa
File: _40jb9uigaP4QbJIWoIkZZa7JJU.roa (raw, json)
Hash identifier: CoZHSigRWMogf+3BPvJDwV5fBd25YNOTx0QtIY5FhWA=
Subject key identifier: FF:8D:23:6F:DB:A2:81:A3:F8:41:B2:48:5A:82:24:65:96:BB:24:95
Certificate issuer: /CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Certificate serial: 07B167AE
Authority key identifier: A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/_40jb9uigaP4QbJIWoIkZZa7JJU.roa
Signing time: Sat 01 Jan 2022 08:01:52 +0000
ROA not before: Sat 01 Jan 2022 08:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 193.177.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129066926 (0x7b167ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576eb2cc462e6e4bf0de69b9f634875debbaae2
Validity
Not Before: Jan 1 08:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff8d236fdba281a3f841b2485a82246596bb2495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:dd:f2:dd:9a:bf:75:d3:5a:ba:8b:f6:b5:00:
e6:8f:21:15:27:82:99:72:98:78:04:bb:ed:34:ec:
eb:fe:39:80:05:e4:7d:1e:81:d9:d2:56:4e:56:8b:
39:b0:26:84:42:66:08:fc:89:c8:b6:05:c0:70:81:
21:66:7c:6a:cf:c1:a8:79:c3:c4:c4:1c:de:8a:89:
e7:8a:58:7f:92:5c:36:c6:be:a9:8f:7c:3e:6a:1d:
48:2a:2b:83:e7:a5:9d:ca:cd:7a:ca:ba:66:61:bb:
5e:2d:83:72:31:7e:2e:e4:a5:f2:60:e4:74:ea:38:
6e:1a:85:b9:85:1c:ca:64:70:82:e4:fd:e4:5f:13:
54:da:8e:f6:2f:1c:78:33:31:bb:83:20:26:da:08:
5c:9f:27:a6:4f:14:44:6a:37:3d:13:94:17:da:2d:
e3:f2:37:9f:17:2c:28:74:28:2b:2a:e7:99:b1:a3:
3d:3e:bc:d3:76:29:3f:8d:39:19:4b:48:13:f1:16:
ed:45:29:6e:e2:1c:ca:49:fe:56:a3:31:59:0f:41:
ab:e4:ba:7d:dd:ad:0c:0c:7c:a6:83:27:05:d6:ed:
a0:3d:96:31:20:78:8c:6d:51:dd:ad:3e:19:00:2f:
ad:92:c9:f1:1c:8b:9a:b1:15:30:34:9d:56:40:b7:
5c:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:8D:23:6F:DB:A2:81:A3:F8:41:B2:48:5A:82:24:65:96:BB:24:95
X509v3 Authority Key Identifier:
keyid:A5:76:EB:2C:C4:62:E6:E4:BF:0D:E6:9B:9F:63:48:75:DE:BB:AA:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXbrLMRi5uS_Deabn2NIdd67quI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/_40jb9uigaP4QbJIWoIkZZa7JJU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/931927-9f38-41b6-87fa-254acd92b4e1/1/pXbrLMRi5uS_Deabn2NIdd67quI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.177.222.0/24
Signature Algorithm: sha256WithRSAEncryption
71:c5:1e:f3:26:f6:9b:3a:18:5a:48:8e:d9:b6:25:5d:b2:b8:
34:69:84:c9:04:b4:42:5a:64:1a:c0:54:a6:57:48:d6:a1:ce:
38:9c:6b:90:97:74:30:4f:66:78:7c:9e:c6:53:f3:2a:b2:71:
f8:d8:d3:d2:96:fd:66:75:b2:0d:5b:dd:a8:fe:7c:37:d6:f8:
24:f5:4f:80:a8:05:fa:f1:5a:f6:1f:cf:65:bb:8d:83:3e:19:
8b:5f:10:c8:d9:a7:6b:ad:c5:c6:ad:7e:de:e1:cf:35:86:50:
c9:ad:a3:88:c4:56:3a:34:99:82:e8:b6:47:a3:dc:cc:24:1d:
d9:a0:e1:29:f3:f7:6f:e3:5b:38:eb:aa:56:28:cf:69:d3:1c:
62:68:1e:b5:67:5e:6a:f4:b2:73:3b:1e:87:13:c0:b3:94:48:
54:8e:39:ee:6b:89:e5:35:7c:b8:9f:45:2a:d2:59:6c:8a:c8:
c2:0e:7d:47:c0:e8:e0:04:71:2c:9b:21:30:66:72:10:d1:28:
1a:c4:88:4d:b3:95:36:8b:b3:0b:2c:01:d9:ab:19:74:8f:53:
f3:24:64:ef:a7:4d:95:e5:13:80:b4:d9:f1:5f:ae:74:8a:d3:
32:1a:93:14:6f:38:f7:18:bd:bc:cc:a8:a0:62:17:05:bb:6a:
ce:64:6a:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:36 2023 by rpki-client on console-ams.rpki-client.org