Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/4f08a5-432f-48fc-bd8b-fb71bd4545b0/1/jKe6YiZL0gkGFb_x8U08QfK-WKg.roa
File: jKe6YiZL0gkGFb_x8U08QfK-WKg.roa (raw, json)
Hash identifier: lV7cMIuz+hQ1IDdjhjTKrCDp8RoUG2bsAWst5JvB3fY=
Subject key identifier: 8C:A7:BA:62:26:4B:D2:09:06:15:BF:F1:F1:4D:3C:41:F2:BE:58:A8
Certificate issuer: /CN=c098914cb0a945440f84deaf3f3d97fc77fd26ce
Certificate serial: 1041C427
Authority key identifier: C0:98:91:4C:B0:A9:45:44:0F:84:DE:AF:3F:3D:97:FC:77:FD:26:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wJiRTLCpRUQPhN6vPz2X_Hf9Js4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/4f08a5-432f-48fc-bd8b-fb71bd4545b0/1/jKe6YiZL0gkGFb_x8U08QfK-WKg.roa
Signing time: Sat 01 Jan 2022 04:51:16 +0000
ROA not before: Sat 01 Jan 2022 04:51:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 193.25.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 272745511 (0x1041c427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c098914cb0a945440f84deaf3f3d97fc77fd26ce
Validity
Not Before: Jan 1 04:51:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ca7ba62264bd2090615bff1f14d3c41f2be58a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:a7:54:78:8c:24:bc:32:01:c9:d5:22:a7:88:
8f:3b:9c:51:6f:0f:8c:f9:e1:e2:03:20:9c:ca:78:
b2:df:47:3e:cb:c4:79:47:df:bb:d4:3c:cf:43:cd:
86:44:75:56:d6:c2:8d:32:9b:56:7c:5d:ed:8a:a2:
6c:76:bd:4c:91:f2:d7:80:b4:a1:eb:c7:74:35:f5:
95:29:0a:9c:aa:3f:60:49:93:5e:15:df:ac:11:60:
db:4c:34:a6:da:f2:4f:04:7f:27:2b:b2:dc:2a:19:
22:39:12:77:73:50:d2:a3:85:2c:9b:6b:ee:d1:5c:
de:97:f0:e9:49:66:eb:ae:ff:d2:4c:5a:92:be:80:
64:07:19:3a:7e:8d:fc:75:63:37:43:03:a2:8a:dd:
54:5b:4d:a8:88:7d:54:73:b8:f2:6f:d7:43:c9:0b:
67:05:53:be:f7:65:b0:97:5a:07:90:5c:c3:49:0c:
62:ab:4f:38:ef:79:38:46:41:63:9f:5a:43:b4:8d:
00:51:19:ac:43:fb:11:1b:9b:a5:d8:49:14:44:9c:
67:0a:4a:af:e3:ca:0d:e6:50:6c:22:a7:e1:c0:d9:
a3:32:77:b5:32:56:df:de:fc:f0:8a:ad:36:d6:17:
70:74:b2:e5:e5:e5:5a:b9:9c:94:23:42:2d:8f:47:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:A7:BA:62:26:4B:D2:09:06:15:BF:F1:F1:4D:3C:41:F2:BE:58:A8
X509v3 Authority Key Identifier:
keyid:C0:98:91:4C:B0:A9:45:44:0F:84:DE:AF:3F:3D:97:FC:77:FD:26:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wJiRTLCpRUQPhN6vPz2X_Hf9Js4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4f08a5-432f-48fc-bd8b-fb71bd4545b0/1/jKe6YiZL0gkGFb_x8U08QfK-WKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/4f08a5-432f-48fc-bd8b-fb71bd4545b0/1/wJiRTLCpRUQPhN6vPz2X_Hf9Js4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.16.0/20
Signature Algorithm: sha256WithRSAEncryption
b9:a0:b5:3d:c9:a9:e2:07:a4:50:b7:a0:48:be:c1:b8:49:f6:
00:66:79:67:54:99:40:c6:d3:1b:79:5b:15:67:1c:97:cf:02:
39:c0:9b:59:d6:06:bc:04:10:6b:6c:98:32:52:4a:a3:91:50:
c3:65:42:83:dc:19:0c:bb:03:10:13:fd:72:bc:c3:5f:e8:0a:
24:f0:f3:9d:95:ec:63:c7:39:6c:b5:60:04:6f:81:ad:65:93:
a1:7b:a8:31:1a:80:82:69:38:fd:9c:a5:8c:3d:95:7a:08:59:
56:c4:38:96:7f:3d:d6:8e:c7:36:f2:01:33:50:88:26:d0:10:
02:29:30:14:be:4f:a7:32:90:1f:df:84:2b:c2:fe:6a:20:94:
74:c4:aa:d8:b7:74:99:ae:1a:04:84:92:34:f7:88:82:e9:27:
fe:3e:80:e7:9b:f2:a0:75:19:7c:fd:77:40:c0:e8:f2:2b:a1:
71:85:e3:e2:56:fc:60:cc:4f:04:fb:09:b6:ce:fa:3c:5f:93:
94:a5:de:c3:98:52:60:13:b7:20:36:5f:ed:77:1e:e2:6d:9d:
ab:22:46:41:f6:97:ee:b9:c1:df:a9:1e:21:5a:62:a7:3f:ff:
c0:88:f0:3e:2f:d5:ca:60:14:81:03:40:6a:7d:2a:34:95:30:
d1:6c:b2:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:44 2023 by rpki-client on console-fra.rpki-client.org