Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/rDftyW1L8Oo1yF15NV8_IDkPXRo.roa
File: rDftyW1L8Oo1yF15NV8_IDkPXRo.roa (raw, json)
Hash identifier: RWZilM0j0d+qLsDKk4ASh4xGlVZ3c20GGoae77CWd+Q=
Subject key identifier: AC:37:ED:C9:6D:4B:F0:EA:35:C8:5D:79:35:5F:3F:20:39:0F:5D:1A
Certificate issuer: /CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Certificate serial: 0273D390
Authority key identifier: 0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/rDftyW1L8Oo1yF15NV8_IDkPXRo.roa
Signing time: Sat 01 Jan 2022 14:07:48 +0000
ROA not before: Sat 01 Jan 2022 14:07:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8893
IP address blocks: 193.101.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41145232 (0x273d390)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b4a237d117df77e0b8aa512f6f25fb207f9a2b1
Validity
Not Before: Jan 1 14:07:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac37edc96d4bf0ea35c85d79355f3f20390f5d1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5e:87:51:84:6c:ac:85:58:39:7d:85:c3:d0:
3c:ad:cf:19:ff:14:ad:30:6c:f3:fe:5d:17:14:bb:
66:a5:6f:1e:a6:b0:57:89:0a:09:63:2f:22:a4:cc:
3b:ad:cd:8d:36:66:82:91:67:2c:de:50:9f:fb:c7:
4c:88:5c:1e:9b:83:ef:dd:1b:a4:95:c8:61:1b:e9:
af:b9:7f:33:af:39:64:6b:32:1e:06:79:7b:8b:9a:
83:d3:dd:4b:37:76:5b:32:67:ea:a6:15:a1:3b:2a:
ec:30:4b:ef:0b:3a:60:d3:72:cb:b7:8b:de:eb:dd:
cd:84:ee:27:ec:77:8c:79:2e:50:e0:a9:bc:a4:a1:
e2:18:68:bc:66:2d:58:37:8d:2a:2f:8e:e5:93:e1:
0c:b3:b8:9d:96:a3:61:d3:07:31:fa:89:73:cc:1f:
76:1e:a1:04:46:97:a6:0e:f5:6b:4f:48:8f:47:cc:
41:e2:8a:9d:c1:28:a7:5d:59:44:5f:30:61:d0:04:
2d:75:6c:03:52:4c:e3:7e:53:2b:59:ae:7e:7c:66:
bd:6a:bc:b9:dc:56:6e:92:7d:20:7b:3c:52:ed:b2:
fe:67:c2:94:68:fc:b6:68:3e:ab:8a:0c:29:8c:e5:
cf:f8:db:6a:a2:e7:68:f6:c0:2c:95:4b:6b:6a:79:
a5:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:37:ED:C9:6D:4B:F0:EA:35:C8:5D:79:35:5F:3F:20:39:0F:5D:1A
X509v3 Authority Key Identifier:
keyid:0B:4A:23:7D:11:7D:F7:7E:0B:8A:A5:12:F6:F2:5F:B2:07:F9:A2:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C0ojfRF9934LiqUS9vJfsgf5orE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/rDftyW1L8Oo1yF15NV8_IDkPXRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/2b57fd-dfed-4363-b6a2-25c9afbb3221/1/C0ojfRF9934LiqUS9vJfsgf5orE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.101.47.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7c:8f:7a:c0:a5:88:49:c9:43:1d:86:d9:c0:cd:3b:6d:eb:
04:ac:e4:37:b5:7c:16:ce:6c:df:d6:36:d2:b9:2c:8d:40:99:
30:c3:a1:9a:b9:7f:9b:e9:fb:47:d9:43:94:b0:9b:c6:61:65:
87:75:06:dd:70:53:d3:b2:72:e0:5d:c1:bd:9a:eb:98:34:d5:
91:07:93:ca:30:28:6b:4d:a6:65:35:b2:c5:6f:86:66:19:b7:
84:1d:b9:4f:e8:3a:19:90:98:53:5a:79:7e:12:f9:6d:a5:27:
e7:4b:dc:09:52:3b:72:a9:11:da:60:a6:7e:60:66:39:a2:b2:
30:09:03:5d:06:d4:07:dd:7a:49:00:4f:29:57:5f:f9:83:d8:
f7:8f:e4:77:67:77:8c:dd:f4:dd:e4:36:0d:04:94:21:52:d4:
69:bd:b9:36:28:74:7a:a4:ea:1b:59:63:05:0d:95:4d:62:69:
cf:20:85:92:62:9b:30:6d:6b:63:ee:22:20:b5:33:b4:68:79:
4e:e4:1a:0b:e8:04:85:50:68:56:47:3d:b9:fa:21:e9:ed:9c:
cb:ae:d7:a8:57:28:a1:09:4b:7c:94:04:d7:c7:a9:1d:29:d4:
e3:22:12:c9:61:da:df:15:4d:b4:89:1b:7d:4f:c9:07:b8:6a:
d4:03:f9:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:49 2023 by rpki-client on console-fra.rpki-client.org