Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/6LIslxRC0odFVUTobpEeSTKFfoM.roa
File: 6LIslxRC0odFVUTobpEeSTKFfoM.roa (raw, json)
Hash identifier: 2LG8taVI5RiHpj6/g2ddgpUD3wxQK4OKbzARWimQO8A=
Subject key identifier: E8:B2:2C:97:14:42:D2:87:45:55:44:E8:6E:91:1E:49:32:85:7E:83
Certificate issuer: /CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Certificate serial: 03BC5214
Authority key identifier: E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/6LIslxRC0odFVUTobpEeSTKFfoM.roa
Signing time: Sat 01 Jan 2022 12:05:59 +0000
ROA not before: Sat 01 Jan 2022 12:05:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42641
IP address blocks: 193.142.219.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62673428 (0x3bc5214)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7d68a9eb86a8264e9ddc3122849b80cc342f5dc
Validity
Not Before: Jan 1 12:05:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e8b22c971442d287455544e86e911e4932857e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:72:f1:08:2a:03:8b:80:ed:90:ba:8e:46:62:
9f:f9:86:32:28:9f:d4:88:b3:99:c1:d3:71:ec:a2:
fd:44:ff:1a:ce:46:58:e4:7c:b8:3f:c4:a4:5d:00:
f5:9f:2b:44:85:eb:b8:fb:9b:e4:50:27:be:0f:64:
f8:63:e0:f9:c6:33:44:c8:57:29:63:1d:36:59:61:
68:fc:23:06:86:90:9f:a4:07:70:99:66:90:29:35:
97:cd:a6:41:9c:bb:24:1c:4a:a5:03:58:cb:7d:e2:
61:bf:eb:8c:8d:5d:3f:f6:4d:3b:79:2b:27:83:b1:
d7:51:a9:53:6a:0c:05:f1:f4:3e:cc:bf:2e:f8:66:
46:44:d4:63:19:0d:7c:cd:9c:96:32:49:fe:22:51:
00:dd:9f:66:5a:d4:85:06:c4:85:47:4d:57:85:62:
08:d0:c7:a1:56:03:07:c6:4e:85:e9:a6:97:f1:67:
e0:7d:95:93:ee:ec:35:fe:fb:a5:fa:7f:d9:e4:3f:
e3:86:ec:92:1d:f9:64:a6:d8:93:da:c7:fa:99:0e:
55:0c:53:dc:71:fb:72:2b:cb:81:de:90:69:fc:c3:
00:2f:ec:59:3c:bb:b6:24:fe:51:ae:2a:0b:b4:e4:
ad:66:c0:a0:12:49:a0:57:47:0e:16:67:af:af:50:
6f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:B2:2C:97:14:42:D2:87:45:55:44:E8:6E:91:1E:49:32:85:7E:83
X509v3 Authority Key Identifier:
keyid:E7:D6:8A:9E:B8:6A:82:64:E9:DD:C3:12:28:49:B8:0C:C3:42:F5:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/59aKnrhqgmTp3cMSKEm4DMNC9dw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/6LIslxRC0odFVUTobpEeSTKFfoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/565ea1-2a36-4403-941e-f0d40f029673/1/59aKnrhqgmTp3cMSKEm4DMNC9dw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.219.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:10:1f:f1:be:f9:e9:72:3f:e0:e7:56:da:b0:95:b2:95:2e:
bc:cb:0f:62:00:6e:3d:62:7c:9e:be:35:60:f2:f3:83:ec:b4:
a5:3d:bd:37:e8:f7:8a:f8:a0:82:3d:35:7a:2d:13:cc:b9:df:
99:c3:ba:a1:e6:11:0d:b9:dc:f5:44:21:74:84:aa:19:95:f5:
cd:30:02:57:01:4c:a9:77:ff:2d:ce:04:8d:5c:85:82:b6:b1:
d7:ab:0a:f5:d9:1c:47:2a:ae:7d:ea:04:bd:cf:5d:4b:0b:c6:
29:17:98:4f:bb:c7:8f:05:b1:d9:4b:88:84:a5:45:53:24:96:
1e:68:ca:3b:b9:d0:c0:d0:b3:74:ca:be:9c:6b:59:0f:04:54:
cc:99:6f:4d:10:c1:62:b2:9c:da:d3:1c:24:8a:77:3f:7e:11:
07:cb:61:79:0d:14:3b:2a:f9:a9:8c:02:b2:70:e1:bb:56:fc:
87:04:0e:42:37:8b:e2:4f:a4:11:6b:37:87:4b:f4:13:50:9b:
ce:59:7b:a9:bd:29:ef:81:c1:39:7e:69:d9:e0:db:3f:bd:ca:
b0:90:86:c6:1f:41:df:30:a0:81:4f:8c:82:b5:d0:b3:82:cc:
e1:c8:2e:d9:66:79:fe:a3:51:bc:02:2e:0d:30:a4:23:f2:89:
17:69:0a:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:40 2023 by rpki-client on console-fra.rpki-client.org