Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/g6atdxlqLO16D0PTFNPmh6YS9Y4.roa
File: g6atdxlqLO16D0PTFNPmh6YS9Y4.roa (raw, json)
Hash identifier: 0j/7ZvUmqyPFahGX2r7r4KdKioAbwOf/Bf9LRpD+NUg=
Subject key identifier: 83:A6:AD:77:19:6A:2C:ED:7A:0F:43:D3:14:D3:E6:87:A6:12:F5:8E
Certificate issuer: /CN=d85022282e34699fe548b7528519a25a50d9133a
Certificate serial: 0543AA0A
Authority key identifier: D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/g6atdxlqLO16D0PTFNPmh6YS9Y4.roa
Signing time: Sat 01 Jan 2022 08:06:02 +0000
ROA not before: Sat 01 Jan 2022 08:06:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48943
IP address blocks: 193.27.40.0/24 maxlen: 24
193.25.98.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88320522 (0x543aa0a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d85022282e34699fe548b7528519a25a50d9133a
Validity
Not Before: Jan 1 08:06:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83a6ad77196a2ced7a0f43d314d3e687a612f58e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4b:b9:b3:64:73:b4:3d:47:a5:9d:71:99:85:
1c:be:7e:9a:6e:42:26:af:74:c8:c3:a5:04:a0:59:
87:47:c9:7e:46:b3:06:6d:dd:6d:0a:52:6e:50:0c:
69:b6:b0:9c:a5:74:1b:45:86:8a:e3:1f:12:50:07:
90:d3:57:e7:75:fe:d0:51:37:1d:fe:6e:25:a6:d5:
39:2a:6d:80:5b:e8:19:03:fe:ae:c5:22:50:57:c4:
a7:1b:7f:b5:06:59:48:de:51:f4:ea:0a:85:8c:6f:
84:8f:17:16:97:0f:c8:ea:cc:88:60:f1:6d:15:6a:
10:4d:24:00:75:33:72:16:f6:76:e8:7c:d4:f4:62:
53:a2:3a:f7:4c:c6:f5:b3:bd:e8:fb:26:ca:7d:8c:
7a:2e:13:59:88:68:9d:23:a0:56:4f:d7:cc:50:f1:
0b:30:ac:e5:3d:1d:5c:0d:30:02:82:f8:10:6b:75:
15:12:67:cf:59:10:55:a3:2c:9f:e8:c0:bf:4f:3e:
9e:89:5a:07:64:9a:11:b0:7f:ac:62:31:0f:cb:fa:
8f:b4:2a:3c:e4:54:bb:c5:fa:17:54:96:d4:6e:eb:
0a:74:81:04:1d:68:c4:c4:a9:cd:dd:d9:f2:8a:c5:
cc:60:4d:a6:58:59:8a:43:dd:a6:4c:5f:5a:cc:1c:
95:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:A6:AD:77:19:6A:2C:ED:7A:0F:43:D3:14:D3:E6:87:A6:12:F5:8E
X509v3 Authority Key Identifier:
keyid:D8:50:22:28:2E:34:69:9F:E5:48:B7:52:85:19:A2:5A:50:D9:13:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2FAiKC40aZ_lSLdShRmiWlDZEzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/g6atdxlqLO16D0PTFNPmh6YS9Y4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/9758eb-4108-4087-a818-50ea67327cd1/1/2FAiKC40aZ_lSLdShRmiWlDZEzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.98.0/23
193.27.40.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:a7:e2:32:00:eb:98:a3:ca:52:2c:65:42:4f:c6:77:29:28:
c3:61:de:ae:89:21:56:5c:c4:6d:94:e4:80:3a:d2:dd:e1:89:
a1:ea:3d:c9:80:2f:3c:23:fc:e4:77:ae:64:8e:58:26:19:06:
c8:cc:ea:36:28:ce:60:26:20:2c:0a:35:f4:26:7f:cc:77:1b:
32:38:f7:ea:f2:f5:88:8e:8e:dd:ca:e7:1b:77:cc:2b:16:d2:
1d:a8:2f:eb:34:c4:51:c4:30:52:9f:da:03:02:ae:f9:26:32:
ce:bd:42:77:48:6a:b6:31:e2:0b:a1:67:fd:74:05:b8:67:1a:
8c:de:26:1c:da:d3:12:3d:5e:57:08:10:7c:b4:73:9a:72:b8:
5a:e4:a3:a8:1c:92:62:5b:56:50:77:b7:ad:51:75:3f:4d:6e:
ba:31:81:49:d8:54:95:e9:58:89:aa:98:7d:5b:fe:3d:7f:13:
e7:a4:bb:3f:a6:21:c8:28:d5:ff:10:be:fe:46:0f:f3:bc:5e:
b1:ed:de:90:48:a9:1c:76:cb:dd:c5:c6:3c:98:4f:08:8b:a7:
34:94:48:0b:76:d7:08:2d:41:28:ba:17:cf:21:be:11:85:0a:
b8:9e:e3:81:e6:53:33:53:92:5e:5d:cb:65:52:6f:26:1f:28:
82:1b:84:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:40 2023 by rpki-client on console-fra.rpki-client.org