Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/lxxbxT9CpOqcS1cFnyldrz9QSBU.roa
File: lxxbxT9CpOqcS1cFnyldrz9QSBU.roa (raw, json)
Hash identifier: NxFvx48jbGQVshluSIOLwd9WMNnyiyccGDlgsiCk2f0=
Subject key identifier: 97:1C:5B:C5:3F:42:A4:EA:9C:4B:57:05:9F:29:5D:AF:3F:50:48:15
Certificate issuer: /CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Certificate serial: 0184BE010D18F3692DA7F3E6A1C6AD8AE2A5
Authority key identifier: D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/lxxbxT9CpOqcS1cFnyldrz9QSBU.roa
Signing time: Mon 28 Nov 2022 11:30:50 +0000
ROA not before: Mon 28 Nov 2022 11:30:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 193.178.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:be:01:0d:18:f3:69:2d:a7:f3:e6:a1:c6:ad:8a:e2:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5f065c8bdb78ff294f7c5454971dbfabfb6c184
Validity
Not Before: Nov 28 11:30:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=971c5bc53f42a4ea9c4b57059f295daf3f504815
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:3e:70:d4:d4:18:0c:2c:34:bc:c9:0e:2b:5c:
9e:e7:a5:b2:0b:3d:6c:73:f1:7b:f1:0a:8e:4d:90:
45:41:c8:b9:46:c9:b3:5a:b4:82:e5:d7:ed:9e:e6:
5f:79:6a:12:a0:41:5f:28:2d:c8:5e:59:39:32:dd:
7b:0e:45:4a:82:10:5b:c6:aa:23:63:95:cd:8f:93:
68:f4:ff:ee:a0:6c:4f:5c:7a:27:ba:e4:45:46:31:
f8:53:94:45:e8:b2:c5:10:cb:2c:06:12:91:24:ba:
e6:e0:f8:3b:c5:ee:4c:7c:c0:4f:35:a8:80:c4:b7:
77:2e:5f:c5:8e:ac:5b:88:2f:44:7b:51:6f:53:71:
0f:62:21:15:4c:c5:7e:9c:9c:34:65:a1:f1:59:24:
f6:be:0d:f1:26:a1:78:5a:66:50:2d:36:91:88:64:
9f:dd:d1:72:30:c6:e1:57:10:a8:14:b8:af:40:16:
da:f0:b3:75:11:f1:85:e1:6a:76:1d:94:a8:70:f8:
48:27:3a:c1:8c:72:9d:80:90:ef:9e:97:99:9c:be:
fb:c3:87:8f:86:82:46:74:57:20:ef:9f:2f:4d:6b:
e1:c7:91:ea:34:b5:96:ec:a9:06:0e:46:77:8e:e5:
6f:68:3c:f8:3f:cc:b7:f4:45:40:d8:a3:1b:85:a3:
b4:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:1C:5B:C5:3F:42:A4:EA:9C:4B:57:05:9F:29:5D:AF:3F:50:48:15
X509v3 Authority Key Identifier:
keyid:D5:F0:65:C8:BD:B7:8F:F2:94:F7:C5:45:49:71:DB:FA:BF:B6:C1:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1fBlyL23j_KU98VFSXHb-r-2wYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/lxxbxT9CpOqcS1cFnyldrz9QSBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/f277ea-726a-4052-8e5b-35a5dc2c792c/1/1fBlyL23j_KU98VFSXHb-r-2wYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.31.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:0d:96:d6:3e:0e:02:95:f8:6f:2c:ae:fb:0e:a0:a6:22:7c:
66:be:a6:fe:69:98:3d:95:1b:a8:b2:ab:ff:1e:d1:0f:1a:33:
0c:63:7b:cd:e7:c0:42:17:93:46:bb:eb:76:65:9d:f5:4b:25:
56:54:72:fb:58:a1:67:28:5f:99:a6:21:22:eb:14:7e:8a:89:
c8:d9:26:a8:46:11:19:4b:17:c0:69:7c:dd:d4:6d:0c:b3:a4:
9f:89:3a:32:54:53:66:a8:72:f1:25:4f:27:98:ed:41:11:ba:
a8:76:4e:81:40:df:2a:a0:84:d8:64:f1:1d:14:b2:1b:0a:82:
5a:a4:8e:8d:d0:85:a0:06:ac:d0:42:41:66:71:c0:4f:03:bb:
ec:7f:4c:17:12:01:cd:28:4a:17:e5:09:8f:84:2a:b1:d5:27:
24:66:19:ee:fb:15:84:6d:fd:d6:90:63:5d:f4:29:fa:b9:91:
e6:3b:37:03:f6:5a:ac:72:e5:f8:70:d7:ae:dd:cc:cb:10:54:
07:b7:74:8f:56:ce:e2:b0:83:5a:04:45:df:05:6d:e0:c3:a4:
12:26:68:b8:31:25:34:5c:74:32:b4:78:07:3e:be:d7:0b:8f:
36:40:2d:d1:a7:e6:9c:aa:b9:5b:16:9f:4a:e0:d1:93:41:b4:
0c:f4:ea:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:44 2023 by rpki-client on console-fra.rpki-client.org