Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/POJN8o8OgD73rnXkQ2rmPoiR984.roa
File: POJN8o8OgD73rnXkQ2rmPoiR984.roa (raw, json)
Hash identifier: slNqz0Febj4NVpzpIrQuUjz12xLz4Ff/WSNj4eJGohI=
Subject key identifier: 3C:E2:4D:F2:8F:0E:80:3E:F7:AE:75:E4:43:6A:E6:3E:88:91:F7:CE
Certificate issuer: /CN=e368116c6849228210905122016d722091197be5
Certificate serial: D78D94
Authority key identifier: E3:68:11:6C:68:49:22:82:10:90:51:22:01:6D:72:20:91:19:7B:E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/42gRbGhJIoIQkFEiAW1yIJEZe-U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/POJN8o8OgD73rnXkQ2rmPoiR984.roa
Signing time: Sat 01 Jan 2022 08:56:16 +0000
ROA not before: Sat 01 Jan 2022 08:56:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.201.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14126484 (0xd78d94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e368116c6849228210905122016d722091197be5
Validity
Not Before: Jan 1 08:56:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ce24df28f0e803ef7ae75e4436ae63e8891f7ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:51:db:8b:e4:62:d3:74:70:fe:6a:7f:5c:00:
ca:e0:34:71:ba:46:3a:10:9a:6c:00:0c:4a:8e:46:
82:58:fb:13:4b:cf:b0:27:a0:b8:4c:12:4c:f3:6d:
e3:ac:c3:20:97:4a:a1:ff:ff:a3:07:91:52:da:0a:
a5:b8:0c:5b:a6:3d:46:3b:0a:39:5e:6e:84:2c:10:
4a:ef:24:db:19:2d:39:fc:12:8b:5e:48:a0:d7:3f:
1e:b1:4d:71:3c:f0:a3:31:a2:42:1b:dd:e3:82:11:
70:63:c3:3b:80:ca:37:23:54:b5:f9:c7:de:6b:db:
0e:cc:ee:54:cb:4a:ed:0f:b6:83:48:a1:89:3e:c8:
d4:eb:03:75:57:f1:bc:fc:f9:bf:78:d1:41:e1:29:
b7:88:29:50:bd:e3:c8:85:3b:de:3c:a5:08:eb:24:
92:9f:e0:fc:b0:2c:0d:26:fe:a1:49:ab:40:da:0b:
b9:af:a9:31:80:cb:67:51:7c:be:ea:08:ca:4d:70:
7f:75:c6:32:82:0f:d2:38:c6:89:a0:28:e7:26:70:
2f:9a:e3:02:86:7f:fc:f4:75:34:9d:d1:5c:fe:d4:
93:f3:91:a7:a3:d3:81:5e:c3:96:e2:04:26:56:b4:
21:0d:4c:cb:b3:1e:f7:33:e8:14:77:c5:a7:67:ec:
ab:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:E2:4D:F2:8F:0E:80:3E:F7:AE:75:E4:43:6A:E6:3E:88:91:F7:CE
X509v3 Authority Key Identifier:
keyid:E3:68:11:6C:68:49:22:82:10:90:51:22:01:6D:72:20:91:19:7B:E5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/42gRbGhJIoIQkFEiAW1yIJEZe-U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/POJN8o8OgD73rnXkQ2rmPoiR984.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/87f152-5f33-45c9-8511-fefcb4f3b4b4/1/42gRbGhJIoIQkFEiAW1yIJEZe-U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.201.13.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b1:be:db:c8:95:2f:17:25:b1:f8:2e:e1:c1:b2:48:bf:70:
7c:57:e5:16:43:c6:9d:9f:92:17:a0:d3:c0:4a:1e:0d:ca:a9:
c8:6f:7b:73:fd:7f:2d:71:91:f0:f9:8a:1e:83:8d:95:aa:c8:
4c:1c:20:24:aa:80:54:68:eb:25:7f:c2:05:1a:b0:4b:02:e2:
df:1f:d2:e3:52:33:84:94:3f:2e:0e:f6:ae:c2:b6:1d:6c:c9:
cb:ec:db:ab:d6:49:91:dd:6a:7d:fe:a5:80:69:01:6a:44:f1:
9b:84:cb:a5:39:16:c6:f7:1a:7a:87:f7:da:84:07:7e:f5:e5:
2b:02:97:8f:3c:46:42:71:fa:96:67:2b:a2:16:ee:d5:f6:ed:
2b:b9:fa:ea:d0:5f:5b:7e:9a:4d:f1:3a:24:04:9c:ec:f8:fe:
b4:ec:5e:c8:1c:29:10:d7:32:63:63:b0:9a:cd:5d:a0:82:ed:
24:35:db:79:b4:20:7e:4c:4c:b2:9c:41:e9:96:a8:d9:e1:a8:
39:33:3c:b3:ee:49:6a:72:e2:87:c2:9f:2d:39:c2:ff:65:3a:
60:7f:e6:d8:43:60:5f:90:99:82:86:7b:24:33:8b:dc:e3:af:
68:b9:14:9e:57:25:35:f9:c5:43:68:fb:e6:80:40:41:a4:ab:
17:a6:67:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:50 2023 by rpki-client on console-ams.rpki-client.org