Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/98b024-9d8f-4869-a2a9-0afb7c3fbf30/1/kEHD7zV2HpnaFJbfSGD7kAwOzOc.roa
File: kEHD7zV2HpnaFJbfSGD7kAwOzOc.roa (raw, json)
Hash identifier: IxWPCUS3k3Y1T6guvbVTL5Kfa82dGi282N5SIBIoJI8=
Subject key identifier: 90:41:C3:EF:35:76:1E:99:DA:14:96:DF:48:60:FB:90:0C:0E:CC:E7
Certificate issuer: /CN=7f42d27c21da86c7e9fbf44ae0e56c98f3d2f80b
Certificate serial: D393
Authority key identifier: 7F:42:D2:7C:21:DA:86:C7:E9:FB:F4:4A:E0:E5:6C:98:F3:D2:F8:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0LSfCHahsfp-_RK4OVsmPPS-As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/98b024-9d8f-4869-a2a9-0afb7c3fbf30/1/kEHD7zV2HpnaFJbfSGD7kAwOzOc.roa
Signing time: Wed 23 Feb 2022 13:32:20 +0000
ROA not before: Wed 23 Feb 2022 13:32:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198127
IP address blocks: 193.150.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54163 (0xd393)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f42d27c21da86c7e9fbf44ae0e56c98f3d2f80b
Validity
Not Before: Feb 23 13:32:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9041c3ef35761e99da1496df4860fb900c0ecce7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:22:ee:41:5e:95:5f:fc:ff:68:73:ea:b2:a6:
97:68:e7:79:81:87:e0:33:75:44:5f:4e:bd:cb:65:
5f:cc:a5:a7:03:26:3d:e5:0c:da:f9:fb:aa:97:4d:
7b:f4:50:e8:66:41:42:ba:51:2f:d8:2b:d4:24:fe:
4b:4b:a2:06:a0:25:2b:e4:f2:4c:bc:4e:53:19:0b:
ff:11:18:e1:5d:0d:0c:c4:8b:49:2f:96:1c:d0:a0:
bf:b1:3f:70:ed:16:fd:1b:e6:97:1b:6c:5e:a4:c9:
ea:61:27:1d:46:79:f8:0f:a5:34:db:5e:4c:da:10:
46:ec:4e:35:2e:f3:42:68:95:76:ec:42:f7:f4:9b:
8c:83:1b:55:c3:d7:d9:54:a7:e5:1b:11:49:02:45:
4b:3a:0e:22:e1:b3:c2:07:fa:88:a7:43:1b:56:45:
55:12:d8:d2:58:15:c3:f1:6c:2f:53:c0:94:1a:05:
a2:db:82:a4:d2:2d:ce:2d:c2:91:03:67:96:1c:10:
24:97:37:02:b2:03:2e:bf:3c:ee:fb:02:7e:af:a5:
dd:3c:ba:ad:ea:f0:ca:7d:33:06:a6:15:6a:a9:08:
9c:7f:25:b7:62:db:03:18:95:bb:c7:e2:91:fc:33:
60:82:c1:16:07:4c:6a:ac:01:0b:54:36:1b:a9:14:
2c:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:41:C3:EF:35:76:1E:99:DA:14:96:DF:48:60:FB:90:0C:0E:CC:E7
X509v3 Authority Key Identifier:
keyid:7F:42:D2:7C:21:DA:86:C7:E9:FB:F4:4A:E0:E5:6C:98:F3:D2:F8:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0LSfCHahsfp-_RK4OVsmPPS-As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/98b024-9d8f-4869-a2a9-0afb7c3fbf30/1/kEHD7zV2HpnaFJbfSGD7kAwOzOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/98b024-9d8f-4869-a2a9-0afb7c3fbf30/1/f0LSfCHahsfp-_RK4OVsmPPS-As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.150.67.0/24
Signature Algorithm: sha256WithRSAEncryption
51:f8:45:e3:94:57:62:c1:29:5e:cc:d0:74:5f:43:54:d2:78:
0f:80:e2:72:f3:bc:ef:b6:3d:00:4e:89:64:11:c5:56:66:05:
be:86:df:d9:54:e8:a2:b5:eb:ec:5f:60:23:37:18:3b:7f:82:
ae:84:a4:96:89:22:d0:4f:f4:31:3d:61:d1:42:3a:4f:37:b4:
f7:6e:1c:c9:d5:ad:2b:2e:2c:6c:1c:df:1f:c9:a1:d9:e0:4a:
99:db:79:76:b3:57:b9:c3:ff:74:35:f7:79:92:a6:27:a2:58:
b9:d9:b4:29:f3:4f:9a:e6:b7:9c:e0:c8:51:56:13:8c:28:41:
50:69:f0:88:4c:1a:1a:48:23:a3:d5:8c:ab:ca:7c:06:53:6b:
12:50:2e:21:3b:3a:67:c6:19:f7:f4:e7:3a:d3:bd:d5:89:84:
a3:d7:0c:41:e1:d7:c1:fa:6d:1c:18:8d:a9:8d:9f:63:95:71:
75:c8:75:3c:2e:e5:cb:b0:08:4a:9e:5a:c3:d5:7c:eb:5b:e7:
5b:d6:ff:11:9d:9f:fa:83:2f:20:7d:d7:4f:6d:6e:8f:b1:6d:
51:82:bb:e2:3b:1b:33:e5:e3:7a:d0:f4:86:90:68:fb:f0:d5:
61:ce:db:b7:95:c0:d6:3e:07:78:c7:02:12:50:81:69:73:ed:
8d:ea:3a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:50 2023 by rpki-client on console-ams.rpki-client.org