Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/7dbf36-2485-4935-a0c7-ef91d8b5b081/1/_p-aG7XA54u6TXnnzPlZSEGkX5U.roa
File: _p-aG7XA54u6TXnnzPlZSEGkX5U.roa (raw, json)
Hash identifier: hlDWd5xU6WWbt13MjP8nVJ8RSJxOLGy5D1Q2ws0PtPU=
Subject key identifier: FE:9F:9A:1B:B5:C0:E7:8B:BA:4D:79:E7:CC:F9:59:48:41:A4:5F:95
Certificate issuer: /CN=3ad11f6c179eb3142a48ee64b2e94cde9dd36173
Certificate serial: 06408B38
Authority key identifier: 3A:D1:1F:6C:17:9E:B3:14:2A:48:EE:64:B2:E9:4C:DE:9D:D3:61:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OtEfbBeesxQqSO5ksulM3p3TYXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/7dbf36-2485-4935-a0c7-ef91d8b5b081/1/_p-aG7XA54u6TXnnzPlZSEGkX5U.roa
Signing time: Sat 01 Jan 2022 07:56:21 +0000
ROA not before: Sat 01 Jan 2022 07:56:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50718
IP address blocks: 193.105.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104893240 (0x6408b38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ad11f6c179eb3142a48ee64b2e94cde9dd36173
Validity
Not Before: Jan 1 07:56:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe9f9a1bb5c0e78bba4d79e7ccf9594841a45f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:40:97:c0:f4:a4:1f:62:80:19:28:97:5c:18:
eb:75:6b:b2:88:1d:9f:17:89:3c:61:d3:5c:72:f7:
63:69:5a:e1:ce:b1:bc:6b:7c:3e:ff:8d:41:23:df:
68:f7:06:8f:68:5f:3f:e9:43:6f:39:14:95:94:aa:
f0:d0:87:de:a5:74:a4:a4:50:07:da:4c:49:85:2a:
74:47:f8:7f:db:20:be:d5:08:b2:26:32:a2:70:09:
7c:24:11:7c:17:a8:ac:89:f5:21:48:a2:df:b3:ea:
a7:d5:95:d4:32:76:5d:88:24:96:e5:47:0e:b1:15:
de:43:4b:b1:89:1f:39:33:e3:f0:cc:a5:9e:c6:2d:
90:26:b8:98:34:cd:78:0e:16:a6:85:ab:82:a0:45:
a9:07:22:c4:29:4a:99:de:c2:ca:57:db:59:b4:da:
1c:e4:9f:8a:55:c2:ab:3b:16:6c:d0:12:63:47:88:
2d:68:56:90:88:9e:40:64:80:7e:51:86:76:e5:4c:
8c:1e:f5:1f:88:f7:cd:6e:f9:b1:6e:66:a9:fe:8d:
9c:54:17:f5:72:ce:e9:3b:c0:4a:9d:b5:dd:49:29:
a0:e8:54:bc:e2:d8:43:0f:be:ae:8d:08:ed:0a:19:
d9:cc:fc:5b:c6:45:c0:70:e7:b5:b0:a7:63:f9:8a:
8c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:9F:9A:1B:B5:C0:E7:8B:BA:4D:79:E7:CC:F9:59:48:41:A4:5F:95
X509v3 Authority Key Identifier:
keyid:3A:D1:1F:6C:17:9E:B3:14:2A:48:EE:64:B2:E9:4C:DE:9D:D3:61:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OtEfbBeesxQqSO5ksulM3p3TYXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/7dbf36-2485-4935-a0c7-ef91d8b5b081/1/_p-aG7XA54u6TXnnzPlZSEGkX5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/7dbf36-2485-4935-a0c7-ef91d8b5b081/1/OtEfbBeesxQqSO5ksulM3p3TYXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.204.0/24
Signature Algorithm: sha256WithRSAEncryption
81:a3:65:7b:4a:fc:84:49:52:2d:d2:62:9a:3f:12:3b:82:90:
18:da:c8:16:82:4d:29:4b:2a:99:65:b8:8b:ea:d2:f9:fe:c3:
17:68:83:7b:a5:c5:4b:5b:2e:94:9b:33:96:d7:33:31:f2:60:
68:81:f3:36:4e:c8:b6:ee:a4:e5:f2:25:99:3f:f3:6f:5b:30:
7a:cc:e3:93:6d:75:53:fd:5c:95:e9:8b:11:86:69:78:62:b9:
2c:b9:89:b2:36:99:be:70:3e:37:ee:b4:3f:bb:de:fa:21:c5:
78:12:58:94:f4:26:43:7f:56:bb:a1:32:4d:f5:7f:92:60:17:
d9:bd:00:6b:0e:3b:77:1e:a4:5e:0a:6c:09:4d:3b:fe:38:47:
39:a5:cb:5b:7b:f4:64:89:15:d6:be:ba:09:d7:fa:70:4b:f7:
c5:41:37:b0:c6:a2:4f:bf:dd:4f:13:92:11:1c:2f:a4:b1:e8:
a6:d6:76:1f:fe:b1:58:d7:30:b3:bb:0d:0a:b1:f1:93:20:89:
17:e3:ee:e7:dd:c4:cc:5a:f8:12:6d:b0:b3:80:10:3a:59:11:
51:2d:78:c2:d9:fd:35:15:ec:f8:49:7c:e9:c3:d4:00:65:4d:
47:5c:de:1a:3e:a2:bd:59:b3:6e:96:bd:6d:6e:39:c9:41:bd:
88:f4:9a:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:06 2023 by rpki-client on console-fra.rpki-client.org