Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/09b6c7-52ef-4897-bfa6-5e0e281d7da3/1/7rRTX5F87AVbpfYqE2yaGifx9Zo.roa
File: 7rRTX5F87AVbpfYqE2yaGifx9Zo.roa (raw, json)
Hash identifier: yW8XSOlMGfPTC6ve5NOFtMAqtyOaW3L4l4YvDFLWoRk=
Subject key identifier: EE:B4:53:5F:91:7C:EC:05:5B:A5:F6:2A:13:6C:9A:1A:27:F1:F5:9A
Certificate issuer: /CN=5f86a7141f6fb7b4c28bce314467b6154e0f9377
Certificate serial: 0112E0
Authority key identifier: 5F:86:A7:14:1F:6F:B7:B4:C2:8B:CE:31:44:67:B6:15:4E:0F:93:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X4anFB9vt7TCi84xRGe2FU4Pk3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/09b6c7-52ef-4897-bfa6-5e0e281d7da3/1/7rRTX5F87AVbpfYqE2yaGifx9Zo.roa
Signing time: Thu 24 Feb 2022 16:53:14 +0000
ROA not before: Thu 24 Feb 2022 16:53:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12965
IP address blocks: 193.178.150.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70368 (0x112e0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f86a7141f6fb7b4c28bce314467b6154e0f9377
Validity
Not Before: Feb 24 16:53:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eeb4535f917cec055ba5f62a136c9a1a27f1f59a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:c1:3d:f0:06:e3:e6:6c:69:f8:be:fd:fc:dd:
9f:63:a9:be:85:a4:55:00:5a:14:f9:6c:2f:43:28:
30:bd:04:b3:ce:1c:b3:7d:da:14:dc:3d:f9:7c:1b:
41:87:12:bb:28:91:b5:e2:c2:2f:5e:ea:17:15:c8:
34:16:02:ee:96:70:9d:72:d3:07:95:6e:a9:1d:76:
74:18:69:09:bd:89:f3:27:da:74:48:53:89:0e:a1:
7c:29:8f:d4:7c:1f:8e:46:06:6f:02:1e:a1:80:10:
c7:b8:5b:76:05:cc:c0:b5:c0:fa:81:7c:e4:85:0a:
8f:18:23:5f:be:c8:1a:33:a1:9e:a9:39:03:f2:e6:
8f:8b:17:3b:29:7f:9f:c3:1f:34:8a:e0:7b:30:8c:
8b:44:d6:39:b9:48:42:1f:69:52:d8:82:3a:34:30:
c3:ee:71:04:40:03:82:f3:69:98:1a:20:1e:1a:4d:
e5:b4:1f:df:31:28:b1:d1:72:01:eb:a7:1e:b6:db:
25:26:12:c2:35:ab:8b:e7:f1:05:8f:6e:63:8e:4d:
94:6a:c9:73:fd:9f:45:41:74:91:b9:70:35:cb:eb:
f9:ac:db:29:33:2d:a1:2d:fa:7d:92:9e:63:ad:0e:
c2:04:4a:64:36:72:d6:c1:f0:e4:2d:44:d7:b1:63:
00:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:B4:53:5F:91:7C:EC:05:5B:A5:F6:2A:13:6C:9A:1A:27:F1:F5:9A
X509v3 Authority Key Identifier:
keyid:5F:86:A7:14:1F:6F:B7:B4:C2:8B:CE:31:44:67:B6:15:4E:0F:93:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X4anFB9vt7TCi84xRGe2FU4Pk3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/09b6c7-52ef-4897-bfa6-5e0e281d7da3/1/7rRTX5F87AVbpfYqE2yaGifx9Zo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/09b6c7-52ef-4897-bfa6-5e0e281d7da3/1/X4anFB9vt7TCi84xRGe2FU4Pk3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.150.0/23
Signature Algorithm: sha256WithRSAEncryption
49:6a:14:6b:c9:2a:1e:28:86:83:f5:bd:fd:40:98:6d:f9:21:
20:78:bc:c0:ac:6b:0a:0d:63:c8:19:f3:ae:93:24:87:3e:0b:
dc:05:83:11:3c:45:d4:ff:90:2e:cb:06:10:41:fe:74:f4:58:
63:84:b7:16:0f:5b:72:06:a2:f4:07:85:16:22:7e:a6:44:89:
05:a3:cc:ae:be:5e:05:d2:e3:af:58:f6:8e:2a:52:a0:a1:52:
b3:9c:11:28:12:e4:32:62:47:9c:7a:3e:a2:a0:75:a5:28:83:
bf:db:38:1d:b6:1a:ec:f4:7d:15:81:65:37:c1:64:4d:c2:ba:
f6:f5:74:f7:8e:d4:09:7b:44:fe:2b:29:54:0f:09:c7:90:f0:
9b:4d:07:61:40:a6:8a:e2:1c:63:e5:b4:9e:ca:5d:71:37:70:
68:34:03:49:c8:06:57:40:bc:4b:56:66:00:a1:49:0b:72:bc:
cb:d6:11:f3:b7:70:dd:ce:c9:61:5e:cd:4c:a3:8a:24:f0:11:
8a:85:31:d6:07:47:dc:6e:5f:87:a3:ac:2d:2e:f7:94:4b:d0:
5f:61:f8:27:2b:f0:78:3e:83:b4:db:86:42:4d:ed:43:4c:07:
a0:82:81:7e:55:c8:60:36:cc:2b:ac:84:36:cf:cc:7a:d5:97:
e2:0a:50:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:03 2023 by rpki-client on console-ams.rpki-client.org