Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/WbSd3xze6afgDG9v0RJAkufRlyQ.roa
File: WbSd3xze6afgDG9v0RJAkufRlyQ.roa (raw, json)
Hash identifier: j1zCjvYhJceiPhLCvKA92xpzI/ahQTrbbxo/kohnIEY=
Subject key identifier: 59:B4:9D:DF:1C:DE:E9:A7:E0:0C:6F:6F:D1:12:40:92:E7:D1:97:24
Certificate issuer: /CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Certificate serial: 06E2A12F
Authority key identifier: 24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/WbSd3xze6afgDG9v0RJAkufRlyQ.roa
Signing time: Sat 01 Jan 2022 09:00:43 +0000
ROA not before: Sat 01 Jan 2022 09:00:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.16.22.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115515695 (0x6e2a12f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24a918f1b10ec1d660b1cfcb1bfe196c2feb06bf
Validity
Not Before: Jan 1 09:00:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=59b49ddf1cdee9a7e00c6f6fd1124092e7d19724
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a9:42:6e:65:1c:95:d0:ea:d7:56:77:2f:0a:
b1:ee:05:11:bd:63:80:ec:2d:06:3e:2f:f2:1b:f4:
0a:6e:2f:b2:6f:a2:fd:97:91:60:8e:7f:a8:47:25:
38:2d:70:5d:86:6c:a1:8c:a2:c1:2a:21:c0:78:4e:
6a:23:d6:9c:96:d9:48:f9:4f:54:95:a5:5e:34:58:
ea:b6:32:fd:29:23:a1:35:82:9e:17:81:9d:d2:7d:
56:54:4c:b2:9f:c1:5f:c5:f7:df:76:13:13:28:b5:
f6:5d:63:ee:90:63:e7:30:ba:8b:15:10:e5:db:ee:
5c:03:95:f1:4b:82:b0:9b:49:44:13:ea:d4:aa:f9:
d5:26:41:6c:92:76:c6:7b:8b:21:bb:15:e3:d1:54:
8d:99:01:e6:2f:75:87:a5:1d:35:17:1d:13:f1:36:
cb:36:c8:b7:dd:5d:ab:d9:49:93:42:a0:db:0f:45:
09:3b:d2:8b:cf:a4:a8:e0:2f:6a:74:cb:63:5b:4c:
4d:81:d0:63:77:b9:9c:67:cd:70:17:07:24:4c:37:
33:a5:f0:8e:4b:c8:a1:55:f6:f5:ed:7d:ea:5d:8d:
79:4c:be:62:18:e1:4a:f0:16:8c:f4:fc:7b:24:28:
38:ce:4b:aa:e1:3d:32:6a:48:15:d8:c1:43:a3:5b:
46:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:B4:9D:DF:1C:DE:E9:A7:E0:0C:6F:6F:D1:12:40:92:E7:D1:97:24
X509v3 Authority Key Identifier:
keyid:24:A9:18:F1:B1:0E:C1:D6:60:B1:CF:CB:1B:FE:19:6C:2F:EB:06:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/WbSd3xze6afgDG9v0RJAkufRlyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/1f5feb-7acf-4c1d-8e9f-1f262d9c9b07/1/JKkY8bEOwdZgsc_LG_4ZbC_rBr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.22.0/24
Signature Algorithm: sha256WithRSAEncryption
94:6b:41:83:d6:a6:05:10:bd:bb:63:35:a8:39:fb:f4:2b:be:
ed:a2:b8:af:ea:42:3f:06:30:dd:7e:bb:ac:78:14:2f:3a:82:
c0:41:5a:5c:ba:3e:4d:4f:ed:f5:92:fa:c4:5c:96:ff:04:9d:
1c:17:97:3b:ec:8c:ae:1f:1a:c8:48:ff:83:7a:9d:19:fd:41:
69:a9:5a:75:86:d4:c4:b0:c8:07:99:e7:7d:ef:cb:af:00:10:
e4:f5:e7:c7:17:52:46:fd:2e:31:07:d9:39:fc:96:0e:5d:0a:
2b:d7:71:19:e0:fc:e8:7e:2d:19:f9:99:88:9f:e4:c6:ab:07:
e6:b5:c7:38:8a:8a:90:79:d9:dd:52:8f:a1:33:00:d3:7d:37:
0d:bc:28:34:ae:1d:b8:2d:0e:24:b8:78:70:a4:36:3d:3c:d9:
6b:d0:8a:58:3b:f4:25:6c:e3:3d:92:bf:ac:28:89:3b:57:d3:
3e:f3:02:c6:c6:81:2c:db:bb:b5:3e:2e:13:97:22:71:56:7c:
6e:41:c2:1f:a4:0f:f4:f8:fa:c6:43:24:26:a5:0e:38:63:84:
ad:51:d6:82:85:90:aa:1a:7a:4d:06:25:8e:83:bc:bb:3b:af:
b5:da:dd:fd:b1:13:93:53:45:34:c6:25:76:2f:4a:53:2a:a6:
d4:ff:40:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:47 2023 by rpki-client on console-ams.rpki-client.org