Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/A2fowuXWKmNIIiPWjTZG1oGdZK8.roa
File: A2fowuXWKmNIIiPWjTZG1oGdZK8.roa (raw, json)
Hash identifier: Bvem6LN6kJmFX737rqcaF+4j4sd3QPjJvj1k3uwtYI4=
Subject key identifier: 03:67:E8:C2:E5:D6:2A:63:48:22:23:D6:8D:36:46:D6:81:9D:64:AF
Certificate issuer: /CN=27f130b6f45f00f7c1d135b6c93b20e690412cfc
Certificate serial: 0A5360F1
Authority key identifier: 27:F1:30:B6:F4:5F:00:F7:C1:D1:35:B6:C9:3B:20:E6:90:41:2C:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J_EwtvRfAPfB0TW2yTsg5pBBLPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/A2fowuXWKmNIIiPWjTZG1oGdZK8.roa
Signing time: Sun 06 Mar 2022 22:05:14 +0000
ROA not before: Sun 06 Mar 2022 22:05:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200930
IP address blocks: 193.58.181.0/24 maxlen: 24
193.58.182.0/24 maxlen: 24
193.58.180.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173236465 (0xa5360f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27f130b6f45f00f7c1d135b6c93b20e690412cfc
Validity
Not Before: Mar 6 22:05:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0367e8c2e5d62a63482223d68d3646d6819d64af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:63:9a:83:00:82:96:06:66:0b:ea:94:9a:c9:
61:61:d9:c5:7f:6b:00:cd:11:4d:ff:3e:ad:79:71:
93:7f:c5:cb:aa:01:26:ac:b5:85:3c:cd:8a:24:25:
5d:17:0b:c9:33:3e:1a:32:bf:84:12:e0:3d:de:eb:
03:1e:b9:da:dc:07:7e:66:04:3b:f7:22:9d:e2:79:
2e:2a:2a:ff:ab:0f:54:30:5d:64:d4:e8:d5:9b:c0:
d4:72:4b:aa:68:04:21:a7:7a:8a:c9:4f:bd:1d:44:
c1:7d:49:d9:7b:47:34:ee:53:2c:4e:d1:01:97:cf:
f8:38:ef:46:d6:fb:1f:e1:84:4c:c0:3c:21:b7:4c:
49:ef:04:e1:0c:0f:24:5b:98:70:69:7c:d2:5d:25:
31:b8:26:08:9b:4a:cd:f4:ae:41:ca:28:9b:d2:f1:
2d:d3:d9:22:a6:72:65:0a:6a:3a:1d:5f:6b:16:32:
93:f4:a1:80:34:80:5e:73:26:30:49:8e:5d:92:b3:
db:c0:ea:de:20:ae:5e:2b:9e:ae:06:05:aa:6f:a3:
8b:b9:a6:6f:b2:bb:d7:f3:b4:cc:4d:4c:91:cc:67:
07:eb:ae:be:7d:68:2b:e2:a3:57:91:79:54:e0:b3:
14:ed:16:92:ea:ed:3b:4c:25:f5:89:09:74:81:76:
a0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:67:E8:C2:E5:D6:2A:63:48:22:23:D6:8D:36:46:D6:81:9D:64:AF
X509v3 Authority Key Identifier:
keyid:27:F1:30:B6:F4:5F:00:F7:C1:D1:35:B6:C9:3B:20:E6:90:41:2C:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J_EwtvRfAPfB0TW2yTsg5pBBLPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/A2fowuXWKmNIIiPWjTZG1oGdZK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/ead4a0-2521-4abb-ac2d-07dbd900c4ad/1/J_EwtvRfAPfB0TW2yTsg5pBBLPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.58.180.0-193.58.182.255
Signature Algorithm: sha256WithRSAEncryption
42:77:fb:5c:4c:26:2f:0a:5a:58:a6:64:e8:0a:9a:56:6e:84:
e3:50:cb:0d:73:c3:22:a2:a8:92:21:41:0c:5f:03:03:6c:30:
78:35:a7:58:1d:15:c8:d8:c0:c1:fe:11:14:0a:76:68:2b:69:
18:3d:40:bb:17:d3:b1:84:08:be:95:23:08:4d:93:2b:42:8a:
0c:8d:c7:a6:58:89:7a:32:8f:24:e3:23:e0:be:95:08:db:8b:
6c:65:91:ab:a5:c8:65:68:7d:f2:54:20:96:7c:8a:c5:3a:6d:
0c:b5:c5:aa:fa:a1:1e:4e:1b:38:99:fe:5c:d5:6b:59:d7:0d:
fb:b9:6c:ea:5f:1b:70:6f:8e:e2:23:48:a9:56:5d:7b:11:16:
87:62:66:82:3c:78:35:6d:29:a4:b4:db:f7:7a:4b:18:c4:ec:
c5:4d:47:63:c3:eb:3f:b4:93:d6:35:09:0c:4e:d6:55:f1:c4:
0b:b3:81:dd:77:8d:62:aa:e3:2e:54:ac:10:40:92:ce:17:09:
86:1e:1c:24:b5:63:1d:33:57:d6:ee:8c:d5:d8:d1:39:2b:ff:
6b:e6:25:52:c1:fe:cb:4e:12:d7:3c:3e:31:8c:1e:9d:7b:c7:
63:8b:25:59:f0:e9:e5:61:b2:e1:de:14:3f:1e:37:28:2a:e9:
66:7c:58:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:09 2023 by rpki-client on console-fra.rpki-client.org