Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/fG7KK4jvaakX5W2yVnwAyaVBnss.roa
File: fG7KK4jvaakX5W2yVnwAyaVBnss.roa (raw, json)
Hash identifier: hDMAFvQuudzC1UbLkyo+DK61k3lP5tle8O5Yk7PJKE4=
Subject key identifier: 7C:6E:CA:2B:88:EF:69:A9:17:E5:6D:B2:56:7C:00:C9:A5:41:9E:CB
Certificate issuer: /CN=5f16b294b1a647bf6d67683b51614497e751f21f
Certificate serial: 08FC4AB3
Authority key identifier: 5F:16:B2:94:B1:A6:47:BF:6D:67:68:3B:51:61:44:97:E7:51:F2:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XxaylLGmR79tZ2g7UWFEl-dR8h8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/fG7KK4jvaakX5W2yVnwAyaVBnss.roa
Signing time: Sat 01 Jan 2022 11:53:50 +0000
ROA not before: Sat 01 Jan 2022 11:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34182
IP address blocks: 193.28.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150751923 (0x8fc4ab3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5f16b294b1a647bf6d67683b51614497e751f21f
Validity
Not Before: Jan 1 11:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7c6eca2b88ef69a917e56db2567c00c9a5419ecb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:98:2a:4c:09:df:5e:00:1c:9d:b7:30:3f:61:
b3:98:b1:20:d6:07:75:68:27:a5:65:e3:8a:83:83:
6e:5c:e9:69:34:44:74:25:01:3d:bf:48:48:1a:ab:
b6:0c:8c:5c:d8:ec:2e:58:ee:ea:15:e9:f9:e7:40:
ec:3f:54:1a:67:98:7e:d0:0b:50:fd:18:33:28:c9:
7c:97:dd:7d:08:d5:e6:a0:47:60:2e:4c:7c:ac:c7:
54:1a:5c:d4:65:68:ea:00:95:f9:b6:cb:14:e3:91:
46:da:a6:90:fa:fa:6f:7a:22:b6:2e:be:fb:85:48:
7c:04:a2:3e:c2:11:8e:57:cc:7e:b5:d1:de:50:fc:
c1:06:5e:3d:27:9f:cf:cf:67:9b:75:6c:82:f2:68:
45:7b:93:75:a7:b1:43:70:86:50:b9:97:83:cb:40:
a4:dc:4f:1c:25:54:49:60:91:4b:46:b0:b8:1a:0b:
1c:18:99:11:7e:bb:19:70:02:7d:41:b0:2f:5c:af:
1f:12:39:1d:52:15:4e:84:55:12:ec:0a:7a:76:20:
21:8d:82:74:1a:28:c1:17:63:f9:8e:08:7a:09:32:
0f:47:8b:dc:94:b9:52:ff:fc:41:28:75:b1:04:ce:
76:48:82:7e:20:ec:cc:fa:35:60:da:83:b6:34:08:
09:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:6E:CA:2B:88:EF:69:A9:17:E5:6D:B2:56:7C:00:C9:A5:41:9E:CB
X509v3 Authority Key Identifier:
keyid:5F:16:B2:94:B1:A6:47:BF:6D:67:68:3B:51:61:44:97:E7:51:F2:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XxaylLGmR79tZ2g7UWFEl-dR8h8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/fG7KK4jvaakX5W2yVnwAyaVBnss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/df2777-77a1-4b84-921f-a88270f5d1a9/1/XxaylLGmR79tZ2g7UWFEl-dR8h8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.185.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e0:ad:4f:bd:80:56:75:cd:88:9e:1d:b4:cd:49:6e:53:44:
34:14:88:a7:2c:59:9e:eb:72:81:37:31:2d:fe:0f:2f:da:34:
30:c7:07:ae:dc:b9:b6:f8:c3:79:e5:e3:eb:de:10:28:d4:87:
2d:2e:eb:05:fc:54:a6:d6:40:21:85:7b:c2:63:fd:10:4f:f9:
de:e4:2a:94:e0:77:94:5b:05:76:b5:65:27:ed:78:8f:ef:c8:
4c:26:2c:09:7a:43:cf:69:f7:fd:5a:6f:16:9a:13:b3:8e:47:
7d:17:a5:a7:f4:ed:0b:96:10:7c:6c:f8:c7:58:65:b2:80:54:
af:3e:ea:79:f8:36:db:1f:94:b3:83:bd:2e:14:f3:73:87:09:
be:2f:dc:36:53:46:49:5e:61:33:34:12:64:05:78:a2:b6:b1:
13:4c:c5:9a:62:a0:08:47:ca:7c:f9:fe:44:b6:f6:e0:f2:64:
b1:d9:5f:cd:0f:b8:91:36:d9:53:d6:01:28:c7:37:9c:4d:d0:
42:d0:56:aa:19:0a:e5:e2:b5:e7:53:03:76:3c:ac:8d:be:95:
03:42:b6:50:a9:99:87:e2:17:18:7e:0f:90:82:cf:34:3f:e5:
b2:a8:aa:ea:53:4b:2c:f5:f3:3f:7c:db:fc:9b:49:fd:8a:36:
51:35:41:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:00 2024 by rpki-client on console-ams.rpki-client.org