Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/KwplLA59rLnvflrDGLEDRrFCoJo.roa
File: KwplLA59rLnvflrDGLEDRrFCoJo.roa (raw, json)
Hash identifier: SgI8+UgKikAlD2+zy15YGSJGXsCUJgOT/L0rIH7jdU0=
Subject key identifier: 2B:0A:65:2C:0E:7D:AC:B9:EF:7E:5A:C3:18:B1:03:46:B1:42:A0:9A
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 05E8B402
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/KwplLA59rLnvflrDGLEDRrFCoJo.roa
Signing time: Sat 01 Jan 2022 11:05:16 +0000
ROA not before: Sat 01 Jan 2022 11:05:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 193.228.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99136514 (0x5e8b402)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Jan 1 11:05:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b0a652c0e7dacb9ef7e5ac318b10346b142a09a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ac:55:dc:ac:e2:d0:3c:fd:09:ad:b8:1e:4f:
c3:1a:29:41:ba:e9:ac:e7:62:5e:4b:f6:af:ec:a8:
c1:10:f0:c0:ad:29:a3:61:0f:d0:95:27:bf:a3:92:
eb:58:49:3b:ed:f3:2a:3c:64:c9:6d:bd:6c:cb:25:
a3:a8:7a:4b:a0:25:29:97:ab:46:c4:9a:7b:65:73:
a8:fb:a5:61:87:d3:f0:b8:07:39:61:f7:90:e9:31:
c1:a3:7f:ff:f0:9b:b8:f8:09:96:ec:2b:9a:69:af:
cf:53:0e:0f:7e:1c:a9:5a:7a:37:aa:85:f6:dd:d2:
79:6e:42:c6:db:60:f6:be:7e:33:d3:f8:d9:a9:ee:
6c:65:f2:c5:a1:01:a4:52:38:23:5b:cc:fb:f2:8f:
2b:59:64:72:a1:31:bf:19:26:44:95:c6:4d:44:e8:
11:62:27:ed:b1:bd:0c:c6:87:88:09:a0:07:e2:44:
53:60:ba:a7:b3:5b:59:18:67:50:bf:f3:a7:1c:45:
fd:76:53:32:00:16:48:41:87:f5:d0:71:ae:7e:9b:
a8:41:5f:fb:63:b9:11:f6:d2:30:02:a2:f5:c6:bb:
74:7f:d5:81:a1:20:a9:ff:7b:98:27:04:b0:c5:a6:
91:2b:81:04:ce:0d:18:da:bd:a1:af:1d:b3:9c:93:
b5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0A:65:2C:0E:7D:AC:B9:EF:7E:5A:C3:18:B1:03:46:B1:42:A0:9A
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/KwplLA59rLnvflrDGLEDRrFCoJo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.169.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3c:7d:25:5a:0f:c7:50:eb:3b:ab:c7:18:a1:df:20:d0:3b:
8c:63:41:3b:88:13:6f:21:8c:70:e3:2d:a6:43:74:1f:d9:c0:
5a:b9:47:cc:98:25:80:c3:f8:19:38:18:2f:c8:3f:a7:e5:34:
21:da:f5:7b:54:03:67:56:80:b0:65:c9:d8:de:ff:0c:d2:dd:
a8:47:82:d4:19:93:56:8b:28:26:ba:95:f5:53:5d:2b:c5:c4:
c7:24:0c:8e:8c:44:9a:02:6c:65:7f:1f:de:3e:bc:d9:03:82:
62:4d:a6:55:a3:37:04:40:e2:c9:76:1e:33:ac:ee:84:64:6d:
1e:52:8e:4f:cc:e2:3a:24:93:8e:1b:f5:9e:78:f4:85:8b:98:
a3:db:1c:96:2a:31:db:5b:68:2b:d4:0e:34:6e:df:d4:12:9c:
c4:89:a1:c3:7c:d5:a6:74:fb:9c:d2:cb:fd:66:f6:43:a3:83:
1a:3e:d2:35:ce:fa:33:76:1c:d3:45:c0:39:4c:ee:94:bb:4d:
46:f8:29:36:24:25:a6:ae:1f:14:3e:09:a4:67:bf:f5:20:34:
f4:4b:8e:ac:75:25:05:57:1a:74:89:72:16:a3:cd:41:1e:8c:
5a:46:5e:4b:7f:28:3a:b3:c0:8f:be:34:85:66:0c:2c:18:5a:
01:c6:66:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org