Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/MapQOihY7da97XAisp_18VFH6Xo.roa
File: MapQOihY7da97XAisp_18VFH6Xo.roa (raw, json)
Hash identifier: nvD6MXMbBtvpMjtpLtnGUpUBuVXRR59KY7KiKy8MXo4=
Subject key identifier: 31:AA:50:3A:28:58:ED:D6:BD:ED:70:22:B2:9F:F5:F1:51:47:E9:7A
Certificate issuer: /CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Certificate serial: 018269D2901252205F9FEC328105A676C9A6
Authority key identifier: 7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/MapQOihY7da97XAisp_18VFH6Xo.roa
Signing time: Thu 04 Aug 2022 17:06:23 +0000
ROA not before: Thu 04 Aug 2022 17:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 193.228.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:69:d2:90:12:52:20:5f:9f:ec:32:81:05:a6:76:c9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ee053cb9cb4f41c1e4773e7f16e84bb57522033
Validity
Not Before: Aug 4 17:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31aa503a2858edd6bded7022b29ff5f15147e97a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a5:08:1f:3e:fe:2e:f8:76:92:65:42:48:64:
8d:24:c9:fb:7b:54:36:72:b1:4a:17:08:ed:4f:61:
43:fe:fa:20:a4:c9:f7:09:e8:34:6e:27:7d:b1:a0:
07:da:45:e6:f0:10:de:ce:e2:ba:c6:4c:70:82:c9:
9f:11:2d:83:b8:64:5d:ab:c2:c3:27:7b:56:06:c4:
20:67:c5:ca:ca:de:c3:c9:0a:99:d0:d5:c1:52:6b:
dc:96:cb:b2:ca:10:fc:96:7e:23:cd:df:ec:65:3b:
45:c0:1d:fc:99:58:6f:98:f2:6d:5d:50:05:e5:7b:
ee:1d:1c:d4:eb:8f:77:16:01:69:ce:e3:55:53:7d:
58:f2:08:5b:01:c8:70:28:e4:ef:fb:ff:db:b2:98:
e8:18:9a:9c:d9:e8:fe:61:9c:49:bd:57:72:56:f3:
01:be:83:00:8c:a0:18:de:c7:a9:d7:d2:43:48:79:
ba:df:bb:6a:d6:22:9d:dd:9d:fe:a2:a2:57:3f:ee:
29:da:88:21:e4:e0:7e:6b:b5:64:6a:f7:b1:6c:98:
db:1d:22:b5:ba:d3:45:ff:1d:6f:9f:11:4e:7d:0c:
c8:cf:48:3d:26:58:cf:11:a7:b5:3b:31:6f:f2:d5:
28:3b:ce:0e:ec:08:2d:4e:6a:b8:b7:7d:56:92:fd:
d8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AA:50:3A:28:58:ED:D6:BD:ED:70:22:B2:9F:F5:F1:51:47:E9:7A
X509v3 Authority Key Identifier:
keyid:7E:E0:53:CB:9C:B4:F4:1C:1E:47:73:E7:F1:6E:84:BB:57:52:20:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fuBTy5y09BweR3Pn8W6Eu1dSIDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/MapQOihY7da97XAisp_18VFH6Xo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0600a4-1464-4a7c-af56-18e86f0b1d81/1/fuBTy5y09BweR3Pn8W6Eu1dSIDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.168.0/24
Signature Algorithm: sha256WithRSAEncryption
00:6e:e0:1e:8d:16:dd:b2:0e:79:5a:25:7d:da:e2:84:08:ad:
85:dd:2c:4f:15:29:1a:c3:ee:44:31:eb:66:af:a6:12:f4:95:
a7:81:79:07:2d:ad:b5:ba:f7:db:21:97:ff:c1:71:f6:8b:27:
37:88:ae:a9:82:a2:2e:f2:2b:cb:87:d2:06:5d:5b:19:c2:80:
32:65:fe:db:f1:62:cf:3c:8f:3f:99:54:c7:6d:70:0f:72:c2:
c8:c1:05:c0:cc:60:4f:58:9b:7e:13:2e:1e:ea:3a:19:e0:c7:
f9:1c:9f:eb:0b:97:03:74:e8:97:cc:7e:c3:6c:02:b2:6e:4e:
64:aa:35:fb:d9:a3:9e:8e:0a:06:10:38:cf:86:14:0d:e4:bc:
29:ec:81:3d:61:a2:1e:65:3b:27:e2:5a:1f:f0:b7:7a:bb:25:
ee:c9:c7:4a:21:00:6e:0a:c6:1b:6d:af:d1:97:69:ee:0c:80:
0e:6d:3a:0b:6c:5a:ee:23:eb:58:cf:6e:ac:0b:8a:0f:f4:58:
17:85:e6:0c:aa:7b:06:73:c0:19:59:20:e0:9f:ec:1a:32:f8:
2b:7f:ad:5a:eb:7b:a1:95:da:70:4e:9a:46:e2:a2:80:c3:f5:
7d:34:5a:a0:b9:ee:86:13:6a:66:d4:f6:15:10:6a:b8:87:d0:
b4:fd:af:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:35 2023 by rpki-client on console-fra.rpki-client.org