Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/L5oCW2mzKscNtBXM16D6ZzVCkBU.roa
File: L5oCW2mzKscNtBXM16D6ZzVCkBU.roa (raw, json)
Hash identifier: BROyobW3NZIGnh+2niVfd7sm+8/vzYGPQ4hStSCrG3Q=
Subject key identifier: 2F:9A:02:5B:69:B3:2A:C7:0D:B4:15:CC:D7:A0:FA:67:35:42:90:15
Certificate issuer: /CN=f0ff2c6229af763a99f5349a32510df4a4526143
Certificate serial: 272DBC75
Authority key identifier: F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/L5oCW2mzKscNtBXM16D6ZzVCkBU.roa
Signing time: Sat 01 Jan 2022 07:54:08 +0000
ROA not before: Sat 01 Jan 2022 07:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16013
IP address blocks: 193.92.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 657308789 (0x272dbc75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f0ff2c6229af763a99f5349a32510df4a4526143
Validity
Not Before: Jan 1 07:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f9a025b69b32ac70db415ccd7a0fa6735429015
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:df:c9:81:ae:a1:37:99:5b:f2:ab:84:70:25:
1f:d4:c6:76:fb:94:44:c1:ed:3b:8e:4f:28:32:b8:
2e:ed:04:bb:05:ea:26:53:8f:e3:08:48:d6:6f:38:
b1:1c:15:90:2e:7c:33:18:90:18:41:e5:70:27:1b:
18:92:ec:75:80:7d:ad:22:70:93:73:5c:d0:97:3b:
9b:86:9a:f6:a9:73:dc:fc:86:db:87:a3:7f:68:e5:
4c:3a:76:bc:27:df:59:ab:f3:e9:ff:53:83:79:c5:
72:b4:4b:e2:6e:d4:64:b3:70:70:ac:7c:10:45:6b:
59:09:1b:9c:75:58:4b:40:fb:67:e9:cb:db:a5:7e:
f2:5b:27:ca:a1:ba:ae:93:89:5f:3d:0f:7c:9e:57:
a0:4b:db:b6:34:c6:83:a1:41:d1:9e:62:c3:30:fb:
0f:ce:6f:32:73:88:38:a1:48:90:50:3b:00:2d:a5:
e5:b8:f6:2a:c3:d0:9c:85:67:40:99:5f:da:fc:37:
13:8b:26:53:fb:f1:fd:96:90:a6:de:c0:1e:60:93:
43:f1:5b:f2:6c:44:bb:6d:cf:65:78:b6:99:08:15:
e0:44:98:5b:71:be:e5:a7:33:bc:0d:de:eb:42:22:
d4:1b:05:a8:15:96:4e:d2:82:72:73:0a:86:00:43:
a6:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9A:02:5B:69:B3:2A:C7:0D:B4:15:CC:D7:A0:FA:67:35:42:90:15
X509v3 Authority Key Identifier:
keyid:F0:FF:2C:62:29:AF:76:3A:99:F5:34:9A:32:51:0D:F4:A4:52:61:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8P8sYimvdjqZ9TSaMlEN9KRSYUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/L5oCW2mzKscNtBXM16D6ZzVCkBU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/051fa2-c580-4a02-a186-e69f7a5d2d90/1/8P8sYimvdjqZ9TSaMlEN9KRSYUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.92.173.0/24
Signature Algorithm: sha256WithRSAEncryption
65:ff:80:16:bf:f8:49:7b:ed:0a:67:96:82:a1:c9:4d:38:b9:
f0:bf:1a:ae:1e:40:09:4e:e2:c5:4e:8e:93:0e:05:86:9a:2a:
78:d7:5d:33:35:17:e0:3e:a9:0a:51:4c:86:ac:c3:26:12:fb:
da:51:44:f4:ff:80:b6:2a:83:b7:f2:d3:cb:ae:b0:b5:c4:f2:
1e:96:24:9c:86:d5:7d:46:87:8a:8c:c5:e8:d6:8b:ef:d3:d9:
41:6c:61:30:4f:70:61:20:05:d9:36:d8:33:ab:d2:6d:58:48:
d5:4f:7a:04:ad:a6:87:e0:d0:47:96:99:94:5b:ce:25:b7:10:
64:08:70:8b:eb:22:ff:43:c7:25:38:e8:36:7a:49:c4:a7:2f:
85:ba:8f:84:f6:c0:de:38:ac:7a:a5:fe:b2:c7:a2:a5:b7:90:
ad:2d:e7:02:91:45:0a:77:78:5f:d4:ca:dd:70:74:76:c4:7b:
80:de:ff:5b:ec:79:92:8e:b1:fb:fe:d6:f6:cf:24:1f:e4:b7:
b4:95:2c:fd:0a:dd:8d:c0:bd:06:9c:0e:c9:f9:b7:d3:f6:0f:
d3:2b:c0:93:54:40:9c:82:c1:8b:d7:0b:f9:8d:82:d2:d8:bc:
19:25:a8:e4:2f:cc:9b:cc:0d:cc:ee:18:4e:85:6f:6f:aa:7d:
2c:e4:7e:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-ams.rpki-client.org