Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0_dPXgwRn33vHFCO7CHyQ9-YgoE.roa
File: 0_dPXgwRn33vHFCO7CHyQ9-YgoE.roa (raw, json)
Hash identifier: xPXkwmpRWEG5p6WeLAT5F3BYF3CYlTSIFw76q9Cxyjg=
Subject key identifier: D3:F7:4F:5E:0C:11:9F:7D:EF:1C:50:8E:EC:21:F2:43:DF:98:82:81
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17AC53E1
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0_dPXgwRn33vHFCO7CHyQ9-YgoE.roa
Signing time: Sat 01 Jan 2022 04:54:08 +0000
ROA not before: Sat 01 Jan 2022 04:54:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 193.222.101.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 397169633 (0x17ac53e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3f74f5e0c119f7def1c508eec21f243df988281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c1:84:1b:39:ba:de:0e:ac:8c:33:9c:a2:ac:
10:21:77:03:b9:f6:1f:8c:a2:cf:2b:88:5f:8d:f3:
87:0c:0b:aa:fc:8c:76:5c:7d:f5:73:be:72:4b:b0:
bc:53:e5:4a:2c:18:d6:f6:31:2b:25:3e:5d:5b:af:
09:1b:13:38:7e:0a:c8:46:4c:05:c7:11:32:f5:70:
ee:5c:97:24:4f:40:6d:4c:ca:1f:e7:47:76:06:0c:
f2:7a:b4:b1:ae:fb:d4:f2:f2:b3:6f:98:09:cd:fa:
b0:cb:5e:f7:9a:47:26:1b:ce:e0:50:0f:ee:b7:58:
85:43:ba:35:78:f3:92:49:66:2d:12:a3:d2:1b:45:
37:45:0b:7b:bb:3b:8d:f7:af:f8:40:12:55:b9:95:
37:e7:07:c2:e2:24:50:8d:c5:50:48:fd:ef:c7:8d:
21:8a:ba:a4:96:e9:25:7c:99:c0:34:da:98:36:02:
48:35:d5:b7:5e:b5:ad:d5:43:88:7a:1c:d4:23:16:
dd:30:c4:67:12:8d:7e:8e:6b:69:dd:4e:d4:a2:d2:
c0:a9:73:ff:7d:c1:61:3c:8a:b1:f6:8b:3f:28:e8:
b5:3e:4e:09:7a:5f:3d:89:7b:4c:6c:ee:be:e8:11:
40:59:6c:e8:8e:c5:bc:32:d5:e5:e9:e6:33:a2:fe:
ae:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F7:4F:5E:0C:11:9F:7D:EF:1C:50:8E:EC:21:F2:43:DF:98:82:81
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/0_dPXgwRn33vHFCO7CHyQ9-YgoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.222.101.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:48:42:03:ab:2f:e5:02:86:a0:40:6d:df:4c:3d:5a:f4:ea:
05:1c:3b:54:b5:d8:39:da:9f:e8:fe:51:c7:d7:d2:77:9c:e8:
e9:f0:7a:15:7c:0d:f3:b5:9a:b0:b6:5c:b1:0e:31:09:8f:c3:
39:75:be:44:6a:71:92:fd:ca:ef:70:26:59:38:45:69:de:fd:
76:69:61:4f:23:ed:43:f9:5f:b8:fc:d9:4a:d9:f1:3a:0c:50:
5b:66:0f:d6:1a:7a:dc:07:28:bf:eb:4f:32:3a:8b:7a:85:ca:
88:a4:3f:c4:44:e3:a0:c9:86:59:ac:82:ad:c5:4e:9f:79:73:
87:04:00:3b:4e:b1:e9:d6:f8:72:06:01:65:3d:64:e9:cc:90:
9a:03:e5:6e:c3:1c:d1:8e:1e:39:59:0d:83:fc:74:92:f5:47:
ff:ef:fc:0f:89:1b:bc:02:21:7e:63:2a:df:79:d9:0c:79:19:
c9:40:d7:38:f6:6a:9f:1e:b4:4b:ae:c3:b1:3b:6f:80:5e:ae:
e6:0c:9d:92:18:74:18:e4:2e:b6:e0:47:c0:a8:86:4c:f8:e9:
3c:35:78:1e:97:ad:b7:06:f1:51:e0:76:50:21:73:79:50:af:
b7:b6:6b:63:16:50:0a:eb:95:a4:f9:2d:9a:14:01:05:2d:cb:
3e:db:48:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:08 2023 by rpki-client on console-ams.rpki-client.org