Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/7df7c6-decd-4bbc-babc-23697f752f2e/1/MiHsVXngtx2qpW7MW6priNFsfoo.roa
File: MiHsVXngtx2qpW7MW6priNFsfoo.roa (raw, json)
Hash identifier: VGB4qAaWSEFyaXTHcgU+nhOFlhMhvpZ98kfq6ki1GnE=
Subject key identifier: 32:21:EC:55:79:E0:B7:1D:AA:A5:6E:CC:5B:AA:6B:88:D1:6C:7E:8A
Certificate issuer: /CN=c76c3644741336b01b638563314f40d10c69d30d
Certificate serial: 01856259F878C844AC2AB56BDC9636672417
Authority key identifier: C7:6C:36:44:74:13:36:B0:1B:63:85:63:31:4F:40:D1:0C:69:D3:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x2w2RHQTNrAbY4VjMU9A0Qxp0w0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/7df7c6-decd-4bbc-babc-23697f752f2e/1/MiHsVXngtx2qpW7MW6priNFsfoo.roa
Signing time: Fri 30 Dec 2022 09:25:41 +0000
ROA not before: Fri 30 Dec 2022 09:25:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31428
IP address blocks: 193.16.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:59:f8:78:c8:44:ac:2a:b5:6b:dc:96:36:67:24:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c76c3644741336b01b638563314f40d10c69d30d
Validity
Not Before: Dec 30 09:25:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3221ec5579e0b71daaa56ecc5baa6b88d16c7e8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:32:d8:f3:b1:c3:4f:5e:de:56:83:fc:05:d8:
74:95:47:16:28:c5:8b:91:44:8a:fb:eb:1c:6e:d9:
bc:25:c1:e6:39:08:ec:a0:ae:35:b7:46:54:9c:e5:
53:ac:81:f9:ee:16:56:48:6e:6e:28:14:e8:34:c0:
d9:2a:30:82:0a:b4:52:fa:aa:6e:f4:4d:30:ed:02:
6f:a4:30:43:8a:13:dc:c2:60:3a:70:e0:53:92:f4:
83:e8:e5:ca:e2:ec:09:40:46:44:b7:db:e0:ee:aa:
4e:46:9d:b9:84:8f:92:fe:90:e1:c3:f3:2e:1a:89:
0c:68:22:e5:32:d8:75:b4:58:23:9c:1b:f5:77:8b:
83:55:40:fd:6f:e8:14:5f:d0:bb:94:b8:97:52:15:
d4:e5:bc:7d:df:31:68:ad:4e:44:5d:b8:77:f8:ff:
83:33:b4:b7:30:ec:f1:d4:c5:fc:e1:b5:bc:89:bf:
69:e8:dc:30:17:16:c2:67:b1:44:2e:ec:4d:d1:d8:
76:6f:92:42:1f:c5:a6:ff:63:bc:ab:a6:ba:58:f4:
bb:34:a6:42:9e:05:1c:f4:2f:8b:d4:e5:e3:7d:60:
97:b4:24:22:e6:52:e8:2e:69:c7:c7:d1:89:d2:8b:
89:77:98:23:52:df:1c:40:f7:1f:00:37:47:e5:b0:
27:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:21:EC:55:79:E0:B7:1D:AA:A5:6E:CC:5B:AA:6B:88:D1:6C:7E:8A
X509v3 Authority Key Identifier:
keyid:C7:6C:36:44:74:13:36:B0:1B:63:85:63:31:4F:40:D1:0C:69:D3:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x2w2RHQTNrAbY4VjMU9A0Qxp0w0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7df7c6-decd-4bbc-babc-23697f752f2e/1/MiHsVXngtx2qpW7MW6priNFsfoo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7df7c6-decd-4bbc-babc-23697f752f2e/1/x2w2RHQTNrAbY4VjMU9A0Qxp0w0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.16.153.0/24
Signature Algorithm: sha256WithRSAEncryption
31:b7:0f:f3:50:a7:34:8d:52:f6:0d:43:af:aa:fb:73:98:15:
8b:3f:16:70:10:6d:c5:e1:f4:d0:c8:86:ab:f9:9b:1d:83:eb:
4f:a7:be:44:43:c4:9e:94:51:79:55:67:29:6e:83:6e:bb:9b:
f5:84:48:c1:63:91:35:79:a3:95:01:e0:84:92:5d:e7:0f:da:
8a:e0:13:54:e4:94:27:9c:aa:57:27:f5:17:b5:21:95:d3:c6:
fc:04:b5:7b:8d:ab:4a:cb:55:59:b0:0e:ee:fa:a1:cf:8c:c9:
f6:b3:6c:20:53:be:4e:7e:a2:50:39:47:cb:67:4d:54:33:02:
91:89:d3:de:48:a0:c2:66:60:8c:de:fd:b3:bb:9c:1b:bf:f4:
d6:d8:3c:16:bd:b1:a9:0b:23:c8:69:c7:ad:e7:a1:9c:8b:e7:
f4:fd:39:6f:e1:8c:8f:0a:fd:26:8b:db:f4:a6:98:22:01:42:
1f:84:ae:41:d6:ba:40:f1:de:17:a6:90:38:5c:45:50:e2:f8:
49:4a:f3:61:32:57:5c:a8:63:9e:ee:5a:66:9a:5a:78:79:a3:
22:47:01:2a:80:bb:7c:4d:f3:69:dc:d0:18:fb:f4:bd:b6:64:
62:03:9e:91:0e:f2:11:60:69:8c:4f:14:78:30:eb:5e:af:fa:
85:f8:9f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:13 2023 by rpki-client on console-ams.rpki-client.org