Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/733174-edd6-4b42-b011-98058100a648/1/loHtinZ2GuWZvKEJNJ1cploWVo8.roa
File: loHtinZ2GuWZvKEJNJ1cploWVo8.roa (raw, json)
Hash identifier: P+td/aaCSviUsION6kG6cFJMfGXY/Kg4bJucVoRbliw=
Subject key identifier: 96:81:ED:8A:76:76:1A:E5:99:BC:A1:09:34:9D:5C:A6:5A:16:56:8F
Certificate issuer: /CN=fba0053b68a4398fd52f07afdd6ad3109fded4b4
Certificate serial: 0183EB9E6C71A38B8E9D730EB4CC79FA6FD4
Authority key identifier: FB:A0:05:3B:68:A4:39:8F:D5:2F:07:AF:DD:6A:D3:10:9F:DE:D4:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-6AFO2ikOY_VLwev3WrTEJ_e1LQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/733174-edd6-4b42-b011-98058100a648/1/loHtinZ2GuWZvKEJNJ1cploWVo8.roa
Signing time: Tue 18 Oct 2022 15:02:51 +0000
ROA not before: Tue 18 Oct 2022 15:02:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20572
IP address blocks: 193.108.184.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:eb:9e:6c:71:a3:8b:8e:9d:73:0e:b4:cc:79:fa:6f:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fba0053b68a4398fd52f07afdd6ad3109fded4b4
Validity
Not Before: Oct 18 15:02:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9681ed8a76761ae599bca109349d5ca65a16568f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:94:13:e6:87:33:82:57:35:45:9f:f8:a6:ca:
3f:78:00:92:ea:e4:e6:d2:82:6e:fa:ef:a6:20:41:
6d:28:1b:80:52:7c:f0:45:9e:11:7f:25:1e:1e:4d:
d4:47:04:21:19:48:36:d1:99:bb:1f:de:fc:c4:ea:
49:b3:60:c9:75:e2:5f:60:fe:42:77:9f:ee:c5:40:
6f:9b:bc:20:b4:7e:74:0f:2c:ee:44:65:ea:34:4f:
8a:63:a2:35:2d:f3:bc:ad:c8:cd:c4:c0:28:63:d4:
c6:d7:49:34:c3:90:00:76:9d:fd:f8:5f:46:c9:5d:
d6:a1:f2:d7:92:07:ef:42:50:b4:63:89:90:6e:13:
33:23:f4:21:d5:3b:b2:11:c8:4e:eb:d4:e8:fe:1c:
74:7b:71:b8:d1:9b:1d:f9:82:97:91:f8:41:17:f2:
10:2c:0f:20:e0:ab:0e:99:5a:8e:e9:a0:e4:c6:9b:
63:bf:68:3c:b3:33:fb:5d:0a:90:0a:0e:39:90:59:
a1:4d:b7:56:d0:a0:51:8a:39:56:10:08:5e:6d:2c:
6a:93:93:fa:ff:d6:90:eb:31:9a:d8:d9:0d:31:27:
57:6d:20:be:00:f8:ac:8b:66:4f:77:22:20:14:98:
d0:1d:c4:8b:26:9a:c7:3d:e9:36:8f:6c:29:bb:58:
f5:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:81:ED:8A:76:76:1A:E5:99:BC:A1:09:34:9D:5C:A6:5A:16:56:8F
X509v3 Authority Key Identifier:
keyid:FB:A0:05:3B:68:A4:39:8F:D5:2F:07:AF:DD:6A:D3:10:9F:DE:D4:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-6AFO2ikOY_VLwev3WrTEJ_e1LQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/733174-edd6-4b42-b011-98058100a648/1/loHtinZ2GuWZvKEJNJ1cploWVo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/733174-edd6-4b42-b011-98058100a648/1/1-6AFO2ikOY_VLwev3WrTEJ_e1LQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.184.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:f7:0d:d0:86:e0:cb:59:b4:d2:1e:45:06:c6:45:5d:41:67:
48:95:29:c9:c1:df:41:b5:e3:3d:f4:59:62:27:ae:57:2e:34:
04:93:42:ed:08:a8:d5:76:bc:54:2b:aa:a0:56:88:62:7f:36:
73:06:a0:02:88:2c:e9:1b:88:4e:aa:c7:3d:ef:df:c9:50:f6:
ba:7a:d0:03:3f:fa:92:16:29:8d:71:a4:bd:d3:8e:a4:68:42:
79:75:55:d9:68:2c:be:d5:57:e7:82:07:10:b1:f0:1f:83:bd:
4d:b6:32:e3:eb:46:35:68:0f:ef:9f:c1:fb:28:5c:c0:32:0d:
7d:c1:dc:21:00:9c:26:e6:0c:d4:30:dd:88:c8:4e:e5:6f:3c:
de:f4:07:87:14:98:29:b6:2b:07:de:05:d5:a7:e6:1e:e3:77:
25:88:96:06:4a:93:87:83:b5:91:88:1a:2f:e3:ae:20:b1:57:
39:f4:23:30:9e:e1:da:90:25:63:a9:c8:fa:04:34:40:a3:ed:
25:4a:23:48:6a:c3:06:45:10:ad:0d:40:27:45:c2:a4:a3:8b:
80:99:03:88:e3:21:97:be:67:69:0b:20:f6:79:5f:4b:5a:36:
49:c5:00:d6:8c:6f:67:7b:b3:2c:71:d8:9d:9e:cd:62:02:e0:
0c:b5:81:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:04 2023 by rpki-client on console-ams.rpki-client.org