Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/wL192JMaI8tFhaNBHvlm3ED9QAI.roa
File: wL192JMaI8tFhaNBHvlm3ED9QAI.roa (raw, json)
Hash identifier: wRNbDquFkzkNqi+YehMAD+ntcxaISpPPRviah8LekfQ=
Subject key identifier: C0:BD:7D:D8:93:1A:23:CB:45:85:A3:41:1E:F9:66:DC:40:FD:40:02
Certificate issuer: /CN=cb268b529393018d4bc9fc54073030a03d929721
Certificate serial: 0345AC6A
Authority key identifier: CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/wL192JMaI8tFhaNBHvlm3ED9QAI.roa
Signing time: Sat 01 Jan 2022 13:05:31 +0000
ROA not before: Sat 01 Jan 2022 13:05:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.43.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54897770 (0x345ac6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb268b529393018d4bc9fc54073030a03d929721
Validity
Not Before: Jan 1 13:05:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0bd7dd8931a23cb4585a3411ef966dc40fd4002
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c5:4a:1c:44:26:9c:dd:cc:5a:58:46:f9:b8:
12:08:dd:07:b5:de:6e:6f:24:6c:1b:68:71:be:95:
c8:e9:f7:00:e0:22:f8:d0:ca:f5:15:6a:25:5f:92:
6e:74:8e:a0:64:fb:47:1a:cd:f2:43:94:aa:65:24:
b6:82:fa:21:b5:5e:90:fb:4b:71:06:85:57:db:c4:
21:1f:b0:9c:b6:78:85:e0:a5:2c:6b:5f:1e:2f:b0:
bd:15:aa:4f:a2:f7:a5:d6:72:66:14:a6:cd:5f:9b:
fa:d0:ca:11:0a:3d:ad:55:a3:fd:da:d1:89:79:60:
8c:e7:4b:e9:e2:73:bb:d6:c9:ec:e5:10:6b:ce:40:
40:e5:aa:ca:56:55:47:8a:f3:4c:56:a1:45:47:a8:
c6:e8:ec:a5:24:ec:33:5c:5f:ee:87:59:9a:f1:1f:
7c:47:49:7b:37:d1:99:c1:ab:35:7b:96:34:f8:40:
17:af:16:f2:be:f7:c5:68:8b:a4:69:cb:40:f0:a2:
bc:43:04:51:d0:f4:18:dd:d3:5e:83:a4:49:9e:6e:
d5:e0:48:45:d9:94:a2:2a:c5:ab:ba:b6:24:be:b3:
44:02:ae:f3:56:61:8d:36:d9:86:90:73:1e:7e:7f:
0f:f0:0a:81:77:d5:8f:c2:05:3c:ea:b6:03:b4:a9:
a9:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:BD:7D:D8:93:1A:23:CB:45:85:A3:41:1E:F9:66:DC:40:FD:40:02
X509v3 Authority Key Identifier:
keyid:CB:26:8B:52:93:93:01:8D:4B:C9:FC:54:07:30:30:A0:3D:92:97:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yyaLUpOTAY1LyfxUBzAwoD2SlyE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/wL192JMaI8tFhaNBHvlm3ED9QAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/39a6d4-b937-4d5f-8016-f2700864c187/1/yyaLUpOTAY1LyfxUBzAwoD2SlyE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.125.0/24
Signature Algorithm: sha256WithRSAEncryption
17:da:f0:3f:93:af:54:74:c8:d2:80:c5:00:7b:e0:8d:8d:5a:
7f:36:5f:f4:8b:d6:a5:2b:0b:16:06:8d:8d:4b:4a:06:59:3b:
48:0b:80:4e:0d:e6:99:ab:e9:1a:32:50:28:4f:e5:da:32:3a:
ea:36:9e:78:ec:bd:bc:c3:4e:d5:cc:a4:46:47:67:08:3e:fe:
19:31:3d:0e:09:de:81:9b:94:d6:98:cc:9e:0d:7a:94:f1:f6:
e2:c7:52:0d:9a:5c:43:c8:94:a6:c8:c1:b1:33:d6:7f:a0:ac:
d6:7b:a5:92:12:28:da:ea:6a:76:87:f2:fb:5e:b5:0e:a6:8e:
18:ed:90:b7:c1:61:02:ae:f3:e4:bd:1b:5d:28:79:d1:4f:4a:
06:40:2f:29:a0:18:6b:83:9b:d4:f5:ab:6f:ad:78:65:ed:c1:
f1:c4:26:70:2e:6d:1e:de:8d:c5:6b:e7:9d:c3:c3:1d:08:53:
85:a4:26:6f:34:63:1c:a9:6e:67:e0:ff:37:f3:86:34:39:13:
2e:d1:eb:3d:e7:b4:30:4d:01:7b:ed:53:97:e6:23:68:0d:38:
bf:24:f5:d2:ad:88:f8:82:8e:d8:cc:a5:9d:e6:ef:8b:39:94:
9e:54:bd:ce:e9:9b:ef:a0:bb:6d:5b:1b:4b:42:75:2f:25:af:
0a:ce:f0:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:28 2023 by rpki-client on console-ams.rpki-client.org