Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/fb6e07-bbc1-447e-b3fa-5110f6b579bf/1/aMaQ67zQClgcTGcvwo-BRUk5X9M.roa
File: aMaQ67zQClgcTGcvwo-BRUk5X9M.roa (raw, json)
Hash identifier: UJHdLEaBo0zotZry85SjmyVBQxX0p/KW+POXEnz4vXE=
Subject key identifier: 68:C6:90:EB:BC:D0:0A:58:1C:4C:67:2F:C2:8F:81:45:49:39:5F:D3
Certificate issuer: /CN=e88293ac1670cf2e3a4b3da6c7771f8b1e84cfea
Certificate serial: 0185723A143F98E664E0EBB61BCF3108C929
Authority key identifier: E8:82:93:AC:16:70:CF:2E:3A:4B:3D:A6:C7:77:1F:8B:1E:84:CF:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6IKTrBZwzy46Sz2mx3cfix6Ez-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/fb6e07-bbc1-447e-b3fa-5110f6b579bf/1/aMaQ67zQClgcTGcvwo-BRUk5X9M.roa
Signing time: Mon 02 Jan 2023 11:24:46 +0000
ROA not before: Mon 02 Jan 2023 11:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21063
IP address blocks: 193.100.124.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:14:3f:98:e6:64:e0:eb:b6:1b:cf:31:08:c9:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e88293ac1670cf2e3a4b3da6c7771f8b1e84cfea
Validity
Not Before: Jan 2 11:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68c690ebbcd00a581c4c672fc28f814549395fd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:07:5d:8d:85:57:eb:72:03:33:29:c8:d6:2c:
a3:9f:29:66:0c:9c:c1:03:c8:7c:23:9a:64:1a:b1:
e2:2f:22:bf:ce:ea:e9:eb:0e:90:80:21:5f:ee:53:
a9:df:46:49:4c:67:e6:63:c4:71:92:23:a4:b9:08:
57:df:10:0e:8a:81:ea:fc:ec:ba:80:b3:08:16:c2:
02:13:6e:4a:c5:d7:60:36:bc:a5:9e:c2:20:e8:43:
87:67:67:09:61:ff:8f:2a:6b:72:b2:05:8c:69:2f:
0d:00:2b:cd:21:f2:37:e6:1b:ba:9f:ab:23:04:5f:
c2:cd:10:b9:89:13:42:f1:fd:cc:ee:08:fd:65:80:
e8:0f:91:84:2c:e0:13:8d:2c:d3:78:a9:6c:79:49:
82:53:1c:dd:d1:79:8f:c4:03:25:71:67:5f:68:fa:
e8:3b:07:8d:7d:41:97:e8:b9:70:81:83:94:a2:28:
53:82:f7:ad:1c:22:ae:92:81:32:9b:10:3e:71:a8:
37:54:38:1e:fe:1e:10:9e:c8:1b:f0:a2:1b:c8:6d:
b5:23:66:33:5d:7e:b6:c6:5b:80:b6:e8:bd:46:ec:
7d:17:73:43:07:44:dc:92:af:28:a5:08:9b:c9:d0:
0f:6f:04:87:b8:a0:8d:92:53:8f:e4:29:f8:3e:c2:
05:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:C6:90:EB:BC:D0:0A:58:1C:4C:67:2F:C2:8F:81:45:49:39:5F:D3
X509v3 Authority Key Identifier:
keyid:E8:82:93:AC:16:70:CF:2E:3A:4B:3D:A6:C7:77:1F:8B:1E:84:CF:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6IKTrBZwzy46Sz2mx3cfix6Ez-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fb6e07-bbc1-447e-b3fa-5110f6b579bf/1/aMaQ67zQClgcTGcvwo-BRUk5X9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/fb6e07-bbc1-447e-b3fa-5110f6b579bf/1/6IKTrBZwzy46Sz2mx3cfix6Ez-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.100.124.0/23
Signature Algorithm: sha256WithRSAEncryption
d7:19:39:87:0a:bc:82:4c:14:9a:cd:da:05:55:86:0c:eb:28:
67:38:cc:5f:49:a2:15:64:fd:2d:60:3f:25:84:cc:b5:a4:02:
6a:41:6c:5e:06:1a:36:03:6d:43:18:07:fd:69:b5:7e:68:b4:
bf:51:57:ec:6c:16:87:40:3a:83:59:2f:2b:89:4a:4a:cb:14:
77:f2:c6:0b:2e:d5:7b:62:a3:1b:a4:87:34:ea:a7:42:cd:3f:
32:44:b4:b9:f8:8f:22:f8:2c:83:58:8f:65:dd:1c:af:17:6b:
42:5a:a9:52:54:77:f0:48:88:7d:e0:84:cc:8a:5b:5f:38:fa:
80:1b:e9:7d:35:09:d8:72:f9:cd:2b:c4:18:b3:6f:a8:5b:10:
75:b4:af:fb:35:2d:3e:67:57:64:d9:d9:6c:1c:49:9b:fc:27:
a3:34:d6:43:2c:3d:08:a7:67:ed:19:8f:64:a6:a1:da:ad:b1:
8a:3d:63:1e:2b:b4:45:d3:e0:48:02:3b:cb:9d:ff:a4:e7:05:
84:4c:61:89:54:45:ff:e3:53:56:99:cd:2b:0a:a9:76:64:c9:
62:28:e3:1c:1e:75:54:27:49:00:0c:09:06:01:6e:17:3e:bc:
ba:4a:11:64:aa:27:55:71:fb:f0:14:73:c1:bd:e2:68:e4:0f:
ad:fe:64:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:38 2025 by rpki-client