Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/7PwDhZQM2s51LPhwtYWKuw3Kxsc.roa
File: 7PwDhZQM2s51LPhwtYWKuw3Kxsc.roa (raw, json)
Hash identifier: PI7fbrfeHMeRQYy3oBliFgsANPhXAsTWTtdqKXh5KlQ=
Subject key identifier: EC:FC:03:85:94:0C:DA:CE:75:2C:F8:70:B5:85:8A:BB:0D:CA:C6:C7
Certificate issuer: /CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Certificate serial: 1ABFEB7A
Authority key identifier: 7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/7PwDhZQM2s51LPhwtYWKuw3Kxsc.roa
Signing time: Thu 31 Mar 2022 08:18:28 +0000
ROA not before: Thu 31 Mar 2022 08:18:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201627
IP address blocks: 193.71.228.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448785274 (0x1abfeb7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7dc4acedcb86cddfed7f6de8cadfca00469bbc8e
Validity
Not Before: Mar 31 08:18:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecfc0385940cdace752cf870b5858abb0dcac6c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:57:a1:3d:94:ed:41:4c:66:99:db:84:eb:5b:
56:31:33:2f:ff:f3:ac:79:5e:73:3f:25:b9:61:36:
cf:5a:7b:86:c2:98:92:c1:ef:ea:f3:90:53:f4:4c:
8f:f2:16:e5:5a:aa:f0:c8:85:97:6b:de:2c:da:76:
b9:43:8f:d4:cb:d5:b0:79:27:8a:38:30:86:7a:88:
25:0b:24:68:51:e7:a1:86:c5:02:57:06:29:99:cd:
f6:a9:64:22:45:b5:60:0d:b1:86:a2:5e:b0:33:d1:
3a:67:76:a8:28:60:7f:42:6b:3e:33:95:2f:ae:1b:
a2:4e:73:42:97:af:6a:e8:ca:15:45:e2:2a:05:f3:
d9:d2:4a:77:e7:64:f0:b1:3e:30:1d:c7:c6:bd:a7:
96:c8:01:06:3a:90:f1:9e:ab:e0:42:93:03:e6:48:
83:c6:9f:51:3d:aa:dc:f2:01:10:07:d4:89:a2:6c:
e1:df:36:d6:d6:cb:a4:dd:6f:40:0a:61:9f:95:a8:
cd:7e:e9:a1:49:15:9b:8c:c0:c4:a3:e7:d9:e2:a6:
26:43:16:b6:1a:59:6f:2a:1f:03:11:ab:5b:96:0d:
43:83:79:07:ab:58:5b:bb:fa:94:7d:1e:ba:7f:9b:
9f:41:35:10:00:44:c8:75:5e:06:98:2d:c8:ed:ec:
fd:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FC:03:85:94:0C:DA:CE:75:2C:F8:70:B5:85:8A:BB:0D:CA:C6:C7
X509v3 Authority Key Identifier:
keyid:7D:C4:AC:ED:CB:86:CD:DF:ED:7F:6D:E8:CA:DF:CA:00:46:9B:BC:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fcSs7cuGzd_tf23oyt_KAEabvI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/7PwDhZQM2s51LPhwtYWKuw3Kxsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/3d2a14-6b79-4689-9579-39480285a948/1/fcSs7cuGzd_tf23oyt_KAEabvI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.71.228.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:6b:df:97:f0:74:e0:1c:c1:51:c7:24:26:65:f1:e1:25:86:
2e:4b:66:4e:be:38:8c:de:ff:ad:05:8f:ee:d7:ae:0f:46:08:
be:b2:a3:0a:cf:64:17:40:fd:64:d0:c4:18:9e:45:f6:0d:3c:
50:e5:06:ee:64:2a:15:6b:0a:f6:39:f5:2b:11:04:11:52:f9:
e5:0c:0a:1f:62:4a:d1:8b:fe:d7:f8:b5:05:2c:d7:8f:94:8e:
df:58:f2:4e:e5:d2:d5:56:02:fb:16:07:fd:2f:af:35:7f:8c:
f3:c3:67:47:d2:5b:f2:d8:a8:e2:84:af:70:ff:44:c4:0f:71:
68:4b:01:23:46:e9:1a:c3:d0:77:e6:9e:57:57:4f:48:f1:35:
f3:2e:82:fd:30:c7:d0:1f:60:f2:bc:7e:38:a7:4a:1b:60:16:
b1:f2:c9:20:ce:3c:1a:7c:db:2f:12:44:fe:17:de:df:7b:48:
53:3c:98:35:84:0d:22:c6:51:43:52:b1:48:4e:f1:72:8f:78:
2e:33:f7:a0:00:ab:ba:fa:3e:fc:d6:a4:c6:43:04:97:0a:27:
04:b5:76:76:20:23:14:11:1d:04:73:af:69:8f:87:8d:a4:70:
f0:d2:3a:c1:bc:90:38:3c:a1:6b:b5:e2:b4:6a:98:04:51:da:
c5:a0:ea:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:25 2024 by rpki-client on console-ams.rpki-client.org