Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/493b98-7f59-4f61-9945-1e8ddafe3a14/1/WHUgipUyXeyZINT8DfZklxZ-jtQ.roa
File: WHUgipUyXeyZINT8DfZklxZ-jtQ.roa (raw, json)
Hash identifier: 8i5OLjuf+iIXveMPb6QLCFb82/XuVCErTF/genYi/L0=
Subject key identifier: 58:75:20:8A:95:32:5D:EC:99:20:D4:FC:0D:F6:64:97:16:7E:8E:D4
Certificate issuer: /CN=08fcf0ed5b5677c1155f2b784c6d73d8093af1aa
Certificate serial: 07335ABC
Authority key identifier: 08:FC:F0:ED:5B:56:77:C1:15:5F:2B:78:4C:6D:73:D8:09:3A:F1:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CPzw7VtWd8EVXyt4TG1z2Ak68ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/493b98-7f59-4f61-9945-1e8ddafe3a14/1/WHUgipUyXeyZINT8DfZklxZ-jtQ.roa
Signing time: Sat 01 Jan 2022 12:04:22 +0000
ROA not before: Sat 01 Jan 2022 12:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15763
IP address blocks: 193.28.40.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120806076 (0x7335abc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08fcf0ed5b5677c1155f2b784c6d73d8093af1aa
Validity
Not Before: Jan 1 12:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5875208a95325dec9920d4fc0df66497167e8ed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:41:5a:ee:32:8b:49:c0:e5:f9:71:b1:55:df:
00:86:52:c9:e5:17:02:20:b9:eb:5e:e4:ec:03:e0:
95:0b:c2:78:a3:0c:3d:85:98:be:56:a5:8c:21:4f:
a7:03:d1:01:45:73:52:69:34:7d:b5:c4:72:bf:91:
e9:1b:71:01:2f:0d:a5:47:aa:8d:df:59:ba:ae:e5:
3e:09:e8:2c:b8:63:7c:a5:11:42:5e:b1:55:8e:50:
16:c0:86:89:1b:cd:a3:ea:1b:19:21:33:c5:5d:1c:
64:5e:97:55:f9:74:bc:e9:c3:83:7a:11:9b:47:25:
cd:cf:5b:28:d9:aa:97:4d:db:b9:97:a9:7e:65:ce:
3e:04:0e:45:31:39:88:eb:fc:dd:a1:20:60:aa:0f:
1c:ad:30:91:3e:b0:86:ec:27:d9:6b:a0:14:a6:c3:
43:63:e1:aa:47:32:04:af:4a:3f:e1:02:1f:18:b1:
a2:57:30:1f:3b:18:f9:db:59:6b:f7:1f:ff:06:d8:
29:1b:fe:c3:0f:07:13:05:66:c1:5b:de:e8:b0:dc:
cc:15:ba:f9:64:e6:b2:72:b1:e7:f6:fd:b9:71:50:
31:68:fd:ef:0e:b8:79:5f:c4:d7:ab:5d:a5:46:17:
35:9a:7f:0c:56:f9:f6:7c:ac:50:f6:34:11:b0:b5:
44:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:75:20:8A:95:32:5D:EC:99:20:D4:FC:0D:F6:64:97:16:7E:8E:D4
X509v3 Authority Key Identifier:
keyid:08:FC:F0:ED:5B:56:77:C1:15:5F:2B:78:4C:6D:73:D8:09:3A:F1:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CPzw7VtWd8EVXyt4TG1z2Ak68ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/493b98-7f59-4f61-9945-1e8ddafe3a14/1/WHUgipUyXeyZINT8DfZklxZ-jtQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/493b98-7f59-4f61-9945-1e8ddafe3a14/1/CPzw7VtWd8EVXyt4TG1z2Ak68ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.40.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:e9:dc:7f:b1:78:be:5a:c2:c4:c3:24:6a:b0:c7:03:e4:5a:
9e:02:36:a0:30:4c:ed:87:29:ad:8f:57:c4:ac:e0:f6:29:f2:
db:4a:fd:dc:48:16:98:de:94:61:ab:15:3f:3d:98:14:11:87:
cb:34:b5:07:9c:24:ea:80:a4:b8:85:a9:49:e3:3f:5f:81:b4:
90:7b:a3:50:7d:fe:2d:72:64:ca:92:a6:5e:e9:46:33:e2:04:
51:0e:13:c7:3a:4d:af:09:46:16:57:1c:51:4c:35:2c:83:24:
dd:b1:4a:7d:8b:2f:d6:d5:67:6c:89:93:cc:fb:4d:37:8e:d3:
f6:3c:4b:98:6d:11:16:ab:2a:2f:39:0e:23:65:0c:1f:59:6f:
f7:4f:d2:dc:60:ca:95:07:b4:1f:b8:38:6a:26:00:9d:75:0f:
b1:51:23:33:f0:2a:6d:66:44:7f:f6:27:6d:ab:4e:f4:cc:cc:
3f:62:b9:f4:9a:57:b5:3f:5b:d7:9e:a9:b6:d5:89:9d:b9:c9:
7c:bb:d3:c7:4b:ca:c9:6e:b3:5f:2c:4b:a9:cc:af:67:6f:51:
c4:f9:4b:86:8a:87:94:db:94:9f:32:a7:1e:eb:6d:fa:0a:7a:
d3:e4:43:40:39:eb:70:e5:9b:20:a8:d5:08:de:d6:82:a3:aa:
f4:32:1d:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:09 2023 by rpki-client on console-fra.rpki-client.org