Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/8w69SB7Xmfghx3lDmKvKt4UnwgU.roa
File: 8w69SB7Xmfghx3lDmKvKt4UnwgU.roa (raw, json)
Hash identifier: 7wlo0nwQZU1++K7TejN3PTMOVDWLllReB/cw09GHK5Y=
Subject key identifier: F3:0E:BD:48:1E:D7:99:F8:21:C7:79:43:98:AB:CA:B7:85:27:C2:05
Certificate issuer: /CN=ff8ced3b09a905eb96869c58f66b4f8b591503b0
Certificate serial: 076143D9
Authority key identifier: FF:8C:ED:3B:09:A9:05:EB:96:86:9C:58:F6:6B:4F:8B:59:15:03:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4ztOwmpBeuWhpxY9mtPi1kVA7A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/8w69SB7Xmfghx3lDmKvKt4UnwgU.roa
Signing time: Sat 01 Jan 2022 01:56:15 +0000
ROA not before: Sat 01 Jan 2022 01:56:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50204
IP address blocks: 193.106.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123814873 (0x76143d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff8ced3b09a905eb96869c58f66b4f8b591503b0
Validity
Not Before: Jan 1 01:56:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f30ebd481ed799f821c7794398abcab78527c205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:2a:45:00:f8:b0:72:89:d3:17:69:21:5b:c7:
d3:1c:36:d5:e7:21:62:45:87:c1:0b:86:72:2b:2e:
50:ab:c1:51:b7:f3:5a:ab:55:05:b6:46:a0:45:f7:
b6:b6:8b:e9:49:82:14:8f:9d:dc:a5:aa:d2:d1:61:
f2:e6:7b:47:fc:f3:15:18:4a:12:57:20:4b:e4:20:
47:17:f7:53:9d:40:89:68:a2:e1:e4:e7:9e:ca:69:
76:3c:44:bd:05:2a:1b:36:db:40:65:5d:db:59:cd:
42:d6:04:db:a9:6d:eb:bf:10:a1:32:2d:f2:87:f1:
2b:ec:bf:83:9a:68:c1:47:65:a8:8c:82:77:44:75:
c2:c8:51:09:2c:52:35:3b:5e:e5:cf:cc:15:0e:1c:
28:fb:2e:19:60:d3:23:33:75:aa:93:b2:3e:44:31:
2a:29:60:57:35:ae:2e:70:37:62:cb:bc:78:7f:8e:
28:b8:0b:cb:19:87:a0:c9:4f:f5:8a:69:ba:eb:be:
f4:03:18:79:38:df:37:6d:93:90:43:bf:f0:18:76:
cc:13:70:3e:3d:6e:f8:ad:79:1b:60:75:09:5d:0c:
dc:48:6c:34:83:b8:d8:6b:0a:de:c2:27:e3:1c:0f:
c1:ab:6f:ce:3f:c7:d4:bb:c0:64:ad:00:c1:2d:8f:
ea:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:0E:BD:48:1E:D7:99:F8:21:C7:79:43:98:AB:CA:B7:85:27:C2:05
X509v3 Authority Key Identifier:
keyid:FF:8C:ED:3B:09:A9:05:EB:96:86:9C:58:F6:6B:4F:8B:59:15:03:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4ztOwmpBeuWhpxY9mtPi1kVA7A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/8w69SB7Xmfghx3lDmKvKt4UnwgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/01608d-08f1-4ab5-a926-be561ccded2c/1/_4ztOwmpBeuWhpxY9mtPi1kVA7A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.220.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:ed:2e:6c:16:c7:f5:32:16:74:f9:7e:cf:58:6e:d4:b3:c7:
b2:fa:fb:e3:5e:03:b1:ba:49:01:a7:81:1b:de:e8:5a:f9:6a:
8b:83:1b:95:ee:83:94:d9:d5:0c:da:d4:59:cc:6b:ca:64:27:
b8:39:16:a5:58:de:19:8b:05:81:22:b3:39:b9:2f:5a:9f:95:
5e:99:6e:0d:27:78:5b:ff:77:f5:3e:75:46:ec:f8:21:92:b8:
bf:fe:0a:c3:89:ec:12:19:92:c6:56:f3:d2:d4:8c:2e:c8:ed:
db:33:ad:79:be:f2:d3:d6:9b:5b:fa:b6:04:68:46:ad:ca:b0:
4c:b2:6c:b4:de:91:df:7c:4b:b6:2c:9e:82:a0:a8:32:f7:9d:
a5:75:e1:5b:d9:1e:d4:33:13:9d:f2:1b:12:0e:54:5a:a7:4a:
6a:bc:c7:cf:27:6f:65:35:aa:8f:d7:dc:a5:98:9e:ff:e3:5c:
14:1e:fd:ff:51:aa:d6:ca:50:da:96:9d:8d:d3:08:dd:92:9c:
af:b0:1e:16:5b:bd:81:d9:9e:b9:e8:35:7f:7f:92:66:6c:42:
2d:59:d5:5b:a2:f3:b5:0b:b7:d3:d4:d5:24:d5:bd:1b:5a:11:
3c:99:a2:60:20:2a:49:93:a6:94:4c:a5:53:b5:a2:6e:76:6d:
eb:fe:b0:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:27 2023 by rpki-client on console-fra.rpki-client.org