Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/E7a5r3kCQlLQzRoITa85dRVggP0.roa
File: E7a5r3kCQlLQzRoITa85dRVggP0.roa (raw, json)
Hash identifier: 3Ycuk/v+wuDADccrsXXU6xc0GkMpFxiFkG8A1b1RB7I=
Subject key identifier: 13:B6:B9:AF:79:02:42:52:D0:CD:1A:08:4D:AF:39:75:15:60:80:FD
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 0783178D
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/E7a5r3kCQlLQzRoITa85dRVggP0.roa
Signing time: Mon 24 Jan 2022 20:30:38 +0000
ROA not before: Mon 24 Jan 2022 20:30:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64267
IP address blocks: 193.43.143.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126031757 (0x783178d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Jan 24 20:30:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13b6b9af79024252d0cd1a084daf3975156080fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:cc:e1:75:61:77:89:ef:bc:9c:f9:11:79:81:
a6:79:43:5a:85:66:8f:c6:4d:a6:0a:2d:96:65:2c:
0e:81:5b:83:f2:e4:d7:8c:88:02:d6:31:07:79:7b:
01:d0:c6:3c:a6:ef:e7:d8:71:e8:0f:9b:0c:74:fc:
fd:e7:58:12:6f:f0:15:bd:71:a1:c2:79:6a:1e:ca:
eb:36:18:76:80:2b:ff:33:7d:de:8a:6b:eb:34:9d:
49:f0:b1:ba:0f:85:23:76:54:49:10:d9:f6:77:bd:
b0:b9:02:cb:40:bf:64:05:8a:de:7e:b1:09:de:d8:
2f:b5:54:8c:a3:c4:73:bf:40:42:c2:15:12:a4:94:
58:6b:43:24:ca:b2:d3:73:2e:2f:e4:2a:ec:09:c0:
59:12:e9:34:8d:91:84:71:2e:46:e1:7a:d0:87:19:
3e:12:5e:35:a0:00:ea:ac:fb:cb:36:c9:14:ee:f4:
e1:4d:15:91:bf:56:f4:f4:39:b3:62:1a:b5:95:22:
7a:00:02:83:6f:c6:bd:47:1b:1a:b3:55:62:1b:51:
9a:13:4d:7c:d3:09:47:7d:da:08:e9:73:88:db:c1:
6b:96:85:f8:3c:7f:ad:ae:4b:fa:f1:df:c6:3c:0e:
4b:d2:b4:a0:77:a5:4f:f9:bf:4b:a8:81:49:3e:46:
88:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:B6:B9:AF:79:02:42:52:D0:CD:1A:08:4D:AF:39:75:15:60:80:FD
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/E7a5r3kCQlLQzRoITa85dRVggP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.143.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:65:ca:a5:93:f6:a5:fa:96:ad:a4:dc:95:73:23:d9:23:f2:
0c:87:6e:ce:67:f2:49:ba:b2:05:c1:80:b7:89:41:e9:d1:6c:
b2:f8:f5:91:48:f2:f0:88:11:56:d0:36:09:ae:31:8b:80:96:
b4:65:42:cf:c5:f7:aa:12:05:91:fa:b0:84:d1:62:9c:58:86:
45:a0:e7:44:4b:7f:b0:40:a4:3a:32:49:9f:a8:6a:4e:4e:3d:
99:a8:fa:c0:b2:48:b7:fe:42:37:a6:a2:4e:90:24:10:a0:03:
a2:fa:06:bf:59:a2:1a:9a:97:01:dd:ae:6d:59:4a:4d:4f:28:
2b:de:2d:35:94:5a:de:ba:b0:49:07:2f:b6:4f:bd:f6:19:0b:
c7:95:39:07:09:88:9a:ca:a3:64:78:f0:01:73:19:28:e3:f0:
de:88:c6:5e:78:db:4f:bd:73:f2:38:a0:ac:c8:b9:36:4e:bb:
bc:99:48:e8:f1:7a:1f:a0:66:95:54:95:6d:49:30:a6:56:7f:
40:83:ca:8f:9d:99:a9:94:c0:de:4c:b4:eb:24:09:25:15:24:
ac:d0:d4:de:8c:4c:b5:92:c4:3e:8f:a5:96:85:39:96:93:06:
96:37:3f:8f:ec:68:77:6e:44:88:c0:a8:cd:92:38:16:1a:f9:
be:cf:43:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:30 2023 by rpki-client on console-ams.rpki-client.org