Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/kak0SD3koeiW9RtGfPrluho5p8o.roa
File: kak0SD3koeiW9RtGfPrluho5p8o.roa (raw, json)
Hash identifier: aFXpUXgX0G9++Ak2woS9+Kyr230rfTT8p4jqzKUbdzo=
Subject key identifier: 91:A9:34:48:3D:E4:A1:E8:96:F5:1B:46:7C:FA:E5:BA:1A:39:A7:CA
Certificate issuer: /CN=44fc887c977393575de6257e75fa99cde2037c6c
Certificate serial: 07CCE3AE
Authority key identifier: 44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/kak0SD3koeiW9RtGfPrluho5p8o.roa
Signing time: Fri 25 Feb 2022 07:34:05 +0000
ROA not before: Fri 25 Feb 2022 07:34:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33696
IP address blocks: 193.43.142.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130868142 (0x7cce3ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44fc887c977393575de6257e75fa99cde2037c6c
Validity
Not Before: Feb 25 07:34:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91a934483de4a1e896f51b467cfae5ba1a39a7ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:ee:60:b8:90:91:9a:43:81:74:25:3b:af:47:
9f:51:48:72:c9:e3:24:f9:b6:9b:96:5f:a7:28:3b:
12:43:ab:2b:02:f6:69:21:e9:2e:fa:9b:78:af:ac:
af:53:50:00:83:fe:ec:f9:7a:63:b9:14:64:79:d9:
8b:9f:ec:d0:25:44:55:22:34:8e:30:37:07:f0:71:
47:b1:44:93:37:ed:a6:cc:da:50:41:c6:a7:05:84:
6a:d8:56:22:db:66:f2:75:2f:1d:99:a4:a6:2c:45:
2a:1e:d6:cd:ad:91:93:5b:50:97:35:15:a1:9b:73:
c9:b4:78:be:a6:44:97:04:6d:f5:64:15:e2:08:74:
13:19:3d:23:2e:fc:0c:73:f6:15:da:8b:b0:27:37:
0e:ce:4d:f6:f7:e7:19:54:be:80:a1:68:51:b3:40:
0b:08:e3:7a:69:18:6d:5a:41:a6:a5:27:65:9f:4f:
e4:f8:7f:21:ae:4e:4b:54:c4:5d:76:7c:5c:8a:53:
9a:4c:d1:c5:b3:f1:9f:3d:9c:8f:6e:1f:eb:46:a0:
db:fa:21:64:a6:f0:f3:3f:10:4c:07:4e:99:2b:6b:
e2:9f:b4:66:24:f2:0a:8d:12:75:2a:cf:69:c5:b1:
4b:45:0f:f2:0e:14:4a:53:87:cf:36:93:70:ed:1d:
fd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A9:34:48:3D:E4:A1:E8:96:F5:1B:46:7C:FA:E5:BA:1A:39:A7:CA
X509v3 Authority Key Identifier:
keyid:44:FC:88:7C:97:73:93:57:5D:E6:25:7E:75:FA:99:CD:E2:03:7C:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RPyIfJdzk1dd5iV-dfqZzeIDfGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/kak0SD3koeiW9RtGfPrluho5p8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/f07c66-473d-435a-b693-c369c1d4c337/1/RPyIfJdzk1dd5iV-dfqZzeIDfGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.142.0/24
Signature Algorithm: sha256WithRSAEncryption
83:26:7a:a3:d3:13:b0:cd:c5:22:d4:12:ff:7d:c9:f1:9c:75:
17:5d:eb:ce:69:88:c1:60:c7:fd:a9:d3:ac:64:87:97:cc:cd:
4b:eb:ad:f1:ab:f6:02:25:ea:b0:fd:33:82:6a:1e:7c:b0:c5:
c6:10:d1:82:67:b0:05:a3:3d:c5:f2:00:a6:be:7d:12:17:48:
79:61:7e:93:34:fe:c0:59:63:36:e3:5a:46:b4:95:b8:2a:20:
1d:a2:4b:7e:b7:09:97:96:4b:45:ec:1d:c9:75:32:ba:8c:d3:
08:35:5e:a9:2f:03:6b:f6:87:2c:ee:34:d7:0a:61:e7:c1:0c:
dc:fe:22:ec:f4:7c:31:9d:56:ec:7e:aa:37:29:18:2e:4e:d2:
b7:b8:65:ef:c2:f2:af:1b:31:11:c8:36:8c:92:bd:47:a5:03:
21:6c:98:f7:1d:50:19:81:08:ee:97:9b:39:31:8b:5d:e3:48:
0c:21:8b:2d:36:47:4c:f6:7c:ab:6f:10:bc:d0:ba:96:36:02:
1b:56:03:ad:cc:e3:10:ef:ed:88:20:b4:ee:00:95:02:05:ec:
8e:a1:13:23:20:1d:e3:b1:eb:0c:80:cd:e7:91:ae:4d:24:17:
a6:cd:6f:80:71:43:cb:16:33:c4:bc:2d:5e:96:bc:d0:1b:73:
2f:62:d3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:30 2023 by rpki-client on console-ams.rpki-client.org