Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/7lKbf3llf6RRZDIX8FxH1h_DQ8s.roa
File: 7lKbf3llf6RRZDIX8FxH1h_DQ8s.roa (raw, json)
Hash identifier: EJklQaG9OhLQFYuK0XPDWpTsNq7LfOuDkC2JKYNtzFo=
Subject key identifier: EE:52:9B:7F:79:65:7F:A4:51:64:32:17:F0:5C:47:D6:1F:C3:43:CB
Certificate issuer: /CN=e58069748748e9aebd7be40587d8140efde55b6b
Certificate serial: 08F4153F
Authority key identifier: E5:80:69:74:87:48:E9:AE:BD:7B:E4:05:87:D8:14:0E:FD:E5:5B:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YBpdIdI6a69e-QFh9gUDv3lW2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/7lKbf3llf6RRZDIX8FxH1h_DQ8s.roa
Signing time: Sat 01 Jan 2022 10:57:27 +0000
ROA not before: Sat 01 Jan 2022 10:57:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12843
IP address blocks: 193.47.152.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150213951 (0x8f4153f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e58069748748e9aebd7be40587d8140efde55b6b
Validity
Not Before: Jan 1 10:57:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee529b7f79657fa451643217f05c47d61fc343cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:15:f5:9b:e6:9b:89:60:e9:3e:70:37:6e:36:
92:0a:29:83:de:8f:bb:c1:ce:4c:5e:f1:94:18:b3:
c7:be:e2:92:b6:31:05:ae:47:16:a0:01:5d:fe:29:
27:f3:c8:85:14:54:9b:f0:21:22:ff:a8:85:07:94:
12:f3:6c:43:f0:ae:16:d3:cb:80:89:72:eb:05:2c:
62:a8:a5:fe:4c:2e:d5:37:43:0e:60:5f:59:5a:ad:
c7:d7:e9:6b:dc:5e:9b:3c:45:98:5f:97:7e:7d:7a:
cc:6f:57:ea:58:43:00:1c:51:5e:3d:b2:71:0f:ff:
0c:b2:20:7f:9a:af:2d:49:2c:18:1a:ae:b1:43:f2:
93:92:82:71:ce:46:f8:52:ac:06:ea:33:2d:af:db:
60:50:99:c3:5d:6d:8b:df:2f:b8:60:a2:13:4c:dc:
95:8c:c6:1c:52:53:b6:5a:b8:45:92:76:d9:c0:bb:
24:35:df:d8:75:bf:0e:68:ea:d3:3a:00:9c:2b:33:
37:35:f9:76:14:f2:cc:25:79:1e:cd:a9:bd:f9:94:
92:18:56:c3:2b:8d:b1:fa:91:ba:a8:dc:b2:20:e9:
08:64:c4:5e:ac:9a:93:83:48:cb:7c:70:69:cc:7f:
ea:0d:f4:ac:8f:27:45:bd:29:23:54:25:76:d9:66:
bf:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:52:9B:7F:79:65:7F:A4:51:64:32:17:F0:5C:47:D6:1F:C3:43:CB
X509v3 Authority Key Identifier:
keyid:E5:80:69:74:87:48:E9:AE:BD:7B:E4:05:87:D8:14:0E:FD:E5:5B:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YBpdIdI6a69e-QFh9gUDv3lW2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/7lKbf3llf6RRZDIX8FxH1h_DQ8s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/8efd80-7db3-4e52-ad76-0f896ebca4f8/1/5YBpdIdI6a69e-QFh9gUDv3lW2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.47.152.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:a2:76:aa:cb:ac:5f:5f:db:1b:7d:37:47:c6:8c:40:5e:38:
3e:66:d4:43:07:87:79:7c:6a:a2:c4:6b:cc:e7:fa:60:ba:4c:
db:b8:02:56:f5:da:fa:60:4d:f8:7e:ad:bb:c8:9e:a0:dc:4a:
c4:4a:e0:7c:c6:46:34:1f:ca:83:65:b2:b3:fd:fe:6b:6d:25:
f4:e1:27:2b:78:5a:75:27:e9:48:8b:91:e9:d2:96:2c:d0:8c:
b9:f9:81:dd:3b:2f:bf:50:84:68:e3:37:c9:a9:9d:eb:cd:09:
aa:99:77:32:fb:12:de:5d:8d:ab:00:31:1f:7a:9e:93:dc:07:
ca:ae:2e:05:c1:29:47:6b:79:24:d3:ba:84:28:c4:97:8d:19:
d6:69:0d:d7:5b:ac:16:08:a3:46:ec:64:22:b3:82:f4:b6:e6:
b5:c1:8e:86:7b:58:8a:bf:3f:f0:3b:7d:c7:6a:5d:13:5f:f4:
23:e4:0e:2e:66:d6:1b:81:2e:cb:71:0f:14:c4:dd:0c:3c:ca:
6c:d4:bf:e4:92:3e:6e:35:af:b5:07:f1:52:d7:4a:19:6e:0d:
87:fe:8a:66:34:e5:90:55:d5:9d:e5:83:3f:f1:41:a4:be:30:
ad:5a:3f:15:c1:8a:90:fd:51:24:ae:be:8d:ce:c3:7e:4f:ae:
5e:e0:5f:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:37 2023 by rpki-client on console-ams.rpki-client.org