Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/aKgoX_AaMPeI-cHz9P3Fy8CMeYM.roa
File: aKgoX_AaMPeI-cHz9P3Fy8CMeYM.roa (raw, json)
Hash identifier: ZhaSZCiV2QKknZiSJVd5N/SBqkymq4ZAJ9iMCr+5wbc=
Subject key identifier: 68:A8:28:5F:F0:1A:30:F7:88:F9:C1:F3:F4:FD:C5:CB:C0:8C:79:83
Certificate issuer: /CN=a590ef23b456c9db20d30742932b017fc5724e56
Certificate serial: 7205
Authority key identifier: A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/aKgoX_AaMPeI-cHz9P3Fy8CMeYM.roa
Signing time: Tue 15 Feb 2022 09:41:00 +0000
ROA not before: Tue 15 Feb 2022 09:41:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43804
IP address blocks: 193.200.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29189 (0x7205)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a590ef23b456c9db20d30742932b017fc5724e56
Validity
Not Before: Feb 15 09:41:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=68a8285ff01a30f788f9c1f3f4fdc5cbc08c7983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7a:5a:1f:5b:7c:1a:22:b9:8d:ad:bf:f4:ab:
fe:08:a5:ba:35:71:df:43:39:14:57:6e:c8:29:15:
3e:ec:21:15:d9:37:f2:33:86:fd:e5:1d:58:3f:c6:
51:4d:da:f9:db:63:6d:46:5e:a6:eb:bf:81:22:e3:
f6:4f:3d:37:e6:ca:9b:33:62:46:86:35:07:25:7b:
bf:81:f0:40:82:9f:13:84:f1:39:d6:b9:b0:c3:b1:
99:56:3b:bd:20:6a:51:5f:70:bb:2d:f3:66:b7:7d:
67:91:c8:ae:bb:44:f9:70:a1:f8:a8:f6:50:bc:35:
21:70:e4:41:b5:e2:98:14:c5:30:c4:d5:6e:5b:86:
a9:be:12:1f:f5:49:68:41:b8:fb:93:bd:cb:6f:98:
2e:20:34:8a:ba:cc:78:b7:c2:8e:97:7f:a3:cb:a2:
b5:b5:d1:6a:64:68:e2:39:9e:49:88:9a:6a:9f:6d:
e1:d7:d6:b2:e4:46:2c:a8:05:1e:46:60:fb:f7:d8:
b4:3d:20:45:4a:f1:2e:d6:e1:27:3f:1e:7e:6e:9a:
57:b8:dc:40:d6:68:82:e3:6f:4e:cb:04:e2:08:eb:
23:8e:a6:5e:40:35:df:ce:77:30:a0:2e:69:88:59:
62:22:a1:38:6f:e9:c3:90:35:b5:c4:41:6c:0f:55:
2f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:A8:28:5F:F0:1A:30:F7:88:F9:C1:F3:F4:FD:C5:CB:C0:8C:79:83
X509v3 Authority Key Identifier:
keyid:A5:90:EF:23:B4:56:C9:DB:20:D3:07:42:93:2B:01:7F:C5:72:4E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pZDvI7RWydsg0wdCkysBf8VyTlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/aKgoX_AaMPeI-cHz9P3Fy8CMeYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3185c4-d724-435d-8277-152d204ebfa3/1/pZDvI7RWydsg0wdCkysBf8VyTlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.203.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:a3:00:2a:a5:13:cb:e4:1f:d6:17:08:13:fb:90:bd:e8:6e:
cc:7c:5f:d7:52:67:b4:5b:a5:80:1f:69:5e:ec:fb:49:55:8e:
a5:2a:93:82:10:ca:59:a2:ba:69:38:c0:67:aa:14:b9:e6:ae:
13:99:b5:29:79:a5:90:c8:9a:8a:1b:bc:97:9a:a6:cd:a5:68:
28:ac:ee:b4:e8:3e:b4:1b:48:4f:64:9a:5f:71:f5:88:b8:c8:
04:e9:c2:28:98:d5:6d:1f:57:87:88:94:51:08:cb:d0:50:01:
8a:b1:98:3d:ba:a2:0e:e4:e0:05:31:56:69:5c:83:39:56:07:
03:50:5f:64:a8:35:22:b4:cc:67:59:20:72:17:6a:a8:36:1f:
d1:66:2a:b1:4c:8c:be:59:db:7f:9a:5d:0f:f3:04:17:3e:41:
dc:5e:91:65:64:1b:7b:e5:06:af:e8:c9:c2:63:5e:81:f5:29:
7f:f5:8f:3d:fd:d9:7b:58:83:1c:09:de:ba:0f:d8:6a:f1:85:
85:02:54:01:75:7a:8f:8c:8e:01:7f:29:33:56:31:bf:25:c8:
5a:0a:69:b2:e0:44:6b:ff:c0:9b:2d:67:c0:7a:98:52:2f:73:
1b:e8:3e:50:8c:10:1b:a0:8d:01:4a:a3:89:f5:f9:b8:5f:93:
77:7b:42:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:46 2023 by rpki-client on console.sobornost.net