Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/e5b520-8d4c-4cd8-a54c-681c4a5d5b74/1/_7xa7d1blfADIhAFe9RutzjVO4A.roa
File: _7xa7d1blfADIhAFe9RutzjVO4A.roa (raw, json)
Hash identifier: vWHNjYXgOa+U4AXfolbsk2+9wbYqM0Oatk0TKE89jJA=
Subject key identifier: FF:BC:5A:ED:DD:5B:95:F0:03:22:10:05:7B:D4:6E:B7:38:D5:3B:80
Certificate issuer: /CN=e8b6e8499ffe31e1f6d6780d03017e83473f2d3c
Certificate serial: 07230329
Authority key identifier: E8:B6:E8:49:9F:FE:31:E1:F6:D6:78:0D:03:01:7E:83:47:3F:2D:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6LboSZ_-MeH21ngNAwF-g0c_LTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/e5b520-8d4c-4cd8-a54c-681c4a5d5b74/1/_7xa7d1blfADIhAFe9RutzjVO4A.roa
Signing time: Sat 01 Jan 2022 03:55:26 +0000
ROA not before: Sat 01 Jan 2022 03:55:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48737
IP address blocks: 193.42.100.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119735081 (0x7230329)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8b6e8499ffe31e1f6d6780d03017e83473f2d3c
Validity
Not Before: Jan 1 03:55:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffbc5aeddd5b95f0032210057bd46eb738d53b80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:57:e3:6b:fb:c4:3b:4c:7c:c4:45:0c:64:a9:
06:4a:aa:25:01:28:b9:1c:46:59:09:2b:e0:a1:39:
86:eb:34:bb:9f:0f:53:ea:b0:8e:2f:1b:df:68:e7:
38:22:e0:ec:5f:26:2f:84:0e:1c:87:0a:df:3e:40:
9f:f1:c1:9b:52:11:33:e6:b4:9a:f6:21:20:fc:b2:
92:64:15:10:e0:12:6a:4a:58:a9:48:6a:f5:34:8a:
f5:e2:bd:aa:a7:8f:4d:58:60:a2:e5:6b:d3:c7:ec:
d2:5e:ea:fb:5a:74:85:80:de:11:01:c6:3c:78:1f:
aa:a1:b9:cb:82:7d:a4:f2:ba:9c:73:73:04:9f:61:
a6:d9:82:cd:dd:5e:28:c8:74:ec:ca:46:f5:a2:da:
1f:03:41:9a:b7:53:02:6e:49:10:40:b3:17:07:dc:
29:0d:66:44:05:47:d8:76:02:ef:06:3d:ba:e0:cf:
fc:d0:f0:8e:e1:5d:13:de:51:35:ef:01:b2:bf:e2:
b2:20:9c:1e:0f:bf:35:85:e5:6e:e6:7a:90:c1:a9:
90:73:2a:53:19:8f:51:ef:9a:46:e6:b5:46:92:2a:
76:3a:c4:f1:23:2b:79:0b:01:1d:a8:89:d8:be:a7:
61:ac:7d:72:bc:8a:78:78:13:d5:01:12:36:69:98:
e0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BC:5A:ED:DD:5B:95:F0:03:22:10:05:7B:D4:6E:B7:38:D5:3B:80
X509v3 Authority Key Identifier:
keyid:E8:B6:E8:49:9F:FE:31:E1:F6:D6:78:0D:03:01:7E:83:47:3F:2D:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6LboSZ_-MeH21ngNAwF-g0c_LTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/e5b520-8d4c-4cd8-a54c-681c4a5d5b74/1/_7xa7d1blfADIhAFe9RutzjVO4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/e5b520-8d4c-4cd8-a54c-681c4a5d5b74/1/6LboSZ_-MeH21ngNAwF-g0c_LTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.100.0/24
Signature Algorithm: sha256WithRSAEncryption
98:03:13:fe:4c:de:78:24:98:7e:b6:c1:46:e9:f8:f5:17:45:
0c:26:64:74:3b:8d:b7:a1:45:73:5c:57:fb:3b:5f:ea:b6:89:
d3:1f:bc:6b:0a:54:5d:af:eb:ed:95:36:cf:f6:ed:56:31:ca:
f9:76:21:4e:df:98:4b:dd:a3:c8:ff:a0:17:c1:34:9c:d1:70:
5b:67:1e:46:09:ea:e2:2c:9b:93:5d:02:39:83:ad:2f:9c:7e:
0d:14:93:b7:17:c6:97:dd:98:6f:27:d5:41:6f:ed:6c:18:df:
87:27:59:6d:ac:17:07:0d:23:5d:4d:8c:3a:c0:41:6c:e7:ce:
a8:05:ca:16:3d:a1:6a:4f:c7:52:80:c4:82:55:b1:4e:fb:75:
4f:51:17:44:93:92:97:52:88:3a:12:68:eb:f1:15:4b:7a:51:
86:5a:9f:78:82:87:83:13:63:4c:53:8e:f1:14:a1:cd:de:e1:
9e:f1:35:fd:82:46:ca:d4:26:c9:e3:58:41:9c:c1:b2:2e:be:
d9:0c:6a:b3:ab:f6:57:e1:7d:46:47:1a:3b:af:73:9d:93:46:
64:f2:93:d7:e5:5c:0e:bd:40:61:f1:ee:3c:c0:12:a6:eb:78:
74:94:65:f6:69:e2:84:17:9f:d5:9e:6a:71:f2:40:d3:57:c4:
9b:8c:c3:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:21 2023 by rpki-client on console.sobornost.net