Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/kWnpNqlBk6fD11qT_dQ4Bi0fpyw.roa
File: kWnpNqlBk6fD11qT_dQ4Bi0fpyw.roa (raw, json)
Hash identifier: T7CULk4Yc9C0uv5ZPPdkIPrtzVe1P6pSe2rvVyHJPJA=
Subject key identifier: 91:69:E9:36:A9:41:93:A7:C3:D7:5A:93:FD:D4:38:06:2D:1F:A7:2C
Certificate issuer: /CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Certificate serial: 07FC5437
Authority key identifier: 9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/kWnpNqlBk6fD11qT_dQ4Bi0fpyw.roa
Signing time: Sat 01 Jan 2022 16:01:35 +0000
ROA not before: Sat 01 Jan 2022 16:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43396
IP address blocks: 193.143.119.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133977143 (0x7fc5437)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a526a73ce8f9f62c14a11a2ea913ec273d58c46
Validity
Not Before: Jan 1 16:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9169e936a94193a7c3d75a93fdd438062d1fa72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b2:c7:ea:2c:2a:5b:5c:b3:48:f8:aa:c6:05:
76:59:59:47:e8:f7:ce:6b:c4:3b:d2:47:a5:ca:82:
13:51:e8:ba:79:d1:85:07:d7:43:38:97:18:b0:f9:
33:08:31:57:80:a2:de:3a:8d:44:6f:ab:b5:de:43:
88:0f:19:f7:3c:4e:80:9b:36:f2:70:4e:30:36:ad:
a3:e2:53:25:13:ce:0b:6f:1b:98:ca:3f:b3:04:19:
aa:7b:df:29:5a:d4:f7:c7:a6:89:d3:b9:21:1d:80:
db:d5:60:e9:38:57:04:5b:b9:fe:36:61:29:87:8e:
23:d3:98:88:13:50:58:5c:f3:e4:6b:87:85:a6:e1:
b3:04:10:26:72:e2:7a:8c:31:86:fd:4e:93:aa:f8:
4c:6d:f4:6e:18:25:a3:d1:c3:9a:6c:6c:81:e6:9f:
45:04:c3:5b:3d:32:4b:08:c2:b6:91:37:0e:d1:71:
fa:e6:bb:a4:b2:52:df:3b:fc:2e:ae:33:d5:61:51:
69:41:ef:64:40:b5:28:3a:66:b1:16:19:3d:a0:d2:
fd:d0:c7:6f:e4:be:3b:7f:3e:e7:5e:16:33:e3:ac:
b8:de:31:b4:09:cc:86:a8:7d:fb:20:0d:b8:31:11:
fa:57:fc:52:96:00:6f:50:be:1a:1f:ca:be:83:25:
9b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:69:E9:36:A9:41:93:A7:C3:D7:5A:93:FD:D4:38:06:2D:1F:A7:2C
X509v3 Authority Key Identifier:
keyid:9A:52:6A:73:CE:8F:9F:62:C1:4A:11:A2:EA:91:3E:C2:73:D5:8C:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mlJqc86Pn2LBShGi6pE-wnPVjEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/kWnpNqlBk6fD11qT_dQ4Bi0fpyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6fcdca-d121-4391-9cfc-7d16b90dbe72/1/mlJqc86Pn2LBShGi6pE-wnPVjEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.143.119.0/24
Signature Algorithm: sha256WithRSAEncryption
14:df:af:10:d2:67:00:27:bd:aa:61:86:17:49:52:a6:95:57:
c1:0b:05:9b:74:48:b1:1b:e8:8a:c6:1c:bd:f7:0a:5d:f2:46:
ca:8f:fe:d5:2c:b4:6a:0b:f9:da:3f:4b:09:45:3a:c7:55:e2:
9a:6e:14:98:1e:3a:ea:18:af:31:ef:2e:ff:d3:a1:fb:81:84:
b9:01:ab:43:ad:3a:3b:e8:58:fe:90:35:8c:7a:5b:d4:b4:58:
fb:af:25:de:e4:ff:c6:2c:ce:45:5d:5c:de:bd:61:ad:d5:07:
00:31:fe:6d:2a:8f:a0:ae:d2:62:27:bb:af:bd:51:63:11:e5:
6d:02:9c:9b:1d:af:e9:16:1b:2f:31:ad:e0:e7:b1:64:80:8a:
f5:ee:6d:62:e4:a4:28:ed:6c:f1:05:3b:fa:3c:c5:56:4a:80:
1d:b6:80:b0:7f:f9:3b:53:d6:93:3c:63:0a:f0:99:26:95:92:
a1:26:07:c8:ec:0a:5b:06:b1:08:9c:16:30:96:b4:57:de:2c:
ff:90:3d:18:6b:a2:e4:e1:12:64:9f:fd:22:6a:73:af:dd:dc:
9c:7a:3b:83:c6:cd:fd:72:a5:cd:34:96:b5:73:fd:8b:67:d4:
15:75:d6:fa:e3:ed:62:82:aa:21:78:d9:98:e5:9a:7a:ed:0d:
e6:22:a0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:30 2023 by rpki-client on console.sobornost.net