Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/a5930a-7233-4ee9-9900-b14cc91c776c/1/P8G7qqPxN8UHkcR4_TGAPBlp6B0.roa
File: P8G7qqPxN8UHkcR4_TGAPBlp6B0.roa (raw, json)
Hash identifier: QWwJvGVI96ZqQN39NAeJC7UcesS3PN5bPeghuJgg+/M=
Subject key identifier: 3F:C1:BB:AA:A3:F1:37:C5:07:91:C4:78:FD:31:80:3C:19:69:E8:1D
Certificate issuer: /CN=270290f5f31f238df3e8f3bdfcc05751cc2f192c
Certificate serial: 0184C214EC75469273045C7873A6AB707FFB
Authority key identifier: 27:02:90:F5:F3:1F:23:8D:F3:E8:F3:BD:FC:C0:57:51:CC:2F:19:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JwKQ9fMfI43z6PO9_MBXUcwvGSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/a5930a-7233-4ee9-9900-b14cc91c776c/1/P8G7qqPxN8UHkcR4_TGAPBlp6B0.roa
Signing time: Tue 29 Nov 2022 06:31:01 +0000
ROA not before: Tue 29 Nov 2022 06:31:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199773
IP address blocks: 193.142.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c2:14:ec:75:46:92:73:04:5c:78:73:a6:ab:70:7f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=270290f5f31f238df3e8f3bdfcc05751cc2f192c
Validity
Not Before: Nov 29 06:31:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fc1bbaaa3f137c50791c478fd31803c1969e81d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4f:44:f7:be:b7:36:c2:2d:e8:db:f5:70:08:
d3:58:0b:90:d5:c8:f9:a4:ec:c1:37:d7:7f:b5:70:
9c:b9:2f:76:ec:a0:8a:0a:4e:a6:30:70:98:ca:92:
40:61:fe:bf:55:ff:37:26:a4:4d:00:fe:eb:3f:f6:
4c:bb:db:e8:4c:f8:17:82:89:e8:7e:06:07:ed:b0:
ec:3f:fd:32:c2:9a:c3:ca:4e:33:3c:3e:ff:dc:e5:
a1:35:9a:69:c7:ab:33:8b:89:14:f6:42:38:7d:84:
5c:2d:d8:74:86:90:d7:97:2a:dc:4b:73:a1:d9:6d:
f9:ae:67:75:13:ca:32:d6:7a:16:c0:97:76:43:e0:
f1:4d:dc:81:cf:bd:62:bf:f4:33:d3:94:48:6d:c9:
e6:68:b0:51:5e:cc:c7:55:a2:97:26:d0:81:87:96:
1f:96:31:f0:f2:1c:e9:51:76:ca:39:9b:59:62:bd:
4f:88:d4:8d:de:da:b2:85:c3:c8:ff:93:04:f3:86:
0a:6b:cb:be:33:b3:a4:f6:c0:5a:b2:ed:73:a2:df:
ff:a3:b3:05:63:79:aa:c4:ad:27:d5:22:b5:5a:74:
4c:f0:6d:63:70:89:f6:24:6a:6c:34:69:3b:03:e5:
b6:af:46:dc:bc:26:1a:ba:3e:46:16:2c:d2:98:f0:
c3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:C1:BB:AA:A3:F1:37:C5:07:91:C4:78:FD:31:80:3C:19:69:E8:1D
X509v3 Authority Key Identifier:
keyid:27:02:90:F5:F3:1F:23:8D:F3:E8:F3:BD:FC:C0:57:51:CC:2F:19:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JwKQ9fMfI43z6PO9_MBXUcwvGSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a5930a-7233-4ee9-9900-b14cc91c776c/1/P8G7qqPxN8UHkcR4_TGAPBlp6B0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/a5930a-7233-4ee9-9900-b14cc91c776c/1/JwKQ9fMfI43z6PO9_MBXUcwvGSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.142.211.0/24
Signature Algorithm: sha256WithRSAEncryption
12:6d:ed:ab:6a:69:2d:36:4b:95:c3:74:47:c1:1d:5d:e2:0a:
8e:5f:e8:e9:31:88:c6:aa:98:1d:89:ba:5c:ee:fc:83:e2:eb:
7c:2e:c6:03:24:b4:9f:f8:cc:eb:87:3f:e0:15:94:52:79:1b:
92:94:55:22:6a:74:e4:78:c1:06:64:08:8e:aa:4a:10:7f:5d:
65:4a:7c:bf:cd:5a:b2:d8:87:6e:02:d4:17:e8:cb:e4:60:ec:
05:cb:9d:04:70:0a:6d:e7:4b:ed:df:22:a7:15:42:15:4a:a0:
8e:75:9e:b2:67:f6:51:7a:ec:99:cf:1b:1d:68:b3:2e:a9:8d:
0d:96:e2:30:30:23:8d:2f:c2:79:8e:50:87:c8:f4:31:62:8c:
7e:26:bb:78:b4:e3:50:ab:6c:dc:1d:28:bb:6d:f4:43:b7:57:
d5:b8:29:3f:66:73:9b:03:e0:03:de:7b:a9:de:7c:a2:02:94:
19:fc:de:78:a4:c8:a0:49:3f:c4:ca:c4:ba:38:da:04:5b:89:
98:52:b3:3b:ce:73:3d:03:1b:e0:9f:b2:24:06:46:c1:37:ff:
a2:d5:72:7a:22:0e:e4:0b:4d:da:bf:20:69:57:ab:ff:b9:fc:
1a:4e:73:f6:5d:9e:df:e4:aa:6f:c4:17:8a:68:37:a2:13:87:
40:2f:e7:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:49 2023 by rpki-client on console.sobornost.net