Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/761bf5-037e-4807-88c0-feee86c6b600/1/De-IiAMDnvabIrrz9nzDBd-xdz8.roa
File: De-IiAMDnvabIrrz9nzDBd-xdz8.roa (raw, json)
Hash identifier: zRZIa0fQtVXfoCUelfw/PWZfsKbMhJ6Iek/q1oH9Qf4=
Subject key identifier: 0D:EF:88:88:03:03:9E:F6:9B:22:BA:F3:F6:7C:C3:05:DF:B1:77:3F
Certificate issuer: /CN=e938cd7ecf23ac1c4962546e1bcf5e083ad229a5
Certificate serial: 10906DE2
Authority key identifier: E9:38:CD:7E:CF:23:AC:1C:49:62:54:6E:1B:CF:5E:08:3A:D2:29:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6TjNfs8jrBxJYlRuG89eCDrSKaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/761bf5-037e-4807-88c0-feee86c6b600/1/De-IiAMDnvabIrrz9nzDBd-xdz8.roa
Signing time: Sat 01 Jan 2022 03:56:18 +0000
ROA not before: Sat 01 Jan 2022 03:56:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 193.22.64.0/20 maxlen: 20
193.22.71.0/24 maxlen: 24
193.22.74.0/23 maxlen: 23
193.22.76.0/24 maxlen: 24
193.22.72.0/23 maxlen: 23
193.22.78.0/24 maxlen: 24
193.22.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 277900770 (0x10906de2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e938cd7ecf23ac1c4962546e1bcf5e083ad229a5
Validity
Not Before: Jan 1 03:56:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0def888803039ef69b22baf3f67cc305dfb1773f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:1c:95:35:73:cb:f2:d8:da:d6:95:7d:5b:0d:
73:22:8a:a2:29:f1:58:63:8d:6e:2d:92:89:dd:96:
11:ba:49:19:c0:eb:2c:01:a7:1b:4c:e9:92:94:a7:
34:47:95:bf:7e:90:e3:10:b6:4b:3c:e7:70:d5:c1:
29:b5:74:e7:a1:e8:95:30:27:c2:05:12:fe:2b:ea:
8c:86:aa:4a:79:c4:f6:b3:89:d7:a3:23:0a:4e:81:
0c:67:28:b1:d9:c0:d0:a9:55:c9:4d:e4:3e:62:1a:
a9:57:97:df:a6:35:7b:89:a7:2a:64:89:13:e2:ab:
70:2a:c9:1d:7c:05:32:54:d1:93:7b:c4:2d:aa:ea:
0c:55:b8:d0:d4:ce:f8:fb:d4:6f:f6:d9:6e:2e:a3:
8c:3d:fb:0c:7e:74:ec:33:b2:31:a7:f5:2f:27:71:
c8:e8:c2:4a:73:48:2e:a5:62:80:a8:6a:92:17:ae:
ad:f9:a9:d0:51:a6:2c:96:b9:f7:44:57:8c:cb:9c:
00:ef:c3:43:40:a4:e6:0f:e6:3b:fe:19:03:b1:cc:
6c:a9:27:c2:e9:31:e0:3a:4a:04:8a:ad:2b:b6:0a:
bc:33:90:a7:c2:4f:e7:2a:3e:56:b6:22:03:47:fd:
a3:9e:8a:18:de:bb:99:0c:c2:e9:3c:b6:d6:82:03:
9f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:EF:88:88:03:03:9E:F6:9B:22:BA:F3:F6:7C:C3:05:DF:B1:77:3F
X509v3 Authority Key Identifier:
keyid:E9:38:CD:7E:CF:23:AC:1C:49:62:54:6E:1B:CF:5E:08:3A:D2:29:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6TjNfs8jrBxJYlRuG89eCDrSKaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/761bf5-037e-4807-88c0-feee86c6b600/1/De-IiAMDnvabIrrz9nzDBd-xdz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/761bf5-037e-4807-88c0-feee86c6b600/1/6TjNfs8jrBxJYlRuG89eCDrSKaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.64.0/20
Signature Algorithm: sha256WithRSAEncryption
3f:8a:79:fb:51:5e:e7:e5:2b:6f:d0:fa:8f:12:e8:95:a7:a6:
52:6d:e2:cf:33:be:13:35:2c:45:74:08:89:2d:2e:22:4a:55:
ea:7d:8d:90:e7:7a:e2:1f:e3:51:87:1a:54:7e:9a:39:f0:12:
b4:e5:37:da:67:cb:2c:9e:db:e0:12:be:ab:72:32:1b:b9:c3:
00:d7:e5:3d:57:83:a8:3d:55:48:b3:2d:39:3a:be:ae:ca:98:
0c:ac:ef:9b:de:3a:ec:c8:15:7e:32:7d:2d:67:16:c4:62:c4:
49:f9:bf:08:2d:4c:d5:1b:08:3b:6c:2e:64:2a:ec:84:e4:ce:
b6:50:5e:45:e9:ae:b3:eb:c0:7b:31:44:f1:86:bb:bd:03:a8:
28:a0:d3:21:09:99:8d:69:b1:1b:9c:95:a8:a5:ec:19:58:60:
8d:8a:28:a2:e3:34:23:0d:68:e1:65:b9:64:43:cc:92:d5:0b:
c6:c2:d7:43:ff:3d:28:d6:7b:55:91:74:bc:b3:21:f0:ff:b5:
d5:7a:81:cb:de:f4:9a:f1:08:20:af:50:0f:81:78:b0:34:96:
e4:60:13:f3:09:9c:ae:26:12:25:66:2d:cd:37:3b:cc:d9:ca:
03:56:a7:43:fb:f9:12:9a:95:c7:76:8b:1a:5f:f9:96:bc:69:
11:29:9f:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:45 2024 by rpki-client on console-fra.rpki-client.org