Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/xee6sIYTNRnwvD7gj1U4YgFXIvY.roa
File: xee6sIYTNRnwvD7gj1U4YgFXIvY.roa (raw, json)
Hash identifier: E+yAw+UwfLf77Ijt7fktNAa78YT7RoR7zgAtEe0Pw1M=
Subject key identifier: C5:E7:BA:B0:86:13:35:19:F0:BC:3E:E0:8F:55:38:62:01:57:22:F6
Certificate issuer: /CN=73a1b76664717e2a4d2e5cf2bde3b9731907f8c2
Certificate serial: 14114D7C
Authority key identifier: 73:A1:B7:66:64:71:7E:2A:4D:2E:5C:F2:BD:E3:B9:73:19:07:F8:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c6G3ZmRxfipNLlzyveO5cxkH-MI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/xee6sIYTNRnwvD7gj1U4YgFXIvY.roa
Signing time: Sat 01 Jan 2022 13:05:34 +0000
ROA not before: Sat 01 Jan 2022 13:05:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29695
IP address blocks: 193.160.148.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 336678268 (0x14114d7c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73a1b76664717e2a4d2e5cf2bde3b9731907f8c2
Validity
Not Before: Jan 1 13:05:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5e7bab086133519f0bc3ee08f553862015722f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:7c:18:fd:20:3d:77:33:8b:2e:14:58:39:82:
3d:ca:6d:42:3f:26:5c:34:fd:71:65:cf:72:07:50:
c8:8c:7f:0b:cd:37:72:a2:0c:7d:07:db:4b:80:1b:
10:93:7d:3e:83:bd:b5:41:ac:ec:d1:87:5f:8b:3b:
cc:ec:97:85:e6:6b:69:d5:8f:c7:f1:dc:c0:af:d1:
4c:23:3b:89:d2:9c:4d:09:b0:c5:1f:80:58:6e:7c:
8d:7f:da:34:5a:a0:19:c5:94:59:2d:0c:42:d2:72:
47:60:40:00:ae:22:1c:fa:18:15:c1:e5:4e:77:e8:
0e:1a:a9:01:fa:30:1d:14:52:f4:31:0e:07:2f:a8:
29:45:5a:4a:ac:06:b8:de:37:dd:e1:61:be:8e:25:
d0:38:eb:0a:69:c4:45:89:4e:5d:1b:96:9e:db:d0:
c7:f0:4e:4e:14:dd:f6:86:c9:18:4b:fe:ed:61:64:
40:9f:03:bd:04:02:fd:b2:8e:cd:94:4c:68:0a:71:
66:e4:91:cc:ea:6a:21:c3:bf:a8:22:65:62:3e:9d:
83:c7:bc:76:55:d0:3c:82:b4:99:46:da:02:68:a5:
73:c9:0c:38:a0:76:21:12:20:66:2d:58:72:17:7b:
89:90:a4:f5:3e:a7:8f:d8:df:3d:fd:91:89:9d:ef:
44:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:E7:BA:B0:86:13:35:19:F0:BC:3E:E0:8F:55:38:62:01:57:22:F6
X509v3 Authority Key Identifier:
keyid:73:A1:B7:66:64:71:7E:2A:4D:2E:5C:F2:BD:E3:B9:73:19:07:F8:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6G3ZmRxfipNLlzyveO5cxkH-MI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/xee6sIYTNRnwvD7gj1U4YgFXIvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/3d2415-8133-40a0-9d8c-a6319ab179bf/1/c6G3ZmRxfipNLlzyveO5cxkH-MI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.148.0/22
Signature Algorithm: sha256WithRSAEncryption
23:ee:8d:a4:6e:3e:07:31:cf:14:32:4f:ab:3d:40:01:6e:d3:
31:f1:42:a8:8f:c2:3c:85:ee:2a:41:93:cf:55:9d:29:b7:bd:
b6:16:8e:2c:8c:89:72:ce:f9:46:87:76:f7:65:ba:44:d8:65:
ed:98:15:9e:6d:de:86:c4:f7:45:eb:3c:ec:47:d8:1c:27:48:
c3:9f:d7:f3:a5:47:a9:e6:62:10:8d:fa:91:b4:44:be:12:2f:
60:2c:74:95:51:46:8e:4d:1e:cb:c9:e0:88:0d:6e:16:71:08:
f9:73:b9:a7:f2:53:67:85:16:59:07:41:27:70:75:b4:31:a7:
4c:45:a5:96:d7:14:fa:3a:ef:03:7f:07:75:f0:a0:1f:f2:cf:
36:58:5d:7b:94:c9:b7:1f:aa:f8:20:c5:dd:df:96:1f:2e:85:
ae:bb:67:65:87:7f:13:fd:4e:92:60:bd:58:ff:6d:98:f5:ec:
d3:65:2c:50:cb:42:df:b5:71:84:ca:25:ee:48:20:a7:59:1c:
d7:e9:72:bd:3a:12:4b:58:6c:e5:8a:6e:0b:c8:d4:6f:57:82:
5b:3f:0f:ad:d9:31:cf:39:f1:d3:b0:56:75:52:73:03:12:e5:
af:79:8c:b0:bc:89:fd:8d:4d:71:3d:f9:c4:12:60:e1:63:9c:
60:d0:3b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:27 2024 by rpki-client on console-fra.rpki-client.org