Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/2EJ--a0ZMfQg7744ED_nUt4hu24.roa
File: 2EJ--a0ZMfQg7744ED_nUt4hu24.roa (raw, json)
Hash identifier: KRhMVyVEcmIm3rShBzP3jRm1+HYb8M94a+KGfIsaPm0=
Subject key identifier: D8:42:7E:F9:AD:19:31:F4:20:EF:BE:38:10:3F:E7:52:DE:21:BB:6E
Certificate issuer: /CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Certificate serial: 08781A1E
Authority key identifier: 3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/2EJ--a0ZMfQg7744ED_nUt4hu24.roa
Signing time: Sat 01 Jan 2022 04:01:38 +0000
ROA not before: Sat 01 Jan 2022 04:01:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57249
IP address blocks: 193.22.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142088734 (0x8781a1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3d9944e8f5651b1bd2f0a9e006865f3a6b81eb61
Validity
Not Before: Jan 1 04:01:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d8427ef9ad1931f420efbe38103fe752de21bb6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1c:41:52:d5:20:a5:cb:a9:f3:10:5b:a3:93:
14:18:18:5b:ea:18:b6:e9:2b:f5:71:94:64:4d:cd:
fa:c9:a3:97:52:64:f4:39:9f:25:92:2f:c6:a6:96:
42:73:92:25:62:56:8b:17:78:7d:d4:b9:98:d2:be:
cb:ea:88:cc:a4:75:60:19:f6:77:c2:d2:b6:3c:5a:
2c:46:fa:35:9e:20:b9:f0:17:f7:97:17:3a:d6:a9:
7e:2e:54:ab:a7:c2:0a:96:7c:56:9f:42:01:dc:f2:
3f:e6:77:4b:f3:79:20:e2:5c:a3:95:d9:e8:10:c9:
9c:b2:67:6b:df:3e:b9:12:2d:ac:5e:28:c2:5c:15:
3a:29:6e:d2:a5:fd:a3:fd:a9:30:d0:38:dc:01:15:
67:28:6d:69:74:5a:c6:e9:15:14:14:07:1d:2d:ca:
3e:53:bc:24:91:31:f5:a8:8c:f0:3f:57:e9:dd:01:
b1:ff:92:ac:a3:4b:6a:82:2e:e7:69:63:79:4e:df:
25:c9:17:aa:c8:f4:b8:f8:a1:0c:79:8a:93:e3:30:
bc:2c:1b:20:2c:be:8c:b5:00:9d:2c:ec:b2:c7:08:
ba:ac:e2:b9:31:cd:86:fe:79:e2:55:47:c1:55:00:
5f:9d:7f:41:81:a1:59:de:10:bc:78:b3:f9:67:dc:
e2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:42:7E:F9:AD:19:31:F4:20:EF:BE:38:10:3F:E7:52:DE:21:BB:6E
X509v3 Authority Key Identifier:
keyid:3D:99:44:E8:F5:65:1B:1B:D2:F0:A9:E0:06:86:5F:3A:6B:81:EB:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PZlE6PVlGxvS8KngBoZfOmuB62E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/2EJ--a0ZMfQg7744ED_nUt4hu24.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/4bff72-ba5b-4528-8c42-7f6b9f1040fd/1/PZlE6PVlGxvS8KngBoZfOmuB62E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.81.0/24
Signature Algorithm: sha256WithRSAEncryption
13:75:4d:1d:9b:3d:5d:88:7c:cb:6f:01:ef:db:52:b7:bd:de:
af:1e:6e:4b:e4:c2:0f:fa:fb:ee:0c:1b:69:15:f9:22:90:f8:
bb:f9:16:31:f6:eb:12:b3:eb:25:1c:02:98:05:a0:79:60:7a:
00:25:75:86:5d:b6:58:f8:7e:1f:47:64:cb:55:fc:25:07:c2:
cc:58:98:0d:c9:02:46:0f:e6:54:fe:80:7b:af:e6:85:18:28:
80:85:0d:f7:91:fa:35:f2:c1:5c:35:cd:dc:c8:14:cb:7a:43:
da:23:9c:e1:a7:f3:1c:ed:d0:45:94:e4:20:9d:d0:ed:46:ae:
06:ed:08:21:7c:6e:69:77:46:e6:8b:cd:09:03:3f:f9:18:1b:
cb:06:d1:6c:4f:0f:fc:6a:95:d7:5a:60:4c:81:3b:fe:f3:eb:
38:5c:73:55:a5:f0:38:d3:93:82:fb:ab:6b:6c:d4:39:09:90:
82:78:7e:60:e5:77:fb:ae:fc:47:49:d4:4a:ba:a0:7b:4e:58:
65:6c:1a:89:22:f4:05:f1:4c:b5:96:6d:1e:b1:c1:e5:c4:2f:
fc:c5:eb:00:81:df:9d:2e:22:b0:2b:9d:4e:01:4c:d5:12:8b:
7f:d4:19:4a:8b:66:26:9d:f0:9e:43:5e:c9:64:ae:b9:11:39:
0b:bb:42:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org