Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/dhowQu0oG8uJICK0C8RiLcVrv1c.roa
File: dhowQu0oG8uJICK0C8RiLcVrv1c.roa (raw, json)
Hash identifier: zYUdNPZj/5RUyLyxyUr3GFe8rArhwMGPBfv8Gt1LRN4=
Subject key identifier: 76:1A:30:42:ED:28:1B:CB:89:20:22:B4:0B:C4:62:2D:C5:6B:BF:57
Certificate issuer: /CN=70f2b41fd36614835e33fc0881db24638b3a787b
Certificate serial: 03A61910
Authority key identifier: 70:F2:B4:1F:D3:66:14:83:5E:33:FC:08:81:DB:24:63:8B:3A:78:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPK0H9NmFINeM_wIgdskY4s6eHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/dhowQu0oG8uJICK0C8RiLcVrv1c.roa
Signing time: Sat 01 Jan 2022 07:01:12 +0000
ROA not before: Sat 01 Jan 2022 07:01:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8793
IP address blocks: 193.109.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61217040 (0x3a61910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f2b41fd36614835e33fc0881db24638b3a787b
Validity
Not Before: Jan 1 07:01:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=761a3042ed281bcb892022b40bc4622dc56bbf57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:35:16:d0:4a:58:2f:0f:d9:c1:b8:bf:21:8b:
97:b1:d2:2b:be:8b:15:c4:4b:6c:b0:52:32:f1:60:
bc:77:a8:20:3e:89:e0:1c:69:a8:ff:59:c2:7a:6c:
f8:58:22:e0:43:95:b8:a0:4f:7a:a6:14:66:5c:1f:
b2:72:34:07:57:4f:27:a3:a5:ed:ef:ab:61:a4:9d:
19:5b:bd:c3:51:f9:17:fe:a7:d6:12:11:4c:6f:1a:
86:b4:66:6b:b2:41:da:27:4c:e7:26:6b:6f:a3:98:
cb:45:69:92:5d:07:91:fa:1b:35:bc:89:15:b4:88:
39:9a:e6:ec:9d:0c:7b:db:44:44:d8:d5:46:01:60:
13:87:80:13:9c:3a:91:26:5f:74:b4:cd:e4:b3:a3:
30:6f:e0:87:6d:22:d1:5b:5b:18:22:78:bc:0e:cb:
84:34:e6:b7:aa:dc:52:81:1e:bc:13:fc:01:ab:54:
3a:36:3a:b4:8d:4a:90:72:b7:8d:34:10:d3:ce:9a:
99:60:00:d3:86:28:82:b0:ab:a3:0f:25:9a:21:0c:
39:bc:5d:f7:ef:0a:52:26:e4:2f:a0:66:c0:a6:e6:
b4:af:05:fb:2b:d8:8a:7e:a0:4d:02:12:f8:1b:78:
e3:c4:4f:ff:3f:75:9a:83:10:2e:bd:43:c5:84:d3:
2f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:1A:30:42:ED:28:1B:CB:89:20:22:B4:0B:C4:62:2D:C5:6B:BF:57
X509v3 Authority Key Identifier:
keyid:70:F2:B4:1F:D3:66:14:83:5E:33:FC:08:81:DB:24:63:8B:3A:78:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPK0H9NmFINeM_wIgdskY4s6eHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/dhowQu0oG8uJICK0C8RiLcVrv1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/7766bb-bb48-49be-b21f-0a35b7ed63c7/1/cPK0H9NmFINeM_wIgdskY4s6eHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.222.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:a8:a9:99:1e:21:3a:0f:b4:89:7f:ca:8b:9e:40:24:55:4c:
fa:67:c4:f6:e9:0a:2b:d2:e1:d0:b6:ae:69:86:07:ee:b1:b0:
8f:ce:97:d8:fd:c6:79:5e:6f:f9:fa:60:dc:40:ee:0c:bc:c3:
98:c3:f9:c2:76:48:33:9d:d3:00:dc:34:14:72:12:09:84:76:
02:ca:99:e3:e9:33:40:4d:85:fd:ad:61:19:66:63:77:88:6a:
67:26:a5:41:14:52:4b:bb:fd:25:c7:ac:1c:97:40:79:09:3d:
09:6a:9d:f0:ca:6c:d7:12:89:ba:fb:0e:4e:5b:24:e7:4d:85:
4a:3c:31:93:49:0d:28:b2:3c:fd:90:16:7c:60:5e:39:39:eb:
38:78:51:aa:39:b9:fd:1b:45:91:72:18:84:47:38:94:99:5f:
3e:bf:cd:71:98:42:af:09:d0:d9:56:f3:6f:b5:04:37:b2:33:
40:9f:8c:8a:b7:77:49:89:d9:7e:a4:95:f5:02:61:17:b8:10:
34:ea:50:50:60:df:11:b0:f9:24:53:5d:a6:a7:08:0e:77:34:
49:17:28:54:23:3f:68:32:89:c1:cb:51:65:84:e8:80:db:10:
d4:e6:e3:0f:2a:76:b6:c1:88:4c:6d:26:03:64:f3:6e:72:1e:
20:72:87:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:48 2024 by rpki-client on console-ams.rpki-client.org