Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/DEgevJ0QxMjxZjhYzdAORlI1Zng.roa
File: DEgevJ0QxMjxZjhYzdAORlI1Zng.roa (raw, json)
Hash identifier: sg/HNjHIL4PqRcibEJPlTFSKsvdOu2uPPL4kRbcoISk=
Subject key identifier: 0C:48:1E:BC:9D:10:C4:C8:F1:66:38:58:CD:D0:0E:46:52:35:66:78
Certificate issuer: /CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Certificate serial: 0574B29F
Authority key identifier: B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/DEgevJ0QxMjxZjhYzdAORlI1Zng.roa
Signing time: Sat 01 Jan 2022 00:50:40 +0000
ROA not before: Sat 01 Jan 2022 00:50:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25091
IP address blocks: 192.162.204.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91533983 (0x574b29f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b215cd8e6db35441984d9c7dfc9afb653e55dff1
Validity
Not Before: Jan 1 00:50:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c481ebc9d10c4c8f1663858cdd00e4652356678
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:8d:0b:7e:9e:ed:b7:05:9d:8d:43:71:9e:02:
9b:c7:6c:a2:5d:82:e1:04:f1:39:ac:e3:b5:3a:23:
6c:6a:87:11:a1:ca:4a:b8:b1:4e:1b:8e:8d:1d:bf:
57:c6:7e:dc:99:76:d2:91:56:4e:1d:b5:96:ab:07:
cf:10:4f:5c:f3:cf:3b:45:5a:04:61:44:47:bb:da:
b0:66:55:1c:e3:7d:d3:da:bd:66:40:68:31:21:44:
5f:d5:94:77:08:6a:f6:d7:d1:f3:0a:c0:fe:e1:b3:
dc:68:fb:07:ec:c5:45:63:ed:eb:2b:6a:94:e3:36:
82:a0:48:04:e4:58:75:c6:ce:59:c8:ac:50:f0:7b:
c7:b4:28:20:95:26:28:be:3d:e9:6e:f2:00:15:a9:
0a:94:67:a3:22:54:91:f7:8b:b8:c6:60:55:0e:dd:
f1:4a:52:9d:e4:45:e3:e0:67:cb:66:4c:5b:3e:cb:
88:38:91:f0:10:52:3d:69:d6:de:41:40:be:6e:f7:
70:25:91:bd:3d:9b:12:14:22:d7:14:39:34:24:5b:
9a:53:b2:9d:f6:95:6e:95:16:70:b7:fb:88:c8:1a:
a8:dd:2c:62:43:f2:90:fb:ed:2a:80:c6:12:d2:7f:
81:82:e7:70:e8:9d:aa:56:4f:cb:aa:f4:63:81:5b:
08:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:48:1E:BC:9D:10:C4:C8:F1:66:38:58:CD:D0:0E:46:52:35:66:78
X509v3 Authority Key Identifier:
keyid:B2:15:CD:8E:6D:B3:54:41:98:4D:9C:7D:FC:9A:FB:65:3E:55:DF:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/DEgevJ0QxMjxZjhYzdAORlI1Zng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/38b792-18fb-4bed-990c-e950d87f8e25/1/shXNjm2zVEGYTZx9_Jr7ZT5V3_E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.162.204.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:ff:de:45:0f:0f:69:ac:b3:b4:4b:bc:d9:83:99:21:5d:0e:
c2:ee:0a:35:45:6c:30:b3:9e:38:1c:55:c2:fb:3c:92:e4:6f:
18:e6:4b:02:04:3d:f3:43:4c:49:63:ef:f9:08:97:3f:0b:80:
c9:07:39:a9:e2:1f:32:87:a2:04:a3:25:b0:c9:af:43:26:26:
d0:45:96:aa:89:2f:ea:ba:e9:54:ed:43:9c:6e:a1:c8:8b:cd:
4d:c3:f6:5c:af:77:bf:31:02:6d:3a:6f:a0:1a:5d:28:3b:05:
83:30:f9:10:fc:a8:d0:d6:2b:e4:e9:bb:96:8b:5a:ce:58:ab:
55:fd:c8:1c:49:0c:68:92:07:91:aa:87:ae:c2:22:61:95:77:
6f:90:74:a7:c3:3d:66:75:e5:49:42:4c:6a:1d:85:ba:3e:d5:
54:20:08:92:1a:af:fe:90:4a:04:dc:5a:26:91:04:b1:68:24:
46:cd:5e:61:83:e6:60:f8:62:b8:dd:c7:93:fa:39:18:0c:71:
c4:42:44:15:1e:67:73:57:bb:14:b9:50:b0:b5:e4:08:c7:e1:
5c:0c:87:2a:f9:a3:46:46:2c:5b:67:f8:a4:5d:ac:03:55:b5:
3a:80:97:15:d1:c4:02:5e:00:1c:f0:c7:86:03:17:1c:61:8b:
41:b5:ee:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:32 2024 by rpki-client on console-ams.rpki-client.org