Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/shsu_OF_Zgi3dxCjHp5NiZehV8I.roa
File: shsu_OF_Zgi3dxCjHp5NiZehV8I.roa (raw, json)
Hash identifier: y0U34dkppU22ZT6BTTbvHmiZdpXgc1UTXNOXzVpWADE=
Subject key identifier: B2:1B:2E:FC:E1:7F:66:08:B7:77:10:A3:1E:9E:4D:89:97:A1:57:C2
Certificate issuer: /CN=7d25be70406d381e725d3e2bef12f6a8f3dd8257
Certificate serial: 01FF579D
Authority key identifier: 7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fSW-cEBtOB5yXT4r7xL2qPPdglc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/shsu_OF_Zgi3dxCjHp5NiZehV8I.roa
Signing time: Sat 01 Jan 2022 10:54:51 +0000
ROA not before: Sat 01 Jan 2022 10:54:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50293
IP address blocks: 193.39.195.0/24 maxlen: 24
2a10:e440::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33511325 (0x1ff579d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d25be70406d381e725d3e2bef12f6a8f3dd8257
Validity
Not Before: Jan 1 10:54:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b21b2efce17f6608b77710a31e9e4d8997a157c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4c:d4:ed:9e:83:12:5b:40:25:64:5f:65:b1:
2d:25:a9:be:78:b1:9e:cb:33:b5:39:73:7e:f0:7a:
a0:3e:17:da:26:cb:07:fe:db:eb:0a:df:73:7a:d7:
f5:ca:76:0e:27:2e:5f:d6:0a:88:ea:f5:e4:73:c0:
7c:f6:9d:36:66:b9:e5:36:21:38:23:78:44:77:ef:
33:e5:e5:da:31:fc:b0:15:ce:11:6b:9b:7a:62:e4:
d5:cf:e9:79:52:b3:8d:d5:13:bb:69:0e:ff:5c:e7:
f9:85:88:25:af:8e:04:05:17:2d:92:a4:13:ef:f8:
e0:27:70:ef:06:3f:c1:3e:9d:e1:64:be:61:6f:e8:
85:aa:4f:b6:15:d5:2c:53:02:28:99:1b:69:9c:44:
19:2a:c0:34:fb:62:36:78:e9:11:e4:3e:b9:14:02:
1f:9d:bb:7d:9b:35:a7:00:44:8a:6a:ab:9f:85:e0:
f6:cd:38:e4:f9:bc:e1:a7:d8:c6:d9:72:a9:19:a2:
67:3e:18:c7:41:53:5c:78:ce:ae:45:c9:76:13:cf:
1f:4d:59:f1:8e:d8:c9:c7:25:30:a3:28:b4:61:3d:
e9:05:f4:bb:45:5d:86:27:97:35:16:fe:a9:52:4c:
c4:02:d4:c4:6c:a2:4d:bb:7b:be:90:96:c3:ba:8b:
f4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1B:2E:FC:E1:7F:66:08:B7:77:10:A3:1E:9E:4D:89:97:A1:57:C2
X509v3 Authority Key Identifier:
keyid:7D:25:BE:70:40:6D:38:1E:72:5D:3E:2B:EF:12:F6:A8:F3:DD:82:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fSW-cEBtOB5yXT4r7xL2qPPdglc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/shsu_OF_Zgi3dxCjHp5NiZehV8I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/6a301c-8532-46f0-a33e-eb65f1f46e0b/1/fSW-cEBtOB5yXT4r7xL2qPPdglc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.39.195.0/24
IPv6:
2a10:e440::/32
Signature Algorithm: sha256WithRSAEncryption
a3:d3:42:41:04:ff:52:21:db:6e:7d:4b:ab:64:84:27:9c:92:
b6:fc:85:a4:ae:7e:46:de:19:56:34:dd:82:fb:d4:91:48:a1:
92:db:db:c1:38:03:91:20:38:9d:05:b8:5e:4e:16:11:83:21:
d7:84:0d:01:b2:e6:62:0b:34:c0:f5:4d:38:69:ae:c7:a3:52:
d3:95:00:61:bb:ed:e3:25:80:90:6a:6f:3b:c0:0e:39:d7:fd:
1b:11:09:f6:82:1d:49:7c:54:49:11:a3:04:7d:8e:56:ac:b5:
f7:b0:04:ef:49:eb:c1:db:da:0e:a2:28:3f:90:ef:87:ee:0a:
d5:a2:52:ed:21:3e:3e:61:6a:93:fb:61:8c:9c:2e:ed:ac:32:
bf:89:3b:19:fe:8a:1f:1e:f3:99:50:80:9e:15:82:9b:b8:e6:
94:33:5c:ef:6b:7a:f7:b3:50:83:7c:e1:4e:0f:ca:cc:97:34:
35:78:f4:cc:68:69:0e:91:a9:8f:18:cf:75:48:1d:d0:20:a2:
45:77:b3:18:5a:1c:ea:48:ac:6d:81:34:74:9f:3b:48:53:6f:
0c:4c:1b:49:79:35:da:55:ff:7e:70:87:de:8a:3f:2b:f2:d5:
ab:57:b6:f7:bd:7b:ab:42:cb:79:7c:2f:7f:17:b6:29:c5:52:
a1:b8:4a:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:41 2024 by rpki-client on console-ams.rpki-client.org