Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/29b42b-566e-43e9-a2dc-f548699f947a/1/F8S8e_-q8p-mEES2C9MG8lJmA28.roa
File: F8S8e_-q8p-mEES2C9MG8lJmA28.roa (raw, json)
Hash identifier: SW/D/raEKzbEjb69hMxK5UvAbjYO9bFBmD2yP0ivkOY=
Subject key identifier: 17:C4:BC:7B:FF:AA:F2:9F:A6:10:44:B6:0B:D3:06:F2:52:66:03:6F
Certificate issuer: /CN=30a27580649a992e41e32cf8c12245e07ff9f9c5
Certificate serial: B1F6
Authority key identifier: 30:A2:75:80:64:9A:99:2E:41:E3:2C:F8:C1:22:45:E0:7F:F9:F9:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKJ1gGSamS5B4yz4wSJF4H_5-cU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/29b42b-566e-43e9-a2dc-f548699f947a/1/F8S8e_-q8p-mEES2C9MG8lJmA28.roa
Signing time: Tue 26 Apr 2022 15:25:19 +0000
ROA not before: Tue 26 Apr 2022 15:25:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3303
IP address blocks: 193.247.58.0/24 maxlen: 24
193.247.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45558 (0xb1f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a27580649a992e41e32cf8c12245e07ff9f9c5
Validity
Not Before: Apr 26 15:25:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17c4bc7bffaaf29fa61044b60bd306f25266036f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:91:bf:49:78:8f:09:b9:56:f2:05:6b:1c:32:
2a:8d:59:bd:e7:e0:07:69:1b:5c:60:35:58:e6:32:
37:10:0d:0d:45:8f:2c:a2:ec:6d:46:05:ab:e5:81:
82:11:85:33:45:c4:d2:7d:65:3f:79:1d:72:be:d9:
ff:9a:fa:4b:fd:8a:d4:82:af:39:52:f8:c3:5c:1c:
1d:e1:13:ce:80:79:85:62:15:62:0b:08:b0:92:dc:
8e:2d:7d:f6:aa:c9:c4:11:b1:6b:f3:1d:d1:a5:b3:
40:97:90:f6:38:8e:3a:4b:df:fb:e9:82:de:d9:58:
85:74:e5:4a:1c:90:76:ca:e4:ad:c2:26:4d:69:d9:
7e:5c:c1:bf:31:25:e3:49:7d:ea:6f:4e:1f:64:32:
72:78:ac:7e:42:20:d0:88:fc:45:d7:ae:0d:8f:5c:
3c:59:0b:5c:18:cc:a2:08:0a:a6:d3:a8:cb:fd:1b:
f1:0b:5b:54:84:7a:2d:21:d3:3e:d5:f5:5b:e0:59:
c7:93:c8:43:47:6e:c1:d5:d9:3c:fe:24:2e:61:c3:
6c:1e:7e:0c:ae:f1:48:9c:04:9e:62:51:a5:6e:53:
36:5a:65:0e:ed:56:5e:c7:d0:0e:c0:08:81:d0:9c:
79:65:75:a5:4f:9a:6a:b3:fc:bf:b9:cb:a7:01:27:
ac:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C4:BC:7B:FF:AA:F2:9F:A6:10:44:B6:0B:D3:06:F2:52:66:03:6F
X509v3 Authority Key Identifier:
keyid:30:A2:75:80:64:9A:99:2E:41:E3:2C:F8:C1:22:45:E0:7F:F9:F9:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKJ1gGSamS5B4yz4wSJF4H_5-cU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/29b42b-566e-43e9-a2dc-f548699f947a/1/F8S8e_-q8p-mEES2C9MG8lJmA28.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/29b42b-566e-43e9-a2dc-f548699f947a/1/MKJ1gGSamS5B4yz4wSJF4H_5-cU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.58.0/24
193.247.60.0/23
Signature Algorithm: sha256WithRSAEncryption
04:dc:2e:81:84:bd:a0:17:a7:42:7a:28:98:f2:a2:60:4c:ca:
16:fb:a7:38:96:ef:a1:dc:07:61:7d:76:a6:30:63:4f:27:e5:
77:bb:e8:dd:d4:a7:28:f4:e8:60:0e:eb:8e:ad:28:1c:f2:ca:
2d:55:22:2d:54:e3:c6:1f:ae:60:05:65:2a:3c:d3:5f:7f:c2:
13:08:d7:c2:17:69:54:b5:0b:43:24:78:6a:56:ba:71:82:95:
00:67:e5:11:92:ce:e0:fb:30:cb:b9:e9:5f:49:29:13:2b:5a:
0f:0f:4c:a3:26:c5:c8:18:77:23:b5:69:66:7d:9a:03:4f:7b:
e1:3f:bc:18:74:a8:ac:1d:a2:d9:dd:15:64:a1:32:2e:92:d1:
3a:a0:32:fa:0c:8c:bf:44:9f:92:eb:95:3c:30:ba:21:ec:7f:
39:7f:6b:dd:35:d5:ba:8d:1a:a0:e0:a6:9b:b2:fd:3e:31:7c:
d9:0b:ed:7f:f7:31:a9:2c:fb:a1:44:88:1a:64:bc:ba:f6:2f:
a3:8f:d0:d1:e1:eb:45:a8:e4:9d:1b:ec:83:6c:5d:24:d9:38:
5c:b5:d4:37:2b:6d:8a:5a:3c:53:27:c7:1f:fe:93:6b:af:bc:
d6:80:43:5a:dc:7e:d8:b2:18:88:c2:bd:28:82:ef:68:3b:07:
ed:be:b4:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:29 2024 by rpki-client on console-fra.rpki-client.org