Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/Sn2kXKJuaNUjjj2iu-CBiWyz-9I.roa
File: Sn2kXKJuaNUjjj2iu-CBiWyz-9I.roa (raw, json)
Hash identifier: Pq367uKF0zuSKbBF2BtymMwrLZlW8jKzDj9VWYbWL0g=
Subject key identifier: 4A:7D:A4:5C:A2:6E:68:D5:23:8E:3D:A2:BB:E0:81:89:6C:B3:FB:D2
Certificate issuer: /CN=29a03997b28f59b08031c898407dd5e5137dddb1
Certificate serial: 038079EC
Authority key identifier: 29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/Sn2kXKJuaNUjjj2iu-CBiWyz-9I.roa
Signing time: Sat 01 Jan 2022 13:01:32 +0000
ROA not before: Sat 01 Jan 2022 13:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60458
IP address blocks: 193.84.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58751468 (0x38079ec)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29a03997b28f59b08031c898407dd5e5137dddb1
Validity
Not Before: Jan 1 13:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a7da45ca26e68d5238e3da2bbe081896cb3fbd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:7e:30:c9:6a:a0:82:08:70:56:e9:a1:cb:3e:
d5:1d:83:35:19:9a:b7:32:29:07:0c:99:8b:7b:45:
cb:dc:c1:95:5e:e2:4a:7d:3d:b2:5b:dd:f1:4f:0b:
6e:92:00:aa:eb:93:be:bc:59:84:cd:ba:2f:bc:a5:
a6:86:76:22:6a:a6:23:61:b1:93:4e:84:08:75:71:
04:2e:e6:cc:1e:5a:d6:55:6b:9d:46:98:70:ef:66:
74:99:ea:4f:0d:53:b4:ff:60:ff:49:57:bf:19:95:
73:1d:6f:21:9c:46:f1:92:04:d7:02:d5:05:45:8b:
24:b6:99:7a:d4:09:fd:f2:60:e2:ff:a5:f4:6e:31:
35:b9:6a:5d:a4:0a:bd:13:c6:7c:f9:72:4e:f2:40:
e7:a5:15:fa:60:e6:29:20:20:03:d7:ac:d4:dd:37:
63:9d:8f:1d:48:f7:7b:21:ec:e2:9e:65:f1:27:78:
e2:4a:8e:21:4d:f5:bf:38:6f:cd:0e:50:d1:9a:bd:
e5:a1:c6:5a:7d:4e:3d:fa:27:8e:5c:a4:ee:31:55:
2a:79:4a:a3:aa:6c:21:73:34:39:0b:17:70:8e:02:
43:ea:b3:82:1c:2a:9f:1f:d3:cf:59:e8:9e:cf:aa:
ef:df:f2:32:e3:60:fa:74:10:52:f6:63:5c:a6:32:
ae:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:7D:A4:5C:A2:6E:68:D5:23:8E:3D:A2:BB:E0:81:89:6C:B3:FB:D2
X509v3 Authority Key Identifier:
keyid:29:A0:39:97:B2:8F:59:B0:80:31:C8:98:40:7D:D5:E5:13:7D:DD:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KaA5l7KPWbCAMciYQH3V5RN93bE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/Sn2kXKJuaNUjjj2iu-CBiWyz-9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/219be2-396f-427f-942c-1f8e522408a5/1/KaA5l7KPWbCAMciYQH3V5RN93bE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.177.0/24
Signature Algorithm: sha256WithRSAEncryption
50:54:cc:a0:6f:3a:b6:c3:48:a3:ba:72:4c:81:b1:7d:b5:96:
26:f6:24:36:9f:99:f8:2b:0d:b4:eb:1f:c6:e1:25:89:35:f4:
8e:3a:fe:b3:05:ef:88:c8:c7:bf:67:e0:bf:29:ef:a8:1d:5b:
0b:58:dc:5a:df:f2:5f:49:b7:b2:1d:ab:9a:30:28:f2:66:5e:
18:9e:fd:3b:66:ef:62:63:22:37:02:9b:2d:1a:76:15:61:c3:
ef:46:38:f7:ff:36:71:75:09:ac:d2:68:d2:dd:65:cd:9b:93:
9b:61:f3:aa:50:11:b1:ec:b7:ee:cd:6a:7f:ab:d0:17:9f:44:
2b:87:bd:e7:ca:fc:0a:a5:d3:73:e2:89:ef:ac:a3:ac:f8:35:
f8:76:ae:c1:73:0a:a3:8c:06:7a:24:b0:1d:f4:bf:b9:f4:f5:
20:e6:16:dc:86:63:70:6f:16:30:8c:8b:93:dc:32:cd:25:39:
ff:d2:42:e2:34:59:df:dd:e2:75:76:85:fc:92:19:10:17:b6:
67:d1:21:13:57:e9:a9:e4:cf:71:12:7b:71:86:56:6e:e3:e7:
73:88:ae:44:8b:8c:dc:04:2f:83:35:63:3b:29:2b:60:38:45:
a8:cc:e3:74:37:5c:a7:6a:3f:38:97:17:13:cf:1d:96:f1:29:
0b:57:d7:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:28 2024 by rpki-client on console-fra.rpki-client.org