Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/SyiVbpntkrxbYJWSEXbjSAfZC2A.roa
File: SyiVbpntkrxbYJWSEXbjSAfZC2A.roa (raw, json)
Hash identifier: wxcO9voa2tslY7ZmbureWGniLnHFeq0LuHswMNy+gVs=
Subject key identifier: 4B:28:95:6E:99:ED:92:BC:5B:60:95:92:11:76:E3:48:07:D9:0B:60
Certificate issuer: /CN=a62a8c7a1f6a4c949e027b5369d97d7576e147f8
Certificate serial: 018508AED53DA577BC52AFCF7171B802E605
Authority key identifier: A6:2A:8C:7A:1F:6A:4C:94:9E:02:7B:53:69:D9:7D:75:76:E1:47:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/piqMeh9qTJSeAntTadl9dXbhR_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/SyiVbpntkrxbYJWSEXbjSAfZC2A.roa
Signing time: Mon 12 Dec 2022 23:32:33 +0000
ROA not before: Mon 12 Dec 2022 23:32:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207199
IP address blocks: 193.8.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:08:ae:d5:3d:a5:77:bc:52:af:cf:71:71:b8:02:e6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a62a8c7a1f6a4c949e027b5369d97d7576e147f8
Validity
Not Before: Dec 12 23:32:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b28956e99ed92bc5b6095921176e34807d90b60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:56:ff:d0:5d:e4:7e:d8:77:59:04:d2:e7:b1:
67:4c:6b:61:ca:7a:a6:98:f3:73:72:df:09:a6:ad:
cc:5d:e7:e7:c4:34:40:25:c5:88:d8:a8:21:6d:bc:
dc:e1:97:bd:6c:5e:49:d0:83:0d:85:d9:26:7e:d5:
00:05:09:15:90:2f:94:1f:45:10:f7:56:3c:8c:60:
f8:6a:46:dc:9a:a3:00:29:ee:e3:3e:74:be:81:af:
c2:63:21:8c:c0:4c:48:40:65:ce:bb:70:a2:bb:09:
0c:fa:a3:68:d2:d3:88:e7:09:fc:08:32:70:54:e7:
1a:e1:01:65:5f:3e:5d:fc:5a:d2:05:ea:b0:db:d2:
9f:3f:00:b4:49:e9:c2:40:f8:bf:a7:c8:1c:0f:23:
eb:e4:2b:f0:d6:90:fc:ab:7f:f8:09:2c:ca:9a:d9:
29:35:f8:c4:61:5d:5f:31:d0:0a:56:dd:ec:72:8b:
01:19:85:fb:98:93:e4:3e:41:a1:9b:74:d2:61:3e:
2a:5c:c7:48:c2:81:e9:b3:8e:65:f8:5f:72:be:43:
96:9a:86:e3:fd:06:50:0b:21:78:b3:f6:7c:c5:a0:
84:32:2b:84:61:fa:61:f7:86:8d:f2:55:87:ca:d4:
d0:90:cc:d2:00:49:56:74:79:0d:7a:be:3b:da:c9:
22:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:28:95:6E:99:ED:92:BC:5B:60:95:92:11:76:E3:48:07:D9:0B:60
X509v3 Authority Key Identifier:
keyid:A6:2A:8C:7A:1F:6A:4C:94:9E:02:7B:53:69:D9:7D:75:76:E1:47:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/piqMeh9qTJSeAntTadl9dXbhR_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/SyiVbpntkrxbYJWSEXbjSAfZC2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/piqMeh9qTJSeAntTadl9dXbhR_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.38.0/24
Signature Algorithm: sha256WithRSAEncryption
08:8d:09:d9:2b:2c:9d:06:66:6b:7b:ca:b0:0d:c7:0d:4e:c6:
ae:b2:04:fd:3d:27:75:9e:a6:68:4c:a4:b6:71:d7:e3:d7:36:
1c:92:88:66:8b:3d:1c:69:eb:40:70:de:b0:1c:26:12:39:fe:
74:44:18:72:64:04:f4:3f:9d:9e:d5:4b:61:e1:22:db:91:cf:
37:ba:a8:f8:96:e8:cc:61:fa:ba:2a:72:62:da:c7:bd:9b:e7:
11:5a:ad:c3:f9:57:a3:04:5c:b8:ab:3c:c0:2f:24:6f:1e:a5:
29:67:79:b3:7a:d0:ae:1d:49:9c:d6:a4:c6:24:90:82:b5:ec:
ac:3b:75:b1:6e:a2:1d:14:b0:d9:49:f1:8c:07:c2:38:b0:d7:
a1:00:d5:3c:ca:3e:44:37:d8:a6:7c:46:d5:60:dc:d3:52:f0:
c0:26:2c:e0:7f:ea:7e:1a:90:57:4a:fb:9a:de:97:b8:32:46:
17:77:c7:1d:19:d4:3b:b3:39:6c:23:23:41:71:b3:b0:dc:75:
e6:cf:d1:ba:c8:ee:62:c7:36:86:15:a8:aa:bb:7b:f9:d3:12:
ce:54:c3:0c:d9:2e:42:af:de:95:c7:e3:96:ec:73:69:74:8e:
b6:a4:9d:e8:50:58:ff:ba:d2:67:0c:e5:66:3a:14:0e:5b:50:
5c:e8:de:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:03 2024 by rpki-client on console-ams.rpki-client.org