Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/_74vO3DdTLY1Y__5_WKIO-zCy0M.roa
File: _74vO3DdTLY1Y__5_WKIO-zCy0M.roa (raw, json)
Hash identifier: nYRK+kh8oLiLIO6Q45UrjCCyoueYuUi18wsEseXWzVE=
Subject key identifier: FF:BE:2F:3B:70:DD:4C:B6:35:63:FF:F9:FD:62:88:3B:EC:C2:CB:43
Certificate issuer: /CN=a62a8c7a1f6a4c949e027b5369d97d7576e147f8
Certificate serial: 018508AED45069EEB5CBB55297A718F8D418
Authority key identifier: A6:2A:8C:7A:1F:6A:4C:94:9E:02:7B:53:69:D9:7D:75:76:E1:47:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/piqMeh9qTJSeAntTadl9dXbhR_g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/_74vO3DdTLY1Y__5_WKIO-zCy0M.roa
Signing time: Mon 12 Dec 2022 23:32:33 +0000
ROA not before: Mon 12 Dec 2022 23:32:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48854
IP address blocks: 193.8.38.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:08:ae:d4:50:69:ee:b5:cb:b5:52:97:a7:18:f8:d4:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a62a8c7a1f6a4c949e027b5369d97d7576e147f8
Validity
Not Before: Dec 12 23:32:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ffbe2f3b70dd4cb63563fff9fd62883becc2cb43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:22:4a:e1:a7:a0:54:a0:59:f6:c1:91:27:ea:
40:44:bc:41:d0:a6:6d:02:d1:22:7e:86:38:0a:4d:
34:5b:d0:98:29:bb:ed:5d:19:54:43:72:97:7c:82:
a7:08:bb:46:09:12:1b:2b:dd:fe:2e:80:92:c1:5a:
b3:2e:af:3f:95:45:3d:a5:37:fa:a1:2d:d4:df:00:
83:4a:3c:5d:3c:84:fe:e3:16:bd:a2:e6:43:8c:29:
3c:7b:63:7b:e5:50:b7:32:bd:4c:54:14:68:9f:3e:
8e:4b:81:21:60:7a:62:df:9a:70:da:f5:aa:00:27:
52:b3:c6:54:4d:e8:9a:dd:7b:b5:b3:68:7f:b0:d1:
a7:7c:e8:ae:da:4c:69:1a:e9:55:60:b8:d5:fd:ec:
9d:ad:79:a9:28:1a:9a:4f:15:3f:f9:e7:99:2d:13:
b8:c2:d8:8e:f6:a5:45:0c:cf:59:b9:4a:81:a1:47:
06:6f:49:8a:bf:d6:b1:94:bd:ea:7b:fb:a2:f5:32:
a7:c2:2f:99:ab:66:ca:9e:f3:4c:88:0a:9f:ed:d2:
db:ad:98:8c:f0:09:8b:b4:1c:e1:02:00:4e:b3:39:
d5:35:84:fd:ae:43:2c:15:77:80:34:35:c5:39:79:
78:4d:2f:77:9f:03:cc:2f:dc:08:04:70:be:95:c0:
fc:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:BE:2F:3B:70:DD:4C:B6:35:63:FF:F9:FD:62:88:3B:EC:C2:CB:43
X509v3 Authority Key Identifier:
keyid:A6:2A:8C:7A:1F:6A:4C:94:9E:02:7B:53:69:D9:7D:75:76:E1:47:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/piqMeh9qTJSeAntTadl9dXbhR_g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/_74vO3DdTLY1Y__5_WKIO-zCy0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/fc022d-f8e5-4a6e-8b1f-58c85d4336bc/1/piqMeh9qTJSeAntTadl9dXbhR_g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.8.38.0/24
Signature Algorithm: sha256WithRSAEncryption
55:95:44:1e:2b:0d:52:11:b2:2a:88:be:ec:0b:30:a9:32:5b:
02:60:a2:6d:91:de:03:a8:f6:b9:b9:2e:f5:49:4b:c7:88:c0:
73:e1:c0:0f:37:4c:75:31:6a:63:82:39:25:91:01:04:7a:b2:
b2:84:2e:5d:d9:52:05:b3:6c:73:df:ec:d4:79:7c:09:e0:03:
27:64:8b:52:f0:9a:47:fb:31:c3:ef:de:45:9e:ca:c3:1f:b9:
c3:af:9f:97:2f:d2:e8:9e:73:1e:43:61:6e:cf:aa:21:71:73:
23:c5:86:5c:aa:72:f9:c4:99:58:84:5c:b0:40:45:46:10:60:
ea:b7:fb:58:e7:19:47:a0:96:a5:9e:42:a6:c7:e9:ce:45:bc:
cb:d7:85:f4:dd:5d:81:7b:ca:85:c2:ca:10:60:98:57:0e:62:
a0:e6:c5:ef:e3:43:13:e3:50:b3:aa:85:3a:d0:fd:24:bf:9a:
70:47:b7:43:cf:cc:e9:5d:ee:66:59:57:e1:70:ca:46:c2:64:
13:bc:52:26:9f:5b:29:0f:27:a3:32:9a:da:c5:99:15:71:1e:
08:cb:57:db:9d:ae:d4:e9:8f:3e:38:8a:2c:f6:a8:63:ad:c4:
d5:6e:22:85:88:82:d1:a9:82:c0:ea:44:d5:ee:44:4c:e6:f7:
fa:9b:f2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:03 2024 by rpki-client on console-ams.rpki-client.org