Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/pg76vwau8pGwz9MMJOn3vnHE7UA.roa
File: pg76vwau8pGwz9MMJOn3vnHE7UA.roa (raw, json)
Hash identifier: ZKRbKiyi7saruy5k2xV5qfrXGEcnuFrL83X76Q7tEjU=
Subject key identifier: A6:0E:FA:BF:06:AE:F2:91:B0:CF:D3:0C:24:E9:F7:BE:71:C4:ED:40
Certificate issuer: /CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Certificate serial: 01776E
Authority key identifier: CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/pg76vwau8pGwz9MMJOn3vnHE7UA.roa
Signing time: Mon 06 Jun 2022 12:11:20 +0000
ROA not before: Mon 06 Jun 2022 12:11:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43631
IP address blocks: 193.46.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96110 (0x1776e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb7e053c71995acc9bf1333fe79c3d5bfd6e964e
Validity
Not Before: Jun 6 12:11:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a60efabf06aef291b0cfd30c24e9f7be71c4ed40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:4e:f6:f2:6e:f7:46:09:6a:f7:05:4d:ad:76:
19:4a:03:64:ac:19:4d:29:2e:ef:ef:14:c0:43:77:
5c:35:c8:a5:0a:1b:41:46:9c:da:64:ed:20:bd:ea:
f8:a9:48:f1:bc:1b:12:1a:06:01:f1:cc:00:78:16:
dc:b0:f7:1b:8d:54:fa:eb:18:cb:af:31:ac:94:c8:
b2:ab:83:f5:cb:35:ee:da:d3:67:62:74:4a:6f:5b:
54:83:15:8a:0b:90:60:60:6a:74:de:ae:86:c0:5a:
a4:a8:0e:21:d8:12:57:32:c2:df:20:f2:0e:21:ee:
9d:07:cd:ea:d6:7f:28:18:1c:68:27:0e:7b:27:a2:
8f:da:ce:23:c7:4f:d8:23:08:33:b6:e8:e9:d9:4a:
ba:ce:6b:0a:9d:45:21:48:7b:36:19:7d:3c:9c:46:
eb:8d:e3:fc:ba:04:cf:b0:7e:e3:04:be:09:d6:b5:
e1:48:5c:8a:89:c7:20:52:6b:f6:d2:0d:ed:3d:83:
82:40:d4:c4:9c:5c:f1:2e:ea:b0:4a:d3:c8:7b:76:
2b:d2:1a:8c:fc:f4:0f:0e:0d:7e:ca:e5:e8:ff:f6:
b1:15:12:6a:82:76:9a:b9:dd:43:07:f3:0d:8b:f3:
f4:eb:ff:dd:dd:c7:83:79:5d:0d:9a:16:a1:38:fd:
68:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0E:FA:BF:06:AE:F2:91:B0:CF:D3:0C:24:E9:F7:BE:71:C4:ED:40
X509v3 Authority Key Identifier:
keyid:CB:7E:05:3C:71:99:5A:CC:9B:F1:33:3F:E7:9C:3D:5B:FD:6E:96:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y34FPHGZWsyb8TM_55w9W_1ulk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/pg76vwau8pGwz9MMJOn3vnHE7UA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/78aad1-d61f-416e-af4c-93637d4168bd/1/y34FPHGZWsyb8TM_55w9W_1ulk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.91.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:fb:e1:05:8f:14:7e:9a:a6:f1:4c:0b:87:c0:e0:17:5e:07:
29:3e:0a:32:f8:47:36:b6:db:df:2f:d8:d1:cc:b2:02:b7:c6:
f2:a5:8a:2e:f4:be:58:84:2e:64:ed:27:0e:73:34:4e:58:8d:
eb:e0:46:7c:7b:3c:0b:bf:94:12:b0:2e:41:20:f3:7e:f7:50:
99:50:be:3b:b9:5f:5d:5a:6e:c0:37:45:59:82:08:87:d2:fe:
d1:a2:0b:3a:b1:06:4d:f4:56:16:3b:0c:f2:2a:46:b9:2b:ba:
38:e2:d3:2b:a8:08:e6:79:0b:c5:68:5c:42:97:52:69:33:c0:
8d:4c:9a:3d:da:57:d4:30:0c:0e:03:e7:c8:b2:de:35:e4:63:
a6:d0:ec:c1:1c:bc:53:53:80:4d:d3:df:37:25:e9:7c:55:3e:
99:b3:7e:0d:f2:34:4c:3f:0e:ca:e8:d3:de:04:6c:74:00:8e:
fe:3d:e9:dd:53:fb:53:2b:9b:0d:f9:c0:bf:ce:84:6e:b9:fe:
81:17:78:83:d7:df:5d:e5:d8:b8:44:38:a5:ba:8b:48:1a:74:
f2:59:a9:e2:87:82:bf:34:b4:e2:43:cf:57:89:fc:66:17:58:
b2:ba:08:30:be:d8:80:f1:9d:d9:0a:09:37:16:ae:e0:2a:77:
bc:1e:61:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org