Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/co5hgAcewfREZJPQQ8jTNwBlAVM.roa
File: co5hgAcewfREZJPQQ8jTNwBlAVM.roa (raw, json)
Hash identifier: n6+3boat0r0yXzYxKNJXX9U1qEER/qt2pSwgd03oaVQ=
Subject key identifier: 72:8E:61:80:07:1E:C1:F4:44:64:93:D0:43:C8:D3:37:00:65:01:53
Certificate issuer: /CN=41e09dfb9dcef8a532fb211d2e8a6546cef9f580
Certificate serial: 01856274CC8A717F21E6A16192E4B764569C
Authority key identifier: 41:E0:9D:FB:9D:CE:F8:A5:32:FB:21:1D:2E:8A:65:46:CE:F9:F5:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QeCd-53O-KUy-yEdLoplRs759YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/co5hgAcewfREZJPQQ8jTNwBlAVM.roa
Signing time: Fri 30 Dec 2022 09:54:59 +0000
ROA not before: Fri 30 Dec 2022 09:54:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15608
IP address blocks: 193.41.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:62:74:cc:8a:71:7f:21:e6:a1:61:92:e4:b7:64:56:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41e09dfb9dcef8a532fb211d2e8a6546cef9f580
Validity
Not Before: Dec 30 09:54:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=728e6180071ec1f4446493d043c8d33700650153
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c0:2f:16:0a:34:23:65:6f:47:0a:02:4e:d7:
65:c3:fe:24:7a:bf:2b:5b:47:0a:92:b6:41:1a:a8:
d5:b6:8a:2c:3d:53:a0:35:f3:b4:74:93:1f:bf:d6:
8d:60:e0:c0:79:6a:cd:4a:f5:c5:da:fd:8e:fa:6f:
93:6e:a1:eb:44:03:23:3d:ee:9e:3d:ca:6d:43:1f:
da:a7:7d:1a:1c:3f:b1:f1:09:97:0c:48:c6:ca:09:
e6:ef:54:6a:23:92:1c:3b:9e:b2:6e:0c:5c:7c:3e:
64:fd:3f:d7:e4:cf:f8:1f:c9:d0:61:03:3e:5a:c0:
84:f3:72:0b:ce:04:8b:92:41:db:03:1f:0e:63:5f:
6e:e1:d2:13:86:4a:07:e1:67:13:90:47:17:50:43:
13:83:cd:17:6b:3e:d0:75:6c:eb:68:10:0e:a8:b4:
6c:ee:f0:3a:45:ad:60:d0:cd:c4:51:15:5b:b8:2b:
77:a7:d5:e6:4d:8e:5f:c9:ec:1d:b0:bb:87:f1:0b:
6e:da:20:6a:9a:44:3f:7a:16:ae:23:da:c2:35:9b:
3f:5f:e0:80:d0:86:92:3f:b9:f8:11:ea:32:d9:c4:
f8:69:f2:a7:cb:0d:08:78:03:88:c5:15:25:65:c7:
55:1d:af:44:87:9e:e6:85:c4:b2:8a:c6:2d:1a:2f:
db:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:8E:61:80:07:1E:C1:F4:44:64:93:D0:43:C8:D3:37:00:65:01:53
X509v3 Authority Key Identifier:
keyid:41:E0:9D:FB:9D:CE:F8:A5:32:FB:21:1D:2E:8A:65:46:CE:F9:F5:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QeCd-53O-KUy-yEdLoplRs759YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/co5hgAcewfREZJPQQ8jTNwBlAVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/39d6dc-0664-4305-8ce0-20bfa78c9a1b/1/QeCd-53O-KUy-yEdLoplRs759YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.43.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:7d:7e:6e:33:5f:30:96:22:4a:72:81:b6:ad:02:bb:8b:19:
4e:2f:c9:a9:7d:26:81:64:17:2b:be:ec:57:db:8d:bd:74:29:
81:e1:fe:21:04:b5:c5:42:f1:d7:b0:98:7d:b5:32:d7:83:64:
18:e0:cf:80:73:da:fc:63:9d:9e:b7:be:41:21:d0:14:46:cf:
ee:c7:3a:fa:3b:e1:8c:12:2f:4e:19:af:78:e7:2d:5a:ad:64:
fd:c4:9f:fa:b3:47:e3:e1:37:9e:6f:f3:d5:f0:66:ce:32:d5:
c7:c9:00:b1:1c:a7:c4:4a:7e:56:49:5e:a3:9a:b6:2c:37:58:
1e:d5:9f:f4:8a:49:e2:9d:58:08:a1:be:05:af:4d:79:5d:f6:
48:b7:b0:fd:a7:82:e5:ee:f4:a9:4b:5a:5a:61:93:7f:78:5e:
7c:e3:27:53:14:9c:9b:66:4b:f6:fc:0d:7b:81:b5:79:ab:bf:
2d:7c:0f:18:46:57:ec:9e:71:90:b4:de:bb:59:d5:f9:3f:0f:
f6:f9:cd:af:c8:65:f4:bd:db:ce:62:9a:46:6b:3b:14:52:f5:
4e:e9:28:42:98:4f:22:c4:a9:1c:9b:9f:4c:31:41:04:4a:c4:
49:ad:83:b5:3c:e6:de:f3:d3:86:4d:dc:8c:bb:ac:e7:2a:b6:
63:c3:83:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:04 2024 by rpki-client on console-ams.rpki-client.org