Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/j24SZwGWrJoTfK2bZvg5CVydOOo.roa
File: j24SZwGWrJoTfK2bZvg5CVydOOo.roa (raw, json)
Hash identifier: 5OcLojBwzAg7Z0nf9I00qcXgma3+Gr8H8FV2okcc6hA=
Subject key identifier: 8F:6E:12:67:01:96:AC:9A:13:7C:AD:9B:66:F8:39:09:5C:9D:38:EA
Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Certificate serial: 04BA3AC2
Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/j24SZwGWrJoTfK2bZvg5CVydOOo.roa
Signing time: Sat 01 Jan 2022 01:56:24 +0000
ROA not before: Sat 01 Jan 2022 01:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207573
IP address blocks: 193.41.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79313602 (0x4ba3ac2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05
Validity
Not Before: Jan 1 01:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f6e12670196ac9a137cad9b66f839095c9d38ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c6:94:5c:65:32:b9:94:2d:6b:a6:8b:b0:45:
aa:24:0d:33:08:fe:62:af:d7:82:f5:fc:44:03:96:
74:c0:c8:e5:38:77:b9:4f:fd:af:f7:77:3b:66:06:
37:8f:92:5c:f9:97:3e:53:b6:5c:96:bf:fb:73:d9:
f4:4d:35:4f:c2:c2:ce:1a:d5:58:84:a3:ee:44:27:
af:c4:f3:68:ca:84:9f:a3:46:22:98:dd:2a:8c:ad:
6c:b7:01:fb:d9:20:ba:05:96:57:84:4b:4d:7e:75:
f1:57:0c:45:d0:c9:be:c0:a5:72:ef:18:44:9d:32:
11:5f:03:f2:eb:43:5d:99:69:a4:e8:86:2f:08:39:
ea:b1:fb:a3:93:15:28:17:b4:01:aa:98:03:a6:28:
23:76:54:30:f4:b4:8e:4b:2b:d6:47:84:cc:2f:27:
72:ec:0a:00:df:19:1e:e8:0c:a5:b3:39:f1:ea:cf:
2d:a0:fd:b7:a3:5c:18:58:00:61:50:04:23:b5:d7:
28:21:f4:52:6a:75:7e:40:2f:05:c2:62:a7:f6:76:
9b:8e:03:9c:68:ad:c3:14:d7:f6:38:55:ff:6a:e9:
17:d4:b9:aa:f5:67:0c:11:70:b7:11:58:f1:af:90:
74:4d:79:96:a9:4d:8a:e7:79:29:64:7b:48:53:fe:
94:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:6E:12:67:01:96:AC:9A:13:7C:AD:9B:66:F8:39:09:5C:9D:38:EA
X509v3 Authority Key Identifier:
keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/j24SZwGWrJoTfK2bZvg5CVydOOo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.59.0/24
Signature Algorithm: sha256WithRSAEncryption
90:b5:4a:f5:56:a4:78:50:75:53:06:32:e1:9e:0c:bd:53:f4:
ea:82:f6:45:3d:45:b9:b9:19:d8:46:3c:2c:53:9d:39:fa:80:
be:84:b3:d4:ea:6c:bc:14:19:d1:0e:44:cc:e1:37:21:c0:b1:
aa:6d:77:36:c4:81:fb:49:86:f8:f4:77:ba:82:60:53:05:bc:
a9:84:0b:65:4c:ab:3b:ac:ea:c2:e2:5a:b2:a3:a1:f9:af:bd:
fe:90:94:87:f7:00:31:a7:c3:49:da:1d:4b:62:f6:d7:3b:74:
e6:d1:00:e8:89:0e:0a:5b:a5:7c:6c:91:5c:bb:78:8b:12:ec:
03:b5:bb:4b:e6:2b:c3:4c:34:8c:0b:e2:1e:3a:42:51:4f:7f:
b2:ea:52:ed:56:e2:61:0e:0c:51:dc:00:61:4e:c2:49:da:53:
89:6f:38:30:94:70:63:d3:99:b3:50:9e:b9:04:36:8b:fe:b0:
e5:9b:d2:41:03:88:f0:7e:7f:35:b4:fe:24:0c:f5:9e:8d:0f:
43:89:73:ce:1a:d0:64:a6:14:02:1b:99:ac:06:dd:14:b6:36:
c5:88:a1:f0:d0:d4:a4:fe:81:be:4d:2e:48:7a:23:37:43:83:
fa:45:f7:ad:02:44:3a:26:f6:e9:f4:a4:a8:cd:35:e8:61:e3:
19:d4:7f:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:58 2024 by rpki-client on console-fra.rpki-client.org