Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/U8Z1pbX2jZmc6vIBeETFHD3PfgA.roa
File: U8Z1pbX2jZmc6vIBeETFHD3PfgA.roa (raw, json)
Hash identifier: djo8t4gOYJkPHtWAB/wuo4QF5lL07c6LPtw8L4TvaNw=
Subject key identifier: 53:C6:75:A5:B5:F6:8D:99:9C:EA:F2:01:78:44:C5:1C:3D:CF:7E:00
Certificate issuer: /CN=1c0e216e5791e1b01da21bcaf330041ad72a7e6c
Certificate serial: 15533B59
Authority key identifier: 1C:0E:21:6E:57:91:E1:B0:1D:A2:1B:CA:F3:30:04:1A:D7:2A:7E:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HA4hbleR4bAdohvK8zAEGtcqfmw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/U8Z1pbX2jZmc6vIBeETFHD3PfgA.roa
Signing time: Sat 01 Jan 2022 09:00:21 +0000
ROA not before: Sat 01 Jan 2022 09:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1935
IP address blocks: 193.160.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357776217 (0x15533b59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c0e216e5791e1b01da21bcaf330041ad72a7e6c
Validity
Not Before: Jan 1 09:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53c675a5b5f68d999ceaf2017844c51c3dcf7e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:3c:13:f4:03:79:6e:a5:e8:01:06:ff:c5:bc:
34:ca:bb:2f:20:7b:56:0b:94:b9:80:4e:84:d1:f4:
7c:d6:52:5f:d8:97:e2:12:ff:de:4f:df:15:58:6c:
96:ed:a2:72:a8:48:a4:cb:e6:d3:93:5a:d5:88:8c:
75:77:53:02:e4:d1:df:3c:8e:2c:88:cc:24:71:0b:
db:e1:c7:19:e1:5b:a9:cd:18:c8:f8:94:6b:69:5d:
fd:7e:c2:6f:4d:31:9c:bc:23:b5:f5:13:fd:08:c8:
78:f5:f1:97:ca:67:e9:f6:b3:46:3a:d7:a6:3d:c5:
19:c5:3b:29:85:b1:c4:12:3c:4d:48:21:ff:b7:98:
66:fc:00:1a:66:60:20:23:65:f2:9d:38:b3:76:5a:
8b:42:bc:93:e9:03:58:48:44:b2:72:81:9c:be:b4:
e7:9e:f4:38:9c:36:21:af:bf:8e:c2:a8:e4:fc:11:
1d:b7:42:ea:c2:4b:77:eb:aa:af:f4:8c:6c:ab:10:
27:e0:5e:30:79:50:c6:2d:d9:bc:64:22:05:1b:63:
ba:52:fd:dd:de:2d:10:53:ae:08:92:73:60:da:05:
55:dd:40:9d:3e:1e:6c:14:ac:c3:6a:9a:12:9b:ec:
c0:4e:26:19:15:48:06:db:3d:f9:fb:b5:17:c0:90:
2b:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:C6:75:A5:B5:F6:8D:99:9C:EA:F2:01:78:44:C5:1C:3D:CF:7E:00
X509v3 Authority Key Identifier:
keyid:1C:0E:21:6E:57:91:E1:B0:1D:A2:1B:CA:F3:30:04:1A:D7:2A:7E:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HA4hbleR4bAdohvK8zAEGtcqfmw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/U8Z1pbX2jZmc6vIBeETFHD3PfgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/938443-be9a-4f8b-8801-2c0fc6be1e57/1/HA4hbleR4bAdohvK8zAEGtcqfmw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.0.0/24
Signature Algorithm: sha256WithRSAEncryption
ca:54:a7:47:3c:f7:2f:ab:4d:65:ba:b2:1c:93:5d:15:8e:65:
19:fb:c2:aa:a5:cc:ac:05:86:89:fb:4e:96:84:0f:18:e1:0c:
92:31:e9:25:9f:ec:6a:b5:e9:63:68:b9:e7:18:88:69:26:a9:
f7:4e:df:df:cf:29:0f:6d:c3:b8:48:c4:37:84:c6:84:33:2b:
da:04:a9:e2:f9:c8:bc:7e:f1:03:da:cd:cb:7b:d6:55:fc:54:
62:fe:b8:a5:c5:78:e4:b5:80:21:41:ed:72:51:72:de:2b:70:
13:b8:63:10:dd:1c:61:a1:ba:71:0a:99:fb:43:3e:94:01:6a:
71:9e:7d:dd:76:d8:e1:fe:83:9b:b6:1e:cd:3b:55:23:fc:80:
bb:52:ce:4c:ee:ef:ae:21:1d:08:22:7e:c3:f1:80:81:ad:66:
d0:dd:f3:51:d1:76:96:af:a3:3a:c9:d8:de:f4:21:89:63:dc:
28:0c:c8:bc:0e:81:86:65:9a:90:db:87:1f:40:d6:60:00:df:
fc:28:9b:48:51:6a:9c:53:6e:1f:e8:fb:08:41:d8:c4:58:27:
55:8c:cc:05:3d:6f:91:2e:b3:bf:a5:6e:c5:53:b3:32:52:1c:
45:d8:39:9c:fb:fc:8b:ec:70:d4:6c:a7:a8:8d:77:dc:06:fa:
be:5b:46:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:54 2024 by rpki-client on console-ams.rpki-client.org