Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/E5in-dTj9lAUa8Qrka_WaH8BZWQ.roa
File: E5in-dTj9lAUa8Qrka_WaH8BZWQ.roa (raw, json)
Hash identifier: g6QCKJy8bjqkobW3vmKls6WbmkRyYejPfV2BaLXr6ag=
Subject key identifier: 13:98:A7:F9:D4:E3:F6:50:14:6B:C4:2B:91:AF:D6:68:7F:01:65:64
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 44646B56
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/E5in-dTj9lAUa8Qrka_WaH8BZWQ.roa
Signing time: Sat 01 Jan 2022 03:58:12 +0000
ROA not before: Sat 01 Jan 2022 03:58:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 193.253.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1147431766 (0x44646b56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1398a7f9d4e3f650146bc42b91afd6687f016564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:57:df:87:85:97:2b:c9:2a:31:64:1d:40:62:
e0:c5:ea:2d:43:a0:95:fd:43:17:df:17:9c:eb:7f:
87:98:01:0d:21:00:24:cb:fa:94:82:b7:21:0e:ae:
f3:33:ae:a8:12:92:13:a5:e9:fe:d9:66:ce:f7:b2:
0f:ef:4a:f3:05:1d:58:f2:d3:70:bd:a7:09:e7:d6:
9c:43:4f:55:8b:6e:76:a3:3a:01:d0:dd:f3:6a:c6:
62:a7:b0:20:b6:60:e6:6b:74:ea:a0:eb:3a:78:7d:
7c:d4:18:39:75:25:80:d7:58:b5:79:79:e0:12:e8:
4f:fd:ec:79:31:2e:a0:07:4f:d5:d9:77:3a:ea:bc:
2d:86:88:1d:cc:6c:1f:7a:43:a5:bf:62:db:04:4e:
66:e7:5c:e3:e3:c9:fd:e9:04:e0:5d:4b:c9:71:75:
32:02:f7:f7:42:63:65:30:ed:11:c7:03:79:cf:2c:
f3:bc:4a:40:47:87:54:43:0a:ce:7b:a4:b4:19:84:
1b:f9:2b:19:38:6d:d7:e6:54:b6:6a:55:f7:80:23:
b1:2a:ba:c4:86:cf:b1:c2:0d:2d:9b:8f:2e:9e:69:
13:61:2e:03:d8:89:e4:4a:09:8c:d5:a9:17:90:bb:
c5:7f:06:1b:cb:e8:6d:fb:1e:cc:0c:e0:cf:5b:65:
08:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:98:A7:F9:D4:E3:F6:50:14:6B:C4:2B:91:AF:D6:68:7F:01:65:64
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/E5in-dTj9lAUa8Qrka_WaH8BZWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.253.149.0/24
Signature Algorithm: sha256WithRSAEncryption
63:6b:4f:2f:79:1c:ee:a8:90:ed:55:d7:0a:7e:d1:3f:42:23:
30:3a:93:c7:34:f1:0c:ff:99:66:51:35:57:15:a3:e6:4c:b2:
fb:ee:23:38:22:b1:1e:a3:d9:8f:37:05:d5:fa:63:e4:ab:25:
27:37:e8:64:94:cf:80:35:c8:1d:17:d5:b5:a5:10:cc:a5:4e:
e1:9f:12:fd:a0:8d:f6:7d:d3:d0:ee:ad:6c:12:e9:64:c9:92:
eb:92:bc:2f:16:7d:fa:7e:f5:63:cc:7c:bd:3c:49:a6:6e:a9:
1f:b6:c1:cb:67:07:80:2d:59:c4:f9:d9:20:6a:09:45:ec:fc:
f0:82:91:93:06:d4:66:60:fd:a1:98:a2:11:11:bb:b0:1f:d9:
a3:ca:25:43:e9:5c:4f:8b:ff:2c:1a:c0:ab:ea:5c:4f:56:e3:
21:87:12:d8:d5:8d:64:85:ae:75:8f:54:b8:f4:99:5e:e0:94:
33:52:47:dc:aa:8f:1d:34:9b:4b:56:7d:76:9e:a5:cb:cb:cd:
40:dc:c7:43:f8:6c:6e:88:5b:75:00:7f:25:28:f2:87:99:cd:
94:65:6d:ad:a8:51:71:38:40:13:b8:42:e2:d2:31:3a:88:79:
55:d8:c6:81:d3:b1:ce:31:fa:39:55:d9:a4:ce:89:0c:f7:1b:
75:c0:fd:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org