Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/fLBSm53KPM9cppucxDCJ10E1D-w.roa
File: fLBSm53KPM9cppucxDCJ10E1D-w.roa (raw, json)
Hash identifier: WhTWy/99SMWb0wzDqzcRh73zIlavdKIOI+T4CBsbyuQ=
Subject key identifier: 7C:B0:52:9B:9D:CA:3C:CF:5C:A6:9B:9C:C4:30:89:D7:41:35:0F:EC
Certificate issuer: /CN=3af09ba33b5ae581b0d29323249314f76aa10511
Certificate serial: 448B9BCB
Authority key identifier: 3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/fLBSm53KPM9cppucxDCJ10E1D-w.roa
Signing time: Sat 01 Jan 2022 03:58:36 +0000
ROA not before: Sat 01 Jan 2022 03:58:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41951
IP address blocks: 193.252.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1150000075 (0x448b9bcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3af09ba33b5ae581b0d29323249314f76aa10511
Validity
Not Before: Jan 1 03:58:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7cb0529b9dca3ccf5ca69b9cc43089d741350fec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9f:ff:f4:0e:ed:c5:95:be:d0:86:03:e6:01:
6c:1c:46:e8:1a:e9:fe:f9:07:17:54:60:a0:3d:55:
a9:e2:f8:8d:7f:25:7c:f0:cd:4d:d5:0f:27:1c:b6:
78:b8:99:55:86:4a:aa:79:cf:33:af:eb:42:27:af:
56:76:fe:d8:d2:dd:9c:8f:9a:c0:06:1b:65:a9:d7:
50:0c:f4:e6:ed:9e:02:42:d7:b2:47:75:8e:cd:b4:
c9:4f:51:25:0a:a4:74:ee:0f:3a:a1:14:88:7e:a7:
2c:0b:ad:43:57:b4:fe:00:1c:d6:bc:2b:86:b1:d4:
1a:56:66:32:e9:5f:99:d4:4a:eb:41:8d:9e:0c:df:
93:bc:5c:53:70:48:d5:ad:68:94:c0:54:d5:a2:d3:
1e:52:11:c7:49:0c:cf:b8:14:79:e0:6c:ed:98:93:
8a:44:54:f2:b5:2a:fb:48:df:22:41:0d:df:be:07:
85:d6:7b:ce:e0:2e:b6:eb:0a:b0:07:4e:ae:9c:da:
be:bb:40:56:fb:93:f8:e5:86:a5:27:31:6b:fd:fa:
66:0c:85:d1:f1:c1:de:9d:f8:07:58:87:62:2c:49:
f9:fc:75:a4:9e:86:1b:c9:0f:db:de:27:55:2d:c5:
0a:fb:d5:ac:1e:0d:c2:fc:f5:54:47:2e:4d:26:78:
7f:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:B0:52:9B:9D:CA:3C:CF:5C:A6:9B:9C:C4:30:89:D7:41:35:0F:EC
X509v3 Authority Key Identifier:
keyid:3A:F0:9B:A3:3B:5A:E5:81:B0:D2:93:23:24:93:14:F7:6A:A1:05:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OvCbozta5YGw0pMjJJMU92qhBRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/fLBSm53KPM9cppucxDCJ10E1D-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/33d5d1-c450-413b-afe4-45935f506a12/1/OvCbozta5YGw0pMjJJMU92qhBRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.252.16.0/23
Signature Algorithm: sha256WithRSAEncryption
11:f3:fa:f3:34:a2:37:2a:61:7a:68:a7:e1:a9:d1:74:5a:92:
88:3e:0e:9d:e3:af:dd:27:e7:16:a2:3a:73:f9:a1:fc:f6:de:
95:a2:43:c9:4c:31:9a:22:35:7c:04:b9:68:0e:7d:59:d4:65:
89:dd:e2:9d:a3:79:06:96:a2:b8:41:8a:40:b7:27:48:05:12:
4c:ed:98:d1:f7:54:cc:25:0c:32:e4:8a:50:11:3e:c9:7c:6d:
92:7c:c4:c1:4c:1f:53:5d:df:b3:05:33:e2:5f:2d:79:6d:e7:
4c:38:89:17:6f:db:fc:15:57:bb:07:32:b0:55:cc:e0:0a:58:
f7:67:1d:70:91:35:82:53:7c:e9:d1:da:26:b1:07:f7:86:e3:
0a:0e:23:9f:5e:1f:49:63:c2:7e:39:27:fb:ec:0d:30:0d:7d:
a1:b2:66:82:ad:9c:b0:82:c2:c5:fc:a8:a1:6e:37:94:68:6e:
e1:af:18:10:af:e2:47:5f:75:4a:4a:b1:5e:14:7f:e6:51:07:
3e:24:0a:a3:df:80:93:8e:0c:c4:ef:89:fb:ac:50:a2:36:20:
46:04:e3:ad:34:f0:fb:9d:11:fd:06:50:fc:ba:da:d4:81:e1:
18:3e:70:c0:d6:c1:71:af:ff:08:74:b9:6d:ed:bb:37:37:99:
71:e4:c8:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:51 2024 by rpki-client on console-fra.rpki-client.org