Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/4AwFxfLRxJ2OZDQVvBDbq5tFuU4.roa
File: 4AwFxfLRxJ2OZDQVvBDbq5tFuU4.roa (raw, json)
Hash identifier: pCJ0CsYxwf+zt7wamF+2xRDcmZGNTATMnrM9VyF3LpI=
Subject key identifier: E0:0C:05:C5:F2:D1:C4:9D:8E:64:34:15:BC:10:DB:AB:9B:45:B9:4E
Certificate issuer: /CN=bebf09c2f8fff97ef8aec2f8173578d0a3a74c81
Certificate serial: 03B0F183
Authority key identifier: BE:BF:09:C2:F8:FF:F9:7E:F8:AE:C2:F8:17:35:78:D0:A3:A7:4C:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vr8Jwvj_-X74rsL4FzV40KOnTIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/4AwFxfLRxJ2OZDQVvBDbq5tFuU4.roa
Signing time: Sat 01 Jan 2022 00:53:50 +0000
ROA not before: Sat 01 Jan 2022 00:53:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43014
IP address blocks: 193.200.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61927811 (0x3b0f183)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bebf09c2f8fff97ef8aec2f8173578d0a3a74c81
Validity
Not Before: Jan 1 00:53:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e00c05c5f2d1c49d8e643415bc10dbab9b45b94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:97:41:03:6d:51:44:30:20:db:2d:15:69:7e:
4c:6b:ba:33:0c:e4:ce:ab:17:7d:b9:92:88:f3:c1:
cd:93:be:b2:41:72:5e:bb:62:a5:e0:1d:3d:c6:88:
fa:4e:b3:00:44:ce:49:40:fc:ca:1e:34:17:61:0c:
9f:5c:3c:4d:66:9c:2d:98:12:9d:0f:e2:fa:f3:e6:
39:7d:ef:fa:71:41:ad:d5:46:2d:3d:ae:c3:47:90:
66:d8:fc:3c:e9:d1:58:78:0a:9e:19:2a:c4:9e:75:
82:68:93:1d:a8:d5:b2:8e:ff:3d:25:32:3d:12:c0:
2b:a2:d0:5b:d0:db:9d:a7:2d:e6:20:94:43:2f:bb:
90:2d:54:27:13:e7:fe:cb:00:ff:10:fe:23:8f:1d:
df:5a:b1:68:71:db:25:4d:fc:f2:c5:ff:a7:11:b4:
ed:22:ce:9d:47:b2:ab:d2:a3:a5:a2:54:7f:0c:35:
e6:a4:36:4b:3d:98:5b:9a:80:7d:cf:74:34:c5:1f:
a6:e2:8c:fe:36:ff:f1:f0:5c:42:59:69:cc:03:cd:
69:a2:89:05:05:de:08:a6:9c:22:83:e2:7e:9d:f2:
a2:79:7e:e5:a1:ed:cd:71:2d:e2:bc:aa:47:1b:c5:
8d:ec:75:e7:8a:81:22:58:f9:e2:6f:ae:55:88:b9:
f7:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:0C:05:C5:F2:D1:C4:9D:8E:64:34:15:BC:10:DB:AB:9B:45:B9:4E
X509v3 Authority Key Identifier:
keyid:BE:BF:09:C2:F8:FF:F9:7E:F8:AE:C2:F8:17:35:78:D0:A3:A7:4C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vr8Jwvj_-X74rsL4FzV40KOnTIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/4AwFxfLRxJ2OZDQVvBDbq5tFuU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dc1c50-650d-43c4-9e76-ccd4fad950ed/1/vr8Jwvj_-X74rsL4FzV40KOnTIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.200.177.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:81:d3:93:5d:b7:cd:91:bb:6b:ea:bc:37:e4:ea:97:cc:a3:
7e:91:4e:13:c1:01:0f:52:21:34:ec:72:29:fb:ea:ba:4b:93:
55:43:19:a7:3d:7c:07:e6:aa:55:e1:1b:e9:e9:8b:07:f3:c9:
58:d9:1a:67:41:39:f2:32:e1:9d:74:4b:07:f2:b5:60:34:27:
c5:e6:54:16:68:3f:99:78:0f:73:f2:a9:22:bd:f3:e7:a5:ab:
81:5a:1a:e5:7c:f9:35:27:49:92:ff:ee:da:f5:23:c6:0f:3c:
0f:24:f7:da:f2:e9:db:38:1c:a9:77:93:9a:e8:04:25:ed:32:
bf:b3:a0:c7:c1:ca:b8:db:cb:00:90:dc:f4:09:90:d2:f2:2b:
fc:7a:9d:32:ae:c3:b5:a0:82:18:ef:fd:5e:14:07:30:cf:24:
32:de:01:82:6d:a7:da:8e:49:6e:97:31:e4:20:62:d3:1a:d4:
95:c3:a0:cc:b3:ff:54:c3:37:48:d0:38:92:d6:6a:15:01:b8:
d8:7b:99:57:fe:71:cf:ff:eb:8f:60:b5:f0:06:39:ef:7a:25:
55:93:d2:42:13:58:d3:70:b4:25:9c:e5:4b:ce:3b:31:cb:5a:
38:c2:2d:cd:6d:94:93:85:be:95:bc:07:11:20:ea:fe:d0:f4:
da:76:28:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:49 2024 by rpki-client on console-ams.rpki-client.org