Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/D1XOlt8YwHXWNToeLElgO7RtYsg.roa
File: D1XOlt8YwHXWNToeLElgO7RtYsg.roa (raw, json)
Hash identifier: RJlfPA4KM+eB4Gj3tzy4vy/+70V4EpP7AtLjBp7WXIo=
Subject key identifier: 0F:55:CE:96:DF:18:C0:75:D6:35:3A:1E:2C:49:60:3B:B4:6D:62:C8
Certificate issuer: /CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Certificate serial: 053FB99C
Authority key identifier: A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/D1XOlt8YwHXWNToeLElgO7RtYsg.roa
Signing time: Sat 01 Jan 2022 14:08:17 +0000
ROA not before: Sat 01 Jan 2022 14:08:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198221
IP address blocks: 193.168.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88062364 (0x53fb99c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90d9ac2ef11d5469375d6de6c6bf721129e3b71
Validity
Not Before: Jan 1 14:08:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f55ce96df18c075d6353a1e2c49603bb46d62c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:b7:25:76:bb:79:b1:7f:e0:a3:a3:6f:33:b2:
2c:d3:36:63:52:8c:9a:6c:86:b8:b0:69:ac:19:cf:
05:b7:f4:34:48:72:fb:6c:33:2f:7b:fb:c9:44:3d:
2a:b7:e2:fe:90:10:5b:06:30:d1:e8:ed:2f:43:a0:
e6:f1:ac:81:f5:e3:e3:1d:54:32:aa:d3:f6:bc:5e:
c2:c0:bd:8f:0f:30:09:b1:5d:94:b8:77:ea:2c:94:
d1:1d:79:85:8f:16:65:dd:20:9a:51:ef:30:06:64:
49:84:5c:ce:d8:0e:42:9d:8c:c6:83:f2:31:60:77:
cc:24:5a:24:b8:30:8c:d7:f7:4a:42:6b:30:fb:d5:
56:e2:05:19:b8:ed:4b:da:c4:2e:f8:f1:b9:cf:e6:
37:9d:58:c2:4e:8e:71:86:58:b4:26:78:6e:35:80:
7d:1f:3b:00:02:94:d7:95:e5:ca:e4:af:9e:8e:5b:
eb:e2:b5:91:ec:7d:16:da:90:59:24:57:fc:be:97:
04:28:69:3e:98:1b:a3:a2:a6:63:d0:53:f6:20:41:
7c:12:43:da:d4:0a:7b:42:87:1c:2f:95:a6:0b:23:
0f:36:65:d7:ba:f7:75:b4:06:08:45:85:a9:29:e0:
e3:47:48:09:97:66:b7:9f:6d:f7:26:3d:11:9c:34:
90:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:55:CE:96:DF:18:C0:75:D6:35:3A:1E:2C:49:60:3B:B4:6D:62:C8
X509v3 Authority Key Identifier:
keyid:A9:0D:9A:C2:EF:11:D5:46:93:75:D6:DE:6C:6B:F7:21:12:9E:3B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ2awu8R1UaTddbebGv3IRKeO3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/D1XOlt8YwHXWNToeLElgO7RtYsg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/59c24e-a21f-46b2-9ea1-b3a6707ead04/1/qQ2awu8R1UaTddbebGv3IRKeO3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.168.54.0/24
Signature Algorithm: sha256WithRSAEncryption
be:5a:16:1c:93:35:20:81:ba:91:59:e1:67:ed:e0:db:84:b7:
94:7c:19:56:49:14:6d:a5:14:a2:55:99:81:de:3a:ee:ea:51:
58:e3:42:c8:fa:39:79:83:60:c2:01:25:a0:7c:4a:99:f1:6a:
39:87:0a:b3:f7:a7:07:e3:2b:01:a4:92:2b:e6:4f:98:46:f6:
36:4e:d8:71:39:5f:5b:03:de:4f:7a:28:30:f9:ff:1c:ec:8c:
54:0d:2e:cb:e0:63:bb:81:91:8f:4b:2a:94:b4:85:c7:50:38:
27:ee:a4:ca:cd:a3:64:a6:46:0d:15:32:a7:80:d0:9f:88:b3:
6c:78:3f:54:27:5e:93:ed:08:5e:7c:2a:98:18:48:1f:cc:00:
a0:8e:23:23:a3:32:ca:23:e4:b2:f7:34:07:cc:47:9b:16:7a:
7f:c0:c1:62:96:c7:4c:26:39:df:81:2a:98:e3:4d:a1:f6:a2:
c0:29:8a:46:52:8f:c5:e9:cc:87:fc:59:b6:0a:2e:30:2a:61:
f1:20:d3:9c:c6:18:f0:9e:1e:78:de:aa:c1:2d:ba:02:b9:5a:
ed:f5:03:24:f5:b2:94:b7:14:ec:24:a3:90:a4:1e:2a:0f:13:
44:ff:f3:85:79:d2:20:6b:60:85:67:61:8b:f6:43:02:6d:d7:
84:09:94:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:28 2024 by rpki-client on console-ams.rpki-client.org