Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/g1t48AKYU3KSf7LDSNANsJh8Lvg.roa
File: g1t48AKYU3KSf7LDSNANsJh8Lvg.roa (raw, json)
Hash identifier: DaKAtCgue3u5e0XBiVRi88mIsfC9epzBzzbyZRELYpg=
Subject key identifier: 83:5B:78:F0:02:98:53:72:92:7F:B2:C3:48:D0:0D:B0:98:7C:2E:F8
Certificate issuer: /CN=60096e374092cc300bd0bb06c41640932ecf8b49
Certificate serial: 09516849
Authority key identifier: 60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/g1t48AKYU3KSf7LDSNANsJh8Lvg.roa
Signing time: Sat 01 Jan 2022 09:56:49 +0000
ROA not before: Sat 01 Jan 2022 09:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15598
IP address blocks: 193.238.27.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 156330057 (0x9516849)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60096e374092cc300bd0bb06c41640932ecf8b49
Validity
Not Before: Jan 1 09:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=835b78f002985372927fb2c348d00db0987c2ef8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f8:4b:95:cc:11:c8:f8:47:db:99:e9:67:76:
c7:a8:a6:b2:fc:ff:0c:00:b2:f9:71:92:17:70:4a:
da:e4:ed:1e:4c:69:ba:3d:02:bb:a1:05:7a:6e:ff:
45:c5:cb:fd:b2:c2:d8:10:df:5e:ac:53:86:5d:02:
b8:16:4c:73:3a:74:a0:7c:68:17:a5:e9:dc:6e:0d:
30:e5:97:f9:c3:34:bf:7d:14:4f:b8:87:67:84:43:
8a:23:27:b2:8b:1b:97:36:d0:ac:33:e0:d8:4f:10:
80:6d:f5:28:60:00:94:3e:58:0c:e6:e6:b9:37:d2:
83:0d:92:fd:89:cd:5b:b1:cb:9e:d6:74:38:1e:a3:
57:a7:12:7e:8b:6b:13:e5:6f:0e:ab:33:30:f4:54:
24:45:ff:76:b5:03:ea:6a:ef:3d:50:50:9d:66:e5:
56:a9:93:1a:6c:ba:32:8d:a3:18:4f:c8:db:b7:46:
23:3e:32:88:f6:1a:aa:08:f8:21:ce:92:cd:08:3c:
96:a0:0f:03:83:d3:92:50:e2:73:e9:d6:a6:61:7a:
cf:66:4a:43:dc:8d:67:69:fd:65:3a:0b:19:87:f2:
7b:b3:c6:1e:6f:95:4c:3e:2a:28:12:bd:4b:4f:8b:
86:a6:39:24:d7:c0:b7:bc:49:e2:4a:c2:01:e8:94:
58:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:5B:78:F0:02:98:53:72:92:7F:B2:C3:48:D0:0D:B0:98:7C:2E:F8
X509v3 Authority Key Identifier:
keyid:60:09:6E:37:40:92:CC:30:0B:D0:BB:06:C4:16:40:93:2E:CF:8B:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YAluN0CSzDAL0LsGxBZAky7Pi0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/g1t48AKYU3KSf7LDSNANsJh8Lvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/91cfe7-5c2d-474a-b587-c45852c7be20/1/YAluN0CSzDAL0LsGxBZAky7Pi0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.27.0/24
Signature Algorithm: sha256WithRSAEncryption
26:33:eb:5a:e8:78:cb:18:ce:87:cb:3f:ad:17:24:18:d7:df:
05:56:58:2f:2e:6a:ac:b1:7e:cb:e5:19:b4:cc:16:8f:62:52:
24:8b:79:95:25:3c:cf:eb:cc:3b:a7:13:43:7c:78:41:51:39:
f0:0d:68:25:9d:69:4e:37:66:2b:fb:c0:f6:e0:1b:6e:ec:61:
60:08:9c:57:fd:87:8b:38:b4:95:26:27:cc:85:d9:bf:07:41:
54:d4:44:d3:c1:b6:3c:7a:5e:4f:52:f3:8c:4f:9e:86:e6:25:
b9:6b:45:0e:a6:e1:0b:ce:65:30:45:86:b8:b5:62:8b:0d:a6:
50:19:cb:79:cd:fd:ab:73:38:f8:c9:3e:8d:f8:60:be:a6:9b:
eb:3e:97:b3:44:37:f1:6b:be:0a:5b:c9:b6:3d:57:15:83:ef:
79:31:3a:08:4c:32:f0:02:b9:61:43:2c:93:a4:d5:cd:fe:a9:
23:22:2c:03:11:ca:2c:b8:1a:be:d2:df:ea:0a:b7:d9:d8:51:
df:5f:9b:90:e5:95:ce:12:1d:cc:29:ee:47:4f:d4:ad:2f:88:
04:6d:d5:47:af:99:9a:ae:94:5e:a6:f0:8b:61:04:2f:a1:54:
74:6f:fb:98:69:eb:15:3f:3f:bb:ef:d7:24:e4:51:58:c6:6a:
89:07:8f:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:14 2024 by rpki-client on console-ams.rpki-client.org