Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/500a8c-6a2d-434b-96f1-18eb779a6497/1/1-AMVVl_dndCayMOX9Eg19Tp88yA.roa
File: 1-AMVVl_dndCayMOX9Eg19Tp88yA.roa (raw, json)
Hash identifier: TbbRYpMicgxhheOzqcifeZSCZLn7H2izY8JKp8XFSn8=
Subject key identifier: F8:03:15:56:5F:DD:9D:D0:9A:C8:C3:97:F4:48:35:F5:3A:7C:F3:20
Certificate issuer: /CN=a88ad546f1a0ef8cf75c92a748bd5c86362e209b
Certificate serial: 018557E8A0979D48705D27D11E46132DC369
Authority key identifier: A8:8A:D5:46:F1:A0:EF:8C:F7:5C:92:A7:48:BD:5C:86:36:2E:20:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qIrVRvGg74z3XJKnSL1chjYuIJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/500a8c-6a2d-434b-96f1-18eb779a6497/1/1-AMVVl_dndCayMOX9Eg19Tp88yA.roa
Signing time: Wed 28 Dec 2022 08:45:41 +0000
ROA not before: Wed 28 Dec 2022 08:45:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 193.31.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:57:e8:a0:97:9d:48:70:5d:27:d1:1e:46:13:2d:c3:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a88ad546f1a0ef8cf75c92a748bd5c86362e209b
Validity
Not Before: Dec 28 08:45:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f80315565fdd9dd09ac8c397f44835f53a7cf320
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5d:ab:23:bf:3f:17:ab:62:a7:f8:b4:6d:9a:
61:aa:3c:d0:b5:3f:c8:de:3c:46:04:1c:e8:29:f4:
e9:ac:70:7e:37:a1:09:4d:d1:10:52:c2:b3:82:cb:
60:76:6c:7c:a0:65:f8:2e:ed:8b:0f:72:fb:f4:36:
7b:12:ce:43:a3:47:4b:27:38:e8:27:7f:e3:72:e4:
a2:f8:d9:29:6e:67:08:eb:68:cc:a9:32:d0:7c:bc:
15:e7:c8:5f:72:e4:9a:67:ab:72:1c:91:8c:c0:76:
61:6c:d7:3c:97:91:e8:3b:09:a6:1c:1c:dc:50:a2:
f1:18:cd:9f:33:e8:79:4b:62:d4:c8:ef:1c:fd:ae:
79:cf:8d:77:dc:04:f6:8b:de:8d:dd:bd:70:d2:30:
90:d9:f3:ca:d5:42:dc:ef:dc:58:c7:b9:af:12:f1:
92:0f:0c:dd:b7:53:07:e5:65:66:1f:47:6d:11:e3:
b6:e0:9d:81:ed:1f:18:12:65:90:20:71:f9:1a:7f:
af:2c:fc:a7:50:0e:e7:0b:28:bf:d0:d2:fd:d0:bf:
7f:97:f4:d0:b7:49:16:a7:4f:83:94:59:f7:89:34:
99:fc:df:85:aa:3a:47:6f:aa:b1:12:2d:4f:89:5e:
96:6c:4c:c9:c2:8a:5d:41:7f:38:b1:9f:99:52:dc:
09:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:03:15:56:5F:DD:9D:D0:9A:C8:C3:97:F4:48:35:F5:3A:7C:F3:20
X509v3 Authority Key Identifier:
keyid:A8:8A:D5:46:F1:A0:EF:8C:F7:5C:92:A7:48:BD:5C:86:36:2E:20:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qIrVRvGg74z3XJKnSL1chjYuIJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/500a8c-6a2d-434b-96f1-18eb779a6497/1/1-AMVVl_dndCayMOX9Eg19Tp88yA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/500a8c-6a2d-434b-96f1-18eb779a6497/1/qIrVRvGg74z3XJKnSL1chjYuIJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.111.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:b8:d4:1e:85:23:43:ac:13:49:38:19:f2:24:e2:a2:e7:f8:
53:12:69:81:a8:1e:6b:13:64:1a:3a:bd:17:a1:51:43:08:1a:
00:d2:4f:5e:85:b6:5c:3b:c4:a2:67:c7:f0:be:49:05:51:c3:
dd:99:80:d6:21:90:5c:f9:22:c8:0a:35:67:07:81:cd:72:73:
e2:6e:f0:9b:33:20:3f:6b:73:61:92:66:30:64:c2:12:5e:27:
26:de:b9:b7:16:14:ec:c0:f7:72:ec:db:0e:22:92:a5:bb:cc:
fe:04:02:b1:b3:ef:93:56:fd:fa:e0:b5:0e:3c:18:89:39:74:
d2:5a:ce:04:e9:76:92:4d:6e:df:9d:ed:8e:7a:34:20:56:36:
e4:27:84:59:6c:10:46:21:1a:05:6c:e2:f7:27:4f:97:53:4e:
92:5a:07:d5:86:ef:85:89:cf:ea:8c:0f:8c:47:97:4b:6f:fc:
d0:b0:bd:ad:dd:81:65:00:24:07:43:26:e1:c0:c6:43:0e:38:
e6:1c:5b:dc:26:87:f8:e1:3f:e5:0b:32:b0:0c:fa:fb:5b:65:
3d:09:15:1c:49:9d:80:91:c9:c6:7d:91:6d:73:0b:da:04:0a:
d5:96:48:26:1c:06:86:0e:05:27:cd:64:35:da:2b:3b:e1:be:
b9:68:66:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:29 2024 by rpki-client on console-fra.rpki-client.org