Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/m80ze79NExmm73AhhRjE5YhYi_k.roa
File: m80ze79NExmm73AhhRjE5YhYi_k.roa (raw, json)
Hash identifier: icxiaNoLbtjNEjxqKYwZ53f/8vzsqzxWVhP6jZEuyEA=
Subject key identifier: 9B:CD:33:7B:BF:4D:13:19:A6:EF:70:21:85:18:C4:E5:88:58:8B:F9
Certificate issuer: /CN=93d43d499868091bbdc47d95aee1c9099f005620
Certificate serial: 08049FD3
Authority key identifier: 93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/m80ze79NExmm73AhhRjE5YhYi_k.roa
Signing time: Sat 01 Jan 2022 01:53:35 +0000
ROA not before: Sat 01 Jan 2022 01:53:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6707
IP address blocks: 193.28.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134520787 (0x8049fd3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93d43d499868091bbdc47d95aee1c9099f005620
Validity
Not Before: Jan 1 01:53:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bcd337bbf4d1319a6ef70218518c4e588588bf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:01:ea:43:c2:d2:2a:cb:8c:0b:81:7b:a8:
5c:0b:bf:b2:44:0f:c4:b6:b5:7e:5f:18:a2:c1:57:
cc:cb:8c:d7:90:24:c2:c7:33:fb:ea:8c:76:78:08:
b7:53:4a:cf:2f:7f:db:38:eb:a3:d6:bc:96:1f:ff:
f1:65:64:13:e9:0c:2b:97:ae:eb:f7:59:e8:d3:b8:
25:18:4b:88:42:65:7e:bd:83:32:7a:dc:bb:2c:bb:
cc:5c:c0:fd:32:48:b5:50:21:8d:fe:a5:da:2c:6a:
f6:6c:4b:80:f6:04:26:c7:78:3f:df:fb:11:65:14:
26:f1:8c:df:2e:31:df:e6:dd:90:b7:2e:55:04:b2:
fe:38:85:56:c7:cd:b9:bb:2c:81:4f:3d:f1:29:44:
c8:83:46:6c:c0:c5:48:7a:40:74:9a:c6:ac:20:6c:
9b:67:35:31:c7:59:b5:8c:92:f3:cd:77:df:e2:e7:
ad:39:51:95:00:f7:f5:f0:c1:7b:51:49:a9:fe:0c:
8f:e8:83:29:6f:54:22:2f:15:74:b9:55:3a:b2:33:
12:e1:a9:2e:4b:6a:69:95:f0:c9:50:c1:51:43:44:
3c:47:f7:dc:59:0a:68:ec:57:1a:80:b7:74:50:35:
39:87:b9:ff:88:cc:bd:aa:ab:50:a5:a9:34:c3:ab:
88:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CD:33:7B:BF:4D:13:19:A6:EF:70:21:85:18:C4:E5:88:58:8B:F9
X509v3 Authority Key Identifier:
keyid:93:D4:3D:49:98:68:09:1B:BD:C4:7D:95:AE:E1:C9:09:9F:00:56:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9Q9SZhoCRu9xH2VruHJCZ8AViA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/m80ze79NExmm73AhhRjE5YhYi_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/6b08c2-5c3a-4288-844b-7fe42ff4dcd8/1/k9Q9SZhoCRu9xH2VruHJCZ8AViA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.225.0/24
Signature Algorithm: sha256WithRSAEncryption
51:dc:a2:32:32:e6:03:c6:ef:10:83:e8:c4:b8:3f:a2:1a:ae:
67:11:06:65:f5:7a:25:e6:56:9d:74:fa:a2:ad:a7:64:d9:9f:
5b:20:2f:ba:ab:77:52:94:50:88:1d:cb:6b:ed:a1:30:31:2b:
04:ea:7b:31:b2:74:a6:75:9c:22:f3:f6:f5:ef:95:d6:f9:5d:
88:13:05:0e:e1:4f:cc:c2:15:bf:47:52:1c:a3:64:1d:3a:ff:
9d:af:f9:52:68:16:75:24:5d:8d:0f:82:08:b8:29:2c:5b:6b:
f6:f1:54:aa:4b:53:6d:5c:8f:24:41:ca:eb:84:0e:d9:8e:b1:
9c:bb:12:9f:ce:9f:8b:84:c6:6e:4d:c8:ac:f9:b3:5e:b4:27:
ea:a0:98:c8:63:ac:13:e3:5a:16:9a:10:a9:b7:ad:6e:35:d1:
61:5b:5f:b5:1e:88:42:71:b6:a6:86:bb:48:cf:54:9b:28:62:
bb:0c:bd:50:06:bc:d0:c4:aa:4d:14:43:bf:56:13:cf:ae:ca:
fe:96:ac:ff:3b:92:6d:e3:f0:dd:a5:0c:9b:d8:d7:cc:7d:09:
b1:5d:36:b2:e0:1b:29:91:ed:d0:0f:40:42:0d:d8:58:7a:97:
0e:f0:a6:2f:fc:84:65:a7:96:97:3f:36:c9:40:58:55:cc:f1:
59:44:ac:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:53 2024 by rpki-client on console-ams.rpki-client.org