Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/PD0GBLj1ADs348PRQ1LH6Ag_IgE.roa
File: PD0GBLj1ADs348PRQ1LH6Ag_IgE.roa (raw, json)
Hash identifier: 4wQprwDKKce2mGajuZ6eIvygEpkUrIkHt1HvpFdyZb8=
Subject key identifier: 3C:3D:06:04:B8:F5:00:3B:37:E3:C3:D1:43:52:C7:E8:08:3F:22:01
Certificate issuer: /CN=9be228d713bec6d4c9abcec2f00a28e821fc27bf
Certificate serial: 07A04218
Authority key identifier: 9B:E2:28:D7:13:BE:C6:D4:C9:AB:CE:C2:F0:0A:28:E8:21:FC:27:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m-Io1xO-xtTJq87C8Aoo6CH8J78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/PD0GBLj1ADs348PRQ1LH6Ag_IgE.roa
Signing time: Sat 01 Jan 2022 14:05:32 +0000
ROA not before: Sat 01 Jan 2022 14:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12586
IP address blocks: 193.238.124.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127943192 (0x7a04218)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9be228d713bec6d4c9abcec2f00a28e821fc27bf
Validity
Not Before: Jan 1 14:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c3d0604b8f5003b37e3c3d14352c7e8083f2201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:87:5e:3b:3a:f9:6c:8f:78:77:e5:07:0d:24:
1a:84:42:01:e3:9f:95:7a:57:95:b1:b0:e7:5f:d3:
4a:2f:03:55:a0:85:f8:95:8d:e4:e6:be:2b:7f:74:
45:d9:64:0d:99:b9:66:e7:6d:1a:b6:5b:be:84:53:
75:70:6e:f6:46:ad:09:cb:23:73:64:b9:8e:a8:81:
c2:7b:39:73:7f:16:23:e2:58:0f:6d:38:bf:fe:19:
16:f8:bc:82:12:03:ff:6e:6b:a0:e5:af:64:d7:bc:
cf:b5:72:c4:1a:ab:1a:02:50:2b:2e:28:d7:53:9f:
65:5a:f0:a0:4f:57:a3:b9:b0:ef:18:29:9d:b3:80:
3d:40:2c:dc:fd:46:85:b9:84:e0:4e:25:3b:6c:31:
99:19:53:a9:ab:a7:73:79:31:49:12:f1:6e:38:29:
54:c9:ba:52:6e:05:56:ca:bb:b9:0e:b0:a4:0c:7f:
52:0f:91:dd:3f:0e:8c:7d:86:ea:b3:fb:ca:18:e8:
d4:dc:42:d9:01:7a:b0:8f:7b:f1:9f:ba:c4:c9:17:
f4:4c:9d:3d:d4:93:e7:c1:60:19:76:74:1b:c8:29:
94:ce:91:0f:c2:f7:f1:d5:9b:c3:41:aa:cc:43:67:
cb:87:dc:3e:f3:08:0b:2d:43:0c:3e:9e:7c:fb:0c:
a1:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3D:06:04:B8:F5:00:3B:37:E3:C3:D1:43:52:C7:E8:08:3F:22:01
X509v3 Authority Key Identifier:
keyid:9B:E2:28:D7:13:BE:C6:D4:C9:AB:CE:C2:F0:0A:28:E8:21:FC:27:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m-Io1xO-xtTJq87C8Aoo6CH8J78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/PD0GBLj1ADs348PRQ1LH6Ag_IgE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/79f15a-5cba-4d40-b30b-e35a223b49c7/1/m-Io1xO-xtTJq87C8Aoo6CH8J78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.238.124.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:fd:f0:ed:16:ad:53:ba:80:b6:43:c1:10:f4:95:5b:a4:25:
bb:48:22:78:9d:44:2b:6d:6c:13:a1:5a:c4:65:7e:a6:5f:29:
71:d0:43:40:df:96:1a:b4:bc:c5:3d:a2:25:78:e9:37:07:cc:
48:8b:60:85:d9:ff:21:a8:db:30:7f:18:b5:fb:62:37:fb:0c:
27:75:7a:12:61:39:30:a3:b3:5b:82:0e:b7:03:0d:1f:58:4c:
6b:7a:d9:74:a8:4e:19:db:48:e6:8c:02:df:08:72:e2:78:00:
37:b1:31:16:a6:4a:53:58:3b:b2:ab:9d:2f:99:0d:c6:e8:c7:
08:ca:37:51:fd:34:49:ed:72:e4:0d:c9:68:cd:80:db:dc:da:
42:54:00:ba:22:0b:77:6b:d8:bf:39:c5:7f:ef:0d:9d:3b:6e:
f6:0a:3f:5f:5c:37:74:61:9c:b3:a7:3c:14:0f:67:98:2d:05:
74:12:6d:08:f9:46:2b:8d:34:4e:5c:dd:e6:bf:e3:bd:41:18:
0e:1f:ff:5c:50:dc:d4:9e:69:40:9f:6e:a5:86:8b:d0:33:b2:
77:52:fe:83:53:8f:bf:57:2b:9a:76:f0:b9:a9:f3:e4:72:58:
ad:31:d9:9a:b3:a1:de:a2:ca:03:3a:a2:6d:9e:50:e5:13:76:
a5:e1:af:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:01 2024 by rpki-client on console-fra.rpki-client.org