Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/tGw3KgXF-7tHkrfJoszbIf4d0kg.roa
File: tGw3KgXF-7tHkrfJoszbIf4d0kg.roa (raw, json)
Hash identifier: bBL/1thIhR1VHtQS9IsMZHjXyfTA4dbYHq+WmOj/cS0=
Subject key identifier: B4:6C:37:2A:05:C5:FB:BB:47:92:B7:C9:A2:CC:DB:21:FE:1D:D2:48
Certificate issuer: /CN=66e92c341e769443fde1d27566044b4b65159060
Certificate serial: 0183602BDCC4654E3327CF880EE15107865C
Authority key identifier: 66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/tGw3KgXF-7tHkrfJoszbIf4d0kg.roa
Signing time: Wed 21 Sep 2022 13:10:30 +0000
ROA not before: Wed 21 Sep 2022 13:10:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202797
IP address blocks: 193.22.106.0/24 maxlen: 24
193.22.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:60:2b:dc:c4:65:4e:33:27:cf:88:0e:e1:51:07:86:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66e92c341e769443fde1d27566044b4b65159060
Validity
Not Before: Sep 21 13:10:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b46c372a05c5fbbb4792b7c9a2ccdb21fe1dd248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:43:ac:31:31:93:f2:d2:aa:bf:26:c6:02:6f:
fb:75:21:8e:6c:a1:9d:32:b8:2e:c0:c7:19:df:3b:
a4:bb:00:92:14:db:33:42:c8:a5:39:6e:9b:16:fa:
94:78:55:8f:57:d5:6a:4c:7b:91:5a:de:c3:99:65:
08:17:08:0d:f2:f8:ad:20:2d:ae:66:49:e4:f0:bb:
f5:b9:f0:e5:cc:96:e3:7f:88:01:e6:28:36:44:a9:
98:3b:16:49:02:e7:3a:6f:1f:26:1c:33:d7:28:fd:
ba:ca:5d:9c:16:31:b5:e7:9b:b1:fd:d6:a4:71:7f:
bc:2f:6a:d2:fe:d6:19:67:f8:f6:a8:fc:a5:d3:fc:
0e:fb:1f:4a:c7:bb:f4:58:c6:5e:85:41:ed:af:c2:
ea:8e:9e:9e:e4:6a:92:63:03:d6:16:b1:6b:71:f5:
37:67:f7:55:04:c8:95:f2:41:ea:8c:72:5e:cd:66:
ef:2b:cd:a8:23:14:e0:f8:06:fa:7a:cd:1f:57:aa:
1e:2f:b7:84:c8:90:73:24:c6:1d:2a:75:53:ea:39:
d3:07:73:1e:5a:fc:8c:28:92:ea:64:3b:34:f1:bc:
92:50:62:b0:07:23:d7:91:bb:c6:cd:0d:cd:ed:72:
78:9a:5a:19:c6:79:98:d7:12:a5:ed:07:7d:0e:e2:
b5:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6C:37:2A:05:C5:FB:BB:47:92:B7:C9:A2:CC:DB:21:FE:1D:D2:48
X509v3 Authority Key Identifier:
keyid:66:E9:2C:34:1E:76:94:43:FD:E1:D2:75:66:04:4B:4B:65:15:90:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZuksNB52lEP94dJ1ZgRLS2UVkGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/tGw3KgXF-7tHkrfJoszbIf4d0kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/8f1968-a79a-4a07-ace6-c1d296f8fd07/1/ZuksNB52lEP94dJ1ZgRLS2UVkGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.22.1.0/24
193.22.106.0/24
Signature Algorithm: sha256WithRSAEncryption
32:64:7b:7c:96:97:e5:49:3a:3b:87:1f:93:f0:52:51:1c:dc:
5f:a1:b2:41:73:4a:df:f0:5c:b6:6c:41:0d:8c:62:0a:66:1d:
7e:c9:cc:5e:94:37:56:88:3a:ac:8e:79:c8:76:ea:c2:b0:0f:
9c:8b:43:c7:ee:ad:41:d7:63:7b:cb:fb:aa:ce:25:10:4b:95:
42:49:22:cd:c1:62:f2:4d:7c:41:09:80:ea:d4:ee:80:1b:a4:
9a:e2:a8:51:40:41:1d:d1:2a:55:12:f9:69:a0:68:d1:ea:3f:
d5:a0:15:a7:e1:12:b7:42:38:cd:15:c8:e9:e1:7d:77:e7:05:
5a:32:b6:30:88:d0:dd:a1:5c:3d:68:4f:4f:50:d1:0c:9e:c1:
bb:04:60:48:35:4d:94:56:c3:2c:32:18:3a:30:31:1f:60:e0:
7d:e3:e4:35:69:08:6e:aa:63:c5:c1:b7:b9:3f:ce:89:f5:f8:
74:53:6e:75:df:7a:2d:cb:59:aa:10:65:bb:6e:26:9f:58:df:
3c:69:9b:e3:16:4e:96:62:d7:fc:2f:c0:5f:0e:1d:0a:c6:b6:
91:50:ab:d1:c9:df:87:80:e6:ae:11:40:98:a6:ad:5b:b0:e3:
b1:3d:6c:37:8b:84:f1:a8:d5:3a:a3:e0:4d:e2:0b:07:2d:11:
bd:72:57:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:22 2024 by rpki-client on console-fra.rpki-client.org