Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/63fOV83Sysz8sB8KkDVU_QXCq8A.roa
File: 63fOV83Sysz8sB8KkDVU_QXCq8A.roa (raw, json)
Hash identifier: eKeLgc5JvTJyEsDKxMAXRh+pfp/NUNTUCNmKvjuAGis=
Subject key identifier: EB:77:CE:57:CD:D2:CA:CC:FC:B0:1F:0A:90:35:54:FD:05:C2:AB:C0
Certificate issuer: /CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Certificate serial: 01837F242D9F0CD7947F097271F13CB92B18
Authority key identifier: 5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/63fOV83Sysz8sB8KkDVU_QXCq8A.roa
Signing time: Tue 27 Sep 2022 13:30:20 +0000
ROA not before: Tue 27 Sep 2022 13:30:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49282
IP address blocks: 185.196.102.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:24:2d:9f:0c:d7:94:7f:09:72:71:f1:3c:b9:2b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce1aae0c93ad04b7298082b68bf6a54fa68bcf0
Validity
Not Before: Sep 27 13:30:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb77ce57cdd2caccfcb01f0a903554fd05c2abc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:cb:e7:f7:89:f4:76:04:69:71:7c:97:78:04:
f9:0b:eb:fa:04:dd:fc:89:3b:6d:d2:61:86:50:8c:
5c:21:4e:c9:d0:1c:6d:30:cc:db:14:b3:a5:d8:64:
83:54:f7:9f:2a:24:e2:ef:f7:5b:b9:d4:03:97:45:
e9:36:99:3e:fe:ad:6d:98:86:8f:21:a5:41:ad:8a:
8e:d2:82:92:2b:db:ba:17:a6:fb:81:53:ce:5f:21:
90:11:9c:3c:e6:22:26:99:13:90:6b:04:16:f5:45:
f6:5b:44:75:55:3d:b5:7d:f3:d4:d4:93:bc:9f:bb:
5c:07:ec:3c:a3:a0:f9:93:8b:03:00:62:74:da:0a:
f7:b5:bd:0d:87:c5:3a:3c:c8:00:6d:0f:e5:a2:b3:
b7:38:1c:0e:5a:8a:16:d1:b1:53:89:b9:4b:aa:20:
db:0a:33:de:7a:5a:0c:00:68:9d:09:06:e9:65:2b:
29:a6:6b:c6:79:ad:4f:d5:74:43:22:8d:64:51:d3:
a4:40:67:e5:f4:03:1e:d2:7a:af:69:46:8b:82:9b:
22:5c:f4:5a:89:19:0b:78:88:a4:27:8f:44:ca:8f:
be:49:71:96:26:b6:db:bc:1f:ba:c5:66:22:2d:b2:
79:e1:2b:3a:0b:d5:5a:18:bd:f2:8f:ba:bb:8d:3a:
b0:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:77:CE:57:CD:D2:CA:CC:FC:B0:1F:0A:90:35:54:FD:05:C2:AB:C0
X509v3 Authority Key Identifier:
keyid:5C:E1:AA:E0:C9:3A:D0:4B:72:98:08:2B:68:BF:6A:54:FA:68:BC:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOGq4Mk60EtymAgraL9qVPpovPA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/63fOV83Sysz8sB8KkDVU_QXCq8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ff3618-7032-4143-9374-ba1418d22087/1/XOGq4Mk60EtymAgraL9qVPpovPA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.196.102.0/24
Signature Algorithm: sha256WithRSAEncryption
90:f7:63:89:f6:a2:88:59:58:3e:2b:cb:23:fc:e4:1c:4a:08:
f8:18:7f:8e:69:53:2f:80:de:66:de:2b:a4:30:5e:2d:99:80:
46:4b:8f:2a:5d:a0:84:86:2b:06:2d:37:fa:fb:d2:67:95:55:
6b:95:91:66:a9:db:b2:1a:b0:a4:ca:7b:d2:27:62:df:84:65:
f9:f3:aa:d4:d1:e0:b7:83:69:47:69:e6:80:88:ea:b9:d4:aa:
09:7d:a2:2b:80:9c:24:2d:36:8f:d6:91:c9:12:00:1e:2f:f2:
c7:0c:21:3a:07:92:9d:b6:93:64:e2:a6:13:a5:67:94:66:da:
1b:9f:d8:a2:48:1f:a0:43:e5:02:59:cf:aa:0c:83:3e:a7:a1:
fe:a3:b6:88:89:60:74:d6:6e:3c:44:78:3d:62:bf:81:47:f0:
8e:0b:8a:8e:8c:16:64:5c:05:54:2f:8b:50:54:8b:dd:82:59:
5c:a0:b0:1c:22:10:fe:62:d2:a5:f5:b1:9d:1a:eb:a5:d0:5e:
07:f2:b7:e0:f4:6f:e8:4a:82:40:31:aa:7e:9b:c6:6d:ac:93:
83:7b:2b:3f:e8:82:59:c6:7b:fe:db:b8:5b:25:e3:dc:22:c8:
2b:0a:fc:36:ff:a5:f8:27:fd:fa:b4:bd:94:20:00:95:ab:d5:
e9:9b:cf:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:45 2024 by rpki-client on console-fra.rpki-client.org