Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/U1Kh0lMW-NfdIGNqAzxquYNU0t4.roa
File: U1Kh0lMW-NfdIGNqAzxquYNU0t4.roa (raw, json)
Hash identifier: GBafH+jameOIvA+lKojvYfVpyoNIQrHjIufMD0d8tlI=
Subject key identifier: 53:52:A1:D2:53:16:F8:D7:DD:20:63:6A:03:3C:6A:B9:83:54:D2:DE
Certificate issuer: /CN=f02e3224e3e32928192628d26487d500f2707765
Certificate serial: 18A1E996
Authority key identifier: F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/U1Kh0lMW-NfdIGNqAzxquYNU0t4.roa
Signing time: Sat 01 Jan 2022 12:58:22 +0000
ROA not before: Sat 01 Jan 2022 12:58:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204642
IP address blocks: 193.203.96.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 413264278 (0x18a1e996)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02e3224e3e32928192628d26487d500f2707765
Validity
Not Before: Jan 1 12:58:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5352a1d25316f8d7dd20636a033c6ab98354d2de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:fe:0a:b9:d8:7d:50:86:fb:ef:ca:59:a1:30:
97:ad:b7:69:67:29:56:9a:ad:d7:10:f3:41:f5:0a:
86:af:7a:24:b9:f3:14:90:de:a2:7a:3a:4c:0a:49:
8e:16:96:3e:4f:d7:68:71:60:08:a0:6b:d8:8d:6a:
8a:e7:f6:d8:a4:be:42:2f:bf:bc:dc:0a:94:24:65:
d1:56:fa:98:aa:83:65:0a:f5:c4:b4:eb:f9:83:fd:
81:fc:a4:6b:5c:fb:df:fa:4f:d3:44:e3:6a:6e:db:
de:3e:c5:37:91:3d:7e:7f:5b:ce:d8:96:7f:7c:56:
df:4e:aa:e3:d5:c8:a5:0d:dc:93:b2:09:d1:f3:1d:
4a:e2:29:b2:b0:3a:82:30:bd:e1:2b:54:56:f1:f8:
4c:eb:5d:c4:e0:ec:6d:7a:73:ec:9d:bd:25:d8:cb:
53:11:56:a6:09:97:c9:15:8a:e4:b8:4b:1e:7b:3a:
57:ae:a1:20:9b:fc:1e:da:30:aa:3a:b6:46:d5:10:
4d:05:30:7b:8f:48:71:c2:d2:2f:a1:7c:52:bb:09:
0f:f9:8e:5a:d1:e7:3f:b9:cb:16:55:bd:f2:01:2d:
31:a8:54:e1:6d:e3:ff:1b:da:5f:a0:6a:00:3a:c7:
5b:0a:c6:70:78:36:0c:a5:75:11:d0:81:c0:15:48:
80:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:52:A1:D2:53:16:F8:D7:DD:20:63:6A:03:3C:6A:B9:83:54:D2:DE
X509v3 Authority Key Identifier:
keyid:F0:2E:32:24:E3:E3:29:28:19:26:28:D2:64:87:D5:00:F2:70:77:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C4yJOPjKSgZJijSZIfVAPJwd2U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/U1Kh0lMW-NfdIGNqAzxquYNU0t4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/268890-d509-451e-b9ee-fb9953c07f15/1/8C4yJOPjKSgZJijSZIfVAPJwd2U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.203.96.0/23
Signature Algorithm: sha256WithRSAEncryption
93:58:cb:8b:55:31:f4:ff:61:13:55:c8:7f:c1:b2:ae:de:38:
0e:27:25:59:1d:49:3b:69:3a:a5:88:14:d6:ac:01:64:31:8b:
e1:30:8c:f1:98:de:92:36:ce:79:fc:d8:76:26:b4:28:2e:9c:
0c:b2:e0:4b:bb:e7:a0:4e:52:a1:7a:f9:5e:19:19:43:62:06:
1f:eb:28:76:68:a0:b0:ef:a8:4b:67:8a:6f:40:9b:5a:0d:c9:
db:bf:10:a8:25:09:0c:f0:da:ac:05:e3:9e:e6:cc:86:fc:65:
68:7e:11:34:e7:0d:65:0e:83:36:54:f0:10:19:d8:e3:7d:36:
00:f1:a3:e0:06:b8:40:db:7f:01:1a:69:e4:e4:f0:42:cd:a2:
33:20:9b:f0:e1:06:dc:39:df:55:50:22:e8:0e:31:fa:b4:d9:
5f:a3:b0:b4:3d:a1:cf:bb:83:d7:eb:ce:b7:ee:61:7a:ed:c2:
a9:b0:b5:d6:77:9d:a9:b2:82:f2:db:cc:fc:4e:74:42:a2:c0:
cf:dd:98:1a:92:38:98:d0:4c:af:6e:d1:43:47:07:82:6c:6e:
ea:f1:72:3a:ab:f4:80:24:f4:f5:b7:0b:d0:8a:7a:38:86:1d:
7d:59:44:02:71:72:c6:46:29:c8:0c:7c:20:ee:3f:84:b9:a3:
01:67:82:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:09 2024 by rpki-client on console-fra.rpki-client.org