Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/onTYfIUxufNO0-2TaT_CUwQ1THA.roa
File: onTYfIUxufNO0-2TaT_CUwQ1THA.roa (raw, json)
Hash identifier: iU9EXerHmtNnWS8+qXh6vRLBpuTtN44lpLLNa6tMPyg=
Subject key identifier: A2:74:D8:7C:85:31:B9:F3:4E:D3:ED:93:69:3F:C2:53:04:35:4C:70
Certificate issuer: /CN=6ac34e49fba9640b83eabaafba9c4ab96c8c3544
Certificate serial: 017EC4AE
Authority key identifier: 6A:C3:4E:49:FB:A9:64:0B:83:EA:BA:AF:BA:9C:4A:B9:6C:8C:35:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/asNOSfupZAuD6rqvupxKuWyMNUQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/onTYfIUxufNO0-2TaT_CUwQ1THA.roa
Signing time: Wed 02 Mar 2022 13:13:55 +0000
ROA not before: Wed 02 Mar 2022 13:13:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15827
IP address blocks: 193.41.45.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25085102 (0x17ec4ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ac34e49fba9640b83eabaafba9c4ab96c8c3544
Validity
Not Before: Mar 2 13:13:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a274d87c8531b9f34ed3ed93693fc25304354c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:cc:4d:e7:23:08:98:f4:9e:06:44:75:f7:17:
b2:2c:41:d6:a4:0e:1c:97:93:8c:f6:ce:a9:5a:8b:
c9:c5:fe:13:64:1f:5e:38:3e:9b:bf:9d:19:b4:5d:
2f:84:67:65:33:30:e7:5c:cc:29:4b:46:92:5c:15:
df:4a:c7:5e:1f:c0:95:26:d2:86:28:19:7a:f8:e2:
20:60:3d:ea:eb:be:5e:df:5d:b0:f5:d5:04:7d:4c:
7a:2f:64:f4:e5:57:3f:03:49:c3:4d:6a:18:57:c7:
de:1b:21:30:6c:11:28:44:61:68:66:89:62:4f:a9:
22:82:eb:5d:b5:e5:58:36:6b:40:e3:34:22:e7:30:
50:c6:56:b8:7b:2b:d8:1a:bf:71:ac:01:40:1b:94:
37:aa:80:75:7d:27:3a:e1:36:c5:22:74:01:2f:3b:
1b:04:a0:49:c8:d8:1c:ca:ba:47:90:9b:d6:09:61:
7d:be:4c:22:51:ef:d1:a4:6b:d4:d4:6b:6f:ff:54:
54:09:7d:2c:45:96:dc:06:c5:e4:66:31:92:09:5a:
88:09:67:d9:21:54:e4:64:ee:e1:87:41:ac:fd:fd:
40:87:88:d3:09:c2:77:17:a0:21:b0:9b:c9:2a:1d:
fa:3d:04:0f:6b:5b:db:7e:08:41:44:27:b0:a5:8d:
b6:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:74:D8:7C:85:31:B9:F3:4E:D3:ED:93:69:3F:C2:53:04:35:4C:70
X509v3 Authority Key Identifier:
keyid:6A:C3:4E:49:FB:A9:64:0B:83:EA:BA:AF:BA:9C:4A:B9:6C:8C:35:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/asNOSfupZAuD6rqvupxKuWyMNUQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/onTYfIUxufNO0-2TaT_CUwQ1THA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/1befb9-c103-40af-8970-93c4568b103b/1/asNOSfupZAuD6rqvupxKuWyMNUQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.41.45.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:df:6e:09:3d:a2:c7:f5:76:ba:c9:fd:e3:6d:87:dd:f8:fe:
df:94:c6:db:23:01:fa:65:4e:93:a6:50:30:71:8e:6d:c5:5b:
85:60:ea:b4:f4:bb:57:67:44:80:9c:f1:31:61:e5:c2:4c:97:
a0:59:5a:8e:3e:20:b0:e5:79:93:eb:a7:9a:8f:99:71:69:6c:
72:e4:b6:aa:7c:90:75:f8:83:e2:d6:bb:58:a7:d9:d0:2b:62:
8f:9f:09:34:c3:08:7a:c9:cc:f0:c2:ad:c3:3c:46:82:68:b6:
b6:8f:b1:7b:5d:03:97:ef:50:99:2d:3e:e4:da:0f:df:db:41:
c0:bf:66:dd:8c:ca:0e:ab:ce:60:8e:71:33:c6:c4:85:7c:dd:
a1:90:84:9f:23:61:6e:5f:ca:d0:b8:33:52:58:d5:7d:5c:ab:
cb:24:65:ea:f6:a1:be:fe:90:f6:3b:a0:47:4f:4b:4d:69:7c:
20:5f:2f:09:75:63:97:bf:c5:84:b9:b6:01:b6:ce:a0:9b:55:
1a:62:1b:da:e2:db:1d:5a:9f:a7:c1:0c:a5:0a:bf:68:45:04:
cd:6d:2d:c5:9b:43:7c:dd:fb:ae:84:73:27:b4:99:f1:f2:b5:
98:42:c3:6c:08:c3:a8:ef:d8:3a:30:c5:43:74:7b:8d:c5:44:
52:59:c0:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:04 2024 by rpki-client on console-ams.rpki-client.org