Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/RKEWPJzUttjB7iO2wLq78fJ4mV0.roa
File: RKEWPJzUttjB7iO2wLq78fJ4mV0.roa (raw, json)
Hash identifier: ekGqaf+CrUViwEz/1RDEP7B5JKM0zcwg+QzBDfy3KWI=
Subject key identifier: 44:A1:16:3C:9C:D4:B6:D8:C1:EE:23:B6:C0:BA:BB:F1:F2:78:99:5D
Certificate issuer: /CN=854bb7aa3908c998de3c42f7e1849538b0592617
Certificate serial: 01AF1B6D
Authority key identifier: 85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/RKEWPJzUttjB7iO2wLq78fJ4mV0.roa
Signing time: Thu 09 Jun 2022 07:16:02 +0000
ROA not before: Thu 09 Jun 2022 07:16:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205847
IP address blocks: 193.36.33.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28253037 (0x1af1b6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=854bb7aa3908c998de3c42f7e1849538b0592617
Validity
Not Before: Jun 9 07:16:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44a1163c9cd4b6d8c1ee23b6c0babbf1f278995d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:20:84:61:35:22:20:e7:6d:c2:90:ba:d8:0a:
63:7a:66:fb:ff:4b:d6:8c:87:36:e8:98:47:54:f6:
ac:ff:ae:57:7b:fd:54:32:ef:91:26:a6:28:d0:ad:
eb:d1:fb:ec:46:21:7d:9f:5e:b6:1c:51:a3:4d:2c:
fe:00:45:e4:d8:6e:54:a3:f1:dd:0f:db:08:9f:01:
1e:7a:02:4e:ea:91:d7:3f:7b:7f:e4:d1:ae:91:2f:
b2:75:ca:57:c3:a4:f3:41:a4:0a:b9:f4:3a:10:83:
37:27:3e:ec:25:05:55:c9:f9:f2:a5:e3:f8:27:db:
95:ba:f3:a3:6f:8f:49:38:41:20:b9:4f:d5:f9:40:
29:13:86:a2:78:da:df:6a:e4:f0:dd:82:74:39:27:
ac:eb:82:29:3f:cf:9d:0f:32:87:16:fc:6d:df:1b:
6b:cb:df:7b:f2:ca:5c:5d:08:06:19:9b:fc:c3:18:
d4:b5:ab:c3:09:87:8e:8e:fd:f8:67:31:24:5d:4b:
77:1e:5a:0f:50:b0:7b:60:d5:b3:11:db:c6:91:30:
38:d8:0e:c8:90:e1:c7:e6:36:05:fa:60:b2:21:c1:
77:dd:24:e1:ce:91:56:e0:30:2a:c7:6e:ec:bf:59:
22:7e:98:9c:27:73:45:b1:5c:2e:1c:6e:2d:47:d9:
08:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A1:16:3C:9C:D4:B6:D8:C1:EE:23:B6:C0:BA:BB:F1:F2:78:99:5D
X509v3 Authority Key Identifier:
keyid:85:4B:B7:AA:39:08:C9:98:DE:3C:42:F7:E1:84:95:38:B0:59:26:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hUu3qjkIyZjePEL34YSVOLBZJhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/RKEWPJzUttjB7iO2wLq78fJ4mV0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/965826-eb93-470e-b67a-64e52b9dd8d1/1/hUu3qjkIyZjePEL34YSVOLBZJhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.33.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:b2:b8:9f:c3:ae:17:05:1d:a9:d4:39:7c:28:69:59:d5:a2:
09:f9:f9:58:d9:fa:44:72:63:8f:9a:b7:99:c1:ec:2d:39:36:
45:8a:32:57:7c:58:e3:e9:3a:aa:7d:f9:13:e1:5c:42:a9:8d:
66:36:f5:c8:cf:38:36:ea:8f:d8:a9:b3:f1:39:f8:73:6b:1b:
0b:77:6e:59:52:32:12:0b:7c:d5:e4:e5:2c:7c:96:27:6c:c5:
67:b9:8e:0d:09:c4:d3:cc:b5:d7:89:89:d4:07:52:73:89:c3:
45:a8:7b:fa:bb:06:e9:d0:0d:68:b8:64:88:ab:70:41:e7:06:
f8:6e:d9:ad:e0:97:58:ba:8a:f6:6e:06:3e:50:da:3e:48:b7:
06:9d:4b:12:57:32:c4:74:12:18:0a:ae:29:a2:f2:49:16:6b:
e5:f8:f4:26:8d:dd:42:29:0b:66:77:9d:ac:45:de:ae:70:80:
59:ea:d8:c9:a9:b7:c8:5d:db:3a:83:2d:b5:b0:9e:57:46:70:
92:f4:56:0b:60:ba:a9:79:ab:92:cf:b4:a4:07:80:39:6f:93:
49:b5:1a:4a:80:28:f4:90:99:25:d6:d4:4b:97:fe:22:1d:65:
bb:c1:40:c0:40:f4:d8:4d:ec:1b:1d:f1:d6:75:cd:53:be:81:
d6:63:10:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:10 2024 by rpki-client on console-ams.rpki-client.org