Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/30fdUK0j9efkJM0un3v184TtgaQ.roa
File: 30fdUK0j9efkJM0un3v184TtgaQ.roa (raw, json)
Hash identifier: X4l1HlQS9hwKCZPQc9Yex1C1WpQgnb4g+/y6Tfrwo00=
Subject key identifier: DF:47:DD:50:AD:23:F5:E7:E4:24:CD:2E:9F:7B:F5:F3:84:ED:81:A4
Certificate issuer: /CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Certificate serial: 3BBBB0
Authority key identifier: C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/30fdUK0j9efkJM0un3v184TtgaQ.roa
Signing time: Sat 01 Jan 2022 02:56:03 +0000
ROA not before: Sat 01 Jan 2022 02:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 193.135.254.0/24 maxlen: 24
193.73.113.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3914672 (0x3bbbb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6d11b64ffe18efa42f43a6c765639dee38d027e
Validity
Not Before: Jan 1 02:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df47dd50ad23f5e7e424cd2e9f7bf5f384ed81a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:72:8d:d2:35:8d:61:a8:7d:84:16:5e:26:c8:
fe:20:f0:f3:e2:86:99:fb:b6:a9:8b:64:55:26:15:
45:0c:33:35:eb:f8:09:c9:45:bd:4d:e6:df:db:33:
3e:82:da:42:9c:00:63:ac:4f:63:1a:7e:5c:37:e7:
60:5d:70:08:e1:ba:c2:47:7b:64:ef:be:a9:aa:c3:
e9:97:5f:08:d6:33:03:f3:9b:29:3d:8e:86:ae:5d:
9d:86:ca:8c:bd:e1:bf:c6:da:9a:94:d2:05:a2:24:
c7:60:fa:63:fa:43:df:d1:79:3d:a5:9b:0b:3e:2e:
5b:a2:3b:91:1d:89:15:53:4f:3f:12:6f:9f:f1:c7:
d9:c2:3f:b8:1d:1b:56:5b:1a:c3:53:aa:dc:35:cc:
bd:71:90:98:9d:a8:a3:da:cd:52:99:47:36:aa:3b:
1f:18:7f:8d:58:41:b5:e1:cb:f9:3d:fa:9d:e6:62:
4c:61:88:30:e3:f6:52:4a:7e:e1:80:be:87:8a:d9:
b0:47:61:7b:96:46:06:01:21:3b:2a:bb:f3:c0:9e:
51:48:cb:3c:36:ba:7f:e1:8b:30:3d:3f:3c:c5:48:
9b:bf:3c:91:b0:55:6a:84:08:a7:39:09:c5:27:32:
13:13:a9:92:ed:18:7b:76:eb:0b:a5:b5:90:2d:3e:
24:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:47:DD:50:AD:23:F5:E7:E4:24:CD:2E:9F:7B:F5:F3:84:ED:81:A4
X509v3 Authority Key Identifier:
keyid:C6:D1:1B:64:FF:E1:8E:FA:42:F4:3A:6C:76:56:39:DE:E3:8D:02:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xtEbZP_hjvpC9DpsdlY53uONAn4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/30fdUK0j9efkJM0un3v184TtgaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/4cac6b-8e05-448a-83f7-6835852158d8/1/xtEbZP_hjvpC9DpsdlY53uONAn4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.73.113.0/24
193.135.254.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a4:a6:6d:bb:6f:e6:3c:d0:f6:2a:96:b6:3e:54:ef:20:60:
90:7c:58:da:18:df:5e:ba:cd:9e:22:47:c1:19:a9:09:b0:cb:
25:d9:8e:4d:93:62:a9:dd:51:db:44:f0:d9:a9:38:50:b9:71:
36:c9:aa:4a:6e:03:43:c8:71:58:cc:25:bc:45:06:14:df:8a:
d9:3b:56:4d:c1:44:a6:38:50:36:fa:ac:5c:b5:47:67:cf:c3:
32:0e:9c:5a:e1:68:bb:b8:56:34:75:f8:e5:56:d0:30:77:7e:
97:2d:ff:52:5f:07:fe:d2:34:95:bf:c7:cc:c5:13:34:62:21:
43:5e:57:1e:f6:39:43:f5:dc:a2:47:ee:de:4d:8a:11:5c:49:
be:f8:26:49:9e:a5:7a:15:a9:f0:97:2f:1b:f0:c2:fb:8c:65:
b9:6d:b8:11:73:92:92:28:39:13:ab:d5:f8:8d:b9:c8:1c:c8:
93:61:33:fa:e8:9e:e3:78:44:1a:e0:2c:1d:03:48:49:4b:95:
c9:df:78:57:0e:04:b2:4a:dc:7a:04:94:ae:4e:a4:23:5c:92:
4a:2e:62:ec:8b:c2:06:2f:bc:3e:6f:fd:41:ad:84:2c:61:53:
42:db:93:c8:3b:50:71:d3:c4:83:23:1f:9f:15:86:57:77:c3:
53:69:93:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:58 2024 by rpki-client on console-ams.rpki-client.org