Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/19DukgCJxa7qgMhBTFbXLv6ez8A.roa
File: 19DukgCJxa7qgMhBTFbXLv6ez8A.roa (raw, json)
Hash identifier: hmCxKwfuM0KOi6tsHA3lCaekCrlhHyk78qti03NGz1M=
Subject key identifier: D7:D0:EE:92:00:89:C5:AE:EA:80:C8:41:4C:56:D7:2E:FE:9E:CF:C0
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33E2AE05
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/19DukgCJxa7qgMhBTFbXLv6ez8A.roa
Signing time: Sat 01 Jan 2022 04:55:34 +0000
ROA not before: Sat 01 Jan 2022 04:55:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60881
IP address blocks: 193.140.127.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870493701 (0x33e2ae05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7d0ee920089c5aeea80c8414c56d72efe9ecfc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e0:a5:37:35:4f:1e:7d:24:50:1f:bf:d6:7f:
ed:8f:20:0e:37:49:ab:f1:a3:31:6d:da:b2:1d:c8:
b5:cf:83:0a:ba:4c:6c:ac:d8:4d:d5:38:49:d8:5e:
0d:53:70:fa:e8:d6:ce:98:31:de:9e:24:7f:9e:00:
0a:32:3f:e6:03:7d:0f:bb:ba:7e:a1:fa:5e:14:25:
09:af:23:8d:58:1d:c1:8d:9b:0a:25:a0:fc:a8:95:
8d:45:a6:11:6f:ca:68:e5:b3:5c:5a:90:8e:6d:34:
31:1a:ae:9d:de:06:1c:c2:ab:fe:a3:5d:db:a7:97:
77:36:0b:11:4e:73:a6:0d:af:71:42:a6:ba:bf:90:
02:b3:f6:b4:18:df:e5:64:1b:14:3b:3e:58:94:a6:
c7:1b:33:a0:a5:8f:58:70:99:58:24:27:bc:9c:02:
5a:0d:f2:cd:4c:d4:6a:6a:dc:c2:06:52:ac:01:24:
2a:4f:2b:1b:38:24:96:0e:67:c0:10:1d:1b:db:ef:
95:05:23:01:fb:7b:46:c5:1d:8e:c0:f8:76:b8:14:
77:be:1a:ed:54:5a:35:3f:09:d3:bd:16:25:a8:ab:
f0:3a:36:c4:48:c8:48:60:41:d4:9b:f3:c6:5b:08:
e0:71:41:5d:29:f9:9e:87:0b:9a:3c:79:25:a6:f2:
68:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:D0:EE:92:00:89:C5:AE:EA:80:C8:41:4C:56:D7:2E:FE:9E:CF:C0
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/19DukgCJxa7qgMhBTFbXLv6ez8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.140.127.0/24
Signature Algorithm: sha256WithRSAEncryption
57:f0:df:58:99:f5:0e:c5:6c:5b:36:68:f2:23:7d:7c:46:e8:
71:7b:4f:1e:8a:96:d2:65:66:75:2a:1d:d5:84:6f:0b:f4:68:
4b:28:8a:36:51:a6:f3:2f:d9:31:27:41:c7:26:37:75:f1:1e:
df:86:b4:a3:89:2c:cb:70:66:35:2d:3c:ff:7f:84:a8:04:c3:
57:60:a9:6d:49:47:29:db:67:9d:60:15:6f:0f:a8:92:c9:6a:
b1:91:6a:97:28:11:ee:3c:b3:48:39:fb:92:57:0d:c7:b8:2a:
7f:03:58:7d:52:10:05:c8:b5:6b:fc:4f:51:03:ff:42:3a:d8:
ff:d1:36:62:09:8d:9b:48:b6:fa:ac:f4:b9:33:56:14:69:90:
58:c9:2a:90:75:1c:80:ce:6a:2d:6f:8c:be:2f:94:84:43:56:
0a:7a:25:6a:0a:35:98:e2:1d:2b:ae:6c:77:f8:01:a5:2d:d6:
4a:ab:3c:c1:2b:df:38:f9:69:6b:6c:a0:ac:bc:07:7c:8d:04:
8f:34:0c:22:99:b8:71:19:82:fd:05:e5:c1:04:84:f7:d8:29:
31:03:df:18:61:23:48:9d:75:2b:c0:7e:c2:1d:d0:81:e7:e9:
f1:2f:f7:7e:04:26:2c:95:95:79:82:0e:d0:b7:52:43:6f:19:
e7:ca:60:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org