Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/xxHcQAbz5t_d48t4rS8qOe2lJzg.roa
File: xxHcQAbz5t_d48t4rS8qOe2lJzg.roa (raw, json)
Hash identifier: ZtoTJdMQ5Zg/EUa3UkJA/Gc9H6MF4546/7xzdYKaSSw=
Subject key identifier: C7:11:DC:40:06:F3:E6:DF:DD:E3:CB:78:AD:2F:2A:39:ED:A5:27:38
Certificate issuer: /CN=37518d180923a7f3c00653ec12bc702b95aab907
Certificate serial: 33E76969
Authority key identifier: 37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/xxHcQAbz5t_d48t4rS8qOe2lJzg.roa
Signing time: Sat 01 Jan 2022 04:55:36 +0000
ROA not before: Sat 01 Jan 2022 04:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210690
IP address blocks: 193.255.56.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 870803817 (0x33e76969)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37518d180923a7f3c00653ec12bc702b95aab907
Validity
Not Before: Jan 1 04:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c711dc4006f3e6dfdde3cb78ad2f2a39eda52738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1e:3f:85:83:ee:a4:44:f0:1e:dd:c8:34:c8:
04:fc:25:2b:ea:1a:c5:8e:e8:d0:28:50:f2:90:98:
37:4a:39:51:c6:a9:69:2d:63:5a:a8:2f:a9:e0:bc:
af:d9:4e:98:08:b9:7a:78:03:43:8f:3a:60:36:cb:
8f:ad:58:da:41:c0:ff:fb:97:7c:60:79:ff:0e:c6:
cc:48:03:cf:e4:df:84:fa:ee:3c:9e:1e:c5:fa:f4:
19:66:6c:ac:d9:4e:a8:1a:77:51:2a:13:07:f3:cd:
da:26:7c:b5:f5:c6:f7:14:f1:48:da:c4:82:11:5b:
43:f0:6e:a5:37:2c:9a:4f:b0:a9:87:86:96:23:dc:
ee:d5:ba:c2:10:8c:40:e5:79:bf:ec:99:f9:ee:20:
54:66:a5:4f:2f:dd:4c:3d:90:aa:38:61:67:bd:10:
1c:33:81:bb:9d:32:f8:8a:84:92:4d:4b:bf:2a:5d:
33:a6:66:fe:89:14:dc:ab:48:82:f7:2c:38:06:a8:
8f:43:94:56:d6:dd:d2:1c:8b:eb:52:04:c8:16:ff:
d3:96:32:f3:06:47:47:67:f3:2f:8d:8c:24:b4:a2:
69:35:cb:63:8f:55:2d:a4:d1:3a:bd:c6:80:c1:78:
fe:e6:d8:41:0a:3d:42:52:9d:d3:56:86:45:ac:ef:
fa:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:11:DC:40:06:F3:E6:DF:DD:E3:CB:78:AD:2F:2A:39:ED:A5:27:38
X509v3 Authority Key Identifier:
keyid:37:51:8D:18:09:23:A7:F3:C0:06:53:EC:12:BC:70:2B:95:AA:B9:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N1GNGAkjp_PABlPsErxwK5WquQc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/xxHcQAbz5t_d48t4rS8qOe2lJzg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/f80ef3-9f0b-4bd1-8018-59671920fb60/1/N1GNGAkjp_PABlPsErxwK5WquQc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.255.56.0/23
Signature Algorithm: sha256WithRSAEncryption
85:33:0e:c7:3e:6b:ee:8b:92:67:e7:d2:03:dc:93:aa:0f:d6:
93:1d:41:16:32:f2:57:2f:12:30:1c:59:a7:dd:9f:e5:d9:a7:
c3:e1:3e:7c:8b:69:1b:77:36:b5:15:60:e9:23:33:19:9c:5a:
6b:a8:e4:2b:6c:fa:30:33:c6:90:87:96:33:82:c3:6a:53:2b:
65:23:72:69:ca:80:04:9c:9b:9a:b2:fb:37:97:ba:38:b4:c6:
13:a5:27:13:2a:61:14:12:2a:25:15:97:39:3e:81:a4:26:5b:
bf:9f:a6:67:b3:c9:af:07:27:52:d8:8d:41:65:22:0f:6a:c7:
cc:9c:06:2c:86:28:a0:96:01:a1:2a:53:68:94:6d:68:52:9a:
c9:94:90:88:52:e5:4c:fd:9e:82:57:a9:3e:1c:64:34:c4:38:
53:de:2e:9d:98:6b:2a:17:43:92:85:fe:b1:4b:47:64:01:0f:
53:39:11:1e:c5:65:6d:12:30:5d:35:f9:c5:47:94:1f:3e:4a:
94:2c:26:bc:db:93:d4:aa:21:96:3b:28:39:78:54:fa:07:54:
f5:fb:fd:03:00:12:96:33:a8:e8:ef:b8:17:84:50:57:ca:b3:
1d:56:0f:24:71:e1:ec:de:18:2c:9e:31:f6:78:0f:99:61:69:
4d:62:ca:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:39 2024 by rpki-client on console-fra.rpki-client.org