Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/7Ul5glTHwJNhAn527czSCvR0uNQ.roa
File: 7Ul5glTHwJNhAn527czSCvR0uNQ.roa (raw, json)
Hash identifier: BCAhcuW3eB0d1fKSWk67I/CJLOBAiG1MjYAVKQUJUYs=
Subject key identifier: ED:49:79:82:54:C7:C0:93:61:02:7E:76:ED:CC:D2:0A:F4:74:B8:D4
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 08FB525D
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/7Ul5glTHwJNhAn527czSCvR0uNQ.roa
Signing time: Tue 07 Jun 2022 13:42:02 +0000
ROA not before: Tue 07 Jun 2022 13:42:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 193.37.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150688349 (0x8fb525d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jun 7 13:42:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed49798254c7c09361027e76edccd20af474b8d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:31:f8:79:15:61:de:1f:28:fa:6f:4b:84:7e:
c4:f6:32:1b:e7:10:5f:6b:cd:9e:aa:50:d6:b9:ac:
2c:52:8f:61:c4:c2:b4:c5:18:9c:68:a9:0e:ed:97:
e7:82:67:cc:84:e3:d4:ad:7c:b5:37:49:68:a5:35:
9f:78:d7:b6:d3:f8:b4:8d:6d:94:ca:21:a5:d9:e6:
cf:59:a6:12:3d:ac:50:3b:20:18:2f:45:df:87:58:
f8:65:27:e4:64:68:78:28:f4:0f:84:10:8d:c3:70:
2c:1d:d3:ad:b9:17:48:e0:4b:5c:04:22:4e:76:ae:
94:97:0a:9f:67:02:ab:5e:8a:fc:c9:31:08:3b:16:
91:cf:d7:22:61:63:0e:24:7b:ae:bb:9f:2e:4c:99:
20:06:25:b4:2b:0f:34:ad:8d:f3:08:6f:25:5b:4a:
3f:c5:b7:b9:e8:26:d4:f2:3e:7a:5e:ee:3a:eb:64:
32:51:ab:a5:00:04:82:e6:7e:e6:01:83:be:c7:15:
61:05:8f:4b:ff:4f:28:ae:cc:14:08:d7:7f:41:04:
a1:74:47:54:82:ec:64:7a:76:10:e5:54:01:d1:ba:
e1:e5:59:93:f1:89:7a:07:8a:07:6d:61:03:11:be:
b7:d9:d8:d7:e3:bb:fb:a2:d1:48:e6:65:4e:45:9a:
ee:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:49:79:82:54:C7:C0:93:61:02:7E:76:ED:CC:D2:0A:F4:74:B8:D4
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/7Ul5glTHwJNhAn527czSCvR0uNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.196.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:6b:4f:bf:ec:bd:f8:54:4e:c1:7b:06:68:13:4f:1a:b1:6a:
35:ac:e5:ea:eb:ec:92:70:19:27:df:be:d2:c0:ba:8d:d2:5d:
e8:a1:81:be:80:41:d2:b2:3e:ec:82:e3:23:91:0b:c8:5d:48:
cc:76:2c:06:3d:d5:b1:88:ae:c5:44:d2:dd:43:f3:56:66:58:
22:40:1d:a8:63:a2:e0:2d:49:47:9a:0e:80:a7:6d:fc:8f:ba:
b0:43:20:f3:02:7e:bf:30:7b:db:cc:e3:24:1e:bf:00:24:eb:
89:4f:2a:78:49:8c:72:86:6a:d5:e4:32:7a:93:cf:67:74:3d:
d4:44:50:ca:af:da:4c:b0:b5:db:84:3a:76:f4:48:a5:38:15:
03:03:5a:a3:46:48:70:28:50:41:71:3a:93:14:d9:49:3a:2e:
3f:f4:5a:be:b6:71:a7:e5:a9:4f:8b:a9:2c:8f:e9:3f:20:26:
40:d7:3b:19:66:a3:e9:a2:78:30:e2:49:49:59:4d:3b:23:7c:
11:db:72:56:25:f2:f3:ee:34:e7:28:0d:db:f5:59:cb:22:d0:
59:cf:30:0a:86:9d:ee:c3:ee:e6:e1:af:17:32:ad:62:1c:35:
46:a6:0d:06:a9:be:77:24:b4:15:63:90:cf:07:19:5d:27:97:
cb:7f:90:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:48 2024 by rpki-client on console-ams.rpki-client.org