Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/aZmWf9J17SWukXHiad1qKt8pO2g.roa
File: aZmWf9J17SWukXHiad1qKt8pO2g.roa (raw, json)
Hash identifier: kZhGC9AlK72g5g2nyf4yXi4IHO9nkftYx/N5ECDG4ZI=
Subject key identifier: 69:99:96:7F:D2:75:ED:25:AE:91:71:E2:69:DD:6A:2A:DF:29:3B:68
Certificate issuer: /CN=09633ef6550a82af315146a942cf3559557c1fe2
Certificate serial: 058445FB
Authority key identifier: 09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/aZmWf9J17SWukXHiad1qKt8pO2g.roa
Signing time: Sat 01 Jan 2022 06:06:11 +0000
ROA not before: Sat 01 Jan 2022 06:06:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20559
IP address blocks: 193.105.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92554747 (0x58445fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09633ef6550a82af315146a942cf3559557c1fe2
Validity
Not Before: Jan 1 06:06:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6999967fd275ed25ae9171e269dd6a2adf293b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d4:21:d9:62:cd:6b:9f:4c:7b:d2:d6:2a:a4:
94:11:55:59:37:0e:e4:e1:55:86:34:9e:34:31:31:
b0:27:9e:fa:d5:9b:81:0f:cc:be:84:c5:c0:d8:e1:
c4:a1:e9:a8:73:ee:5a:a7:88:45:bc:94:79:b5:10:
6d:c1:88:ad:03:23:f2:3c:8e:10:fa:e8:ea:c9:5e:
6a:ad:e9:78:8f:e0:21:48:b6:93:5c:b4:42:c6:f6:
7d:da:9a:2f:92:ef:18:a9:d4:0a:86:5d:79:2f:a3:
fb:ca:08:38:33:cd:7e:9b:cb:ba:e8:b3:24:44:53:
92:1c:7a:8f:f8:58:6e:0f:22:1e:7c:2e:e8:fe:e4:
1d:6d:c2:02:ad:02:69:5b:8c:a7:0b:23:f6:29:28:
48:bc:97:44:e9:1c:9f:1d:23:c2:b3:3f:96:f9:d4:
69:88:78:d1:67:b5:6b:b9:99:ec:20:54:c4:22:72:
73:4c:cd:a4:49:08:5c:dd:70:c9:e8:08:4e:a6:a8:
70:35:ae:49:79:20:6b:85:de:99:d8:57:04:5d:41:
80:00:39:26:ff:73:ff:64:97:eb:e8:05:b5:63:05:
fc:9b:e8:2c:27:3c:3f:fd:a6:bb:da:17:df:1f:d8:
1c:7b:27:d5:97:02:38:a0:15:a5:e3:68:66:6c:0e:
e3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:99:96:7F:D2:75:ED:25:AE:91:71:E2:69:DD:6A:2A:DF:29:3B:68
X509v3 Authority Key Identifier:
keyid:09:63:3E:F6:55:0A:82:AF:31:51:46:A9:42:CF:35:59:55:7C:1F:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CWM-9lUKgq8xUUapQs81WVV8H-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/aZmWf9J17SWukXHiad1qKt8pO2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/34d548-e02f-4f82-baeb-bb1df1b3d32d/1/CWM-9lUKgq8xUUapQs81WVV8H-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.12.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:c6:a9:21:d3:6f:a7:8a:ee:56:5b:64:d7:06:c6:13:b3:82:
e1:29:f3:d5:80:2c:40:fa:5b:33:38:7b:b3:3f:ef:3b:35:c7:
69:97:a8:af:ec:4e:fb:47:bc:b3:53:72:fc:7a:3a:cd:04:4c:
02:fc:32:22:7c:19:8e:ec:79:74:35:b6:1f:0d:ee:c2:bb:1b:
d5:24:fd:78:8f:aa:02:47:68:f2:a4:a0:ad:f4:f8:ad:4c:da:
47:91:10:87:5c:8b:f6:a8:3c:70:af:ea:f1:11:ea:14:f8:bf:
3d:5e:ff:1b:dd:4e:0d:a0:63:30:21:d9:34:47:85:25:3a:c4:
e7:78:bb:ae:4b:92:e4:b0:60:73:21:1f:b6:be:91:2e:0c:4d:
30:a2:c8:73:62:39:b9:5e:31:97:4f:c3:f3:a3:3b:9e:19:be:
cd:e8:26:b3:d2:ad:8c:7f:df:63:e2:2e:e2:78:d7:b8:59:9e:
5b:55:48:42:07:6f:f9:07:15:b9:8c:55:67:cc:19:77:5a:40:
7d:dd:1e:11:ee:5b:0a:34:b6:5b:b4:33:94:35:f6:02:4b:6e:
5a:34:79:59:6e:ff:26:13:72:14:02:9e:11:d2:13:20:0c:f5:
bb:a9:a2:3b:40:67:43:58:5c:a0:d9:f0:86:7a:46:56:4a:e7:
ed:73:ef:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:43 2024 by rpki-client on console-ams.rpki-client.org