Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/g9DzI0bGqeIdQKRB9APT1oPOUcA.roa
File: g9DzI0bGqeIdQKRB9APT1oPOUcA.roa (raw, json)
Hash identifier: SGyAN9+Dlc/EwQTCf36YCjoS8a8TzyRlkWkOrouVupM=
Subject key identifier: 83:D0:F3:23:46:C6:A9:E2:1D:40:A4:41:F4:03:D3:D6:83:CE:51:C0
Certificate issuer: /CN=ed476a7486b785451293571126c5f9da3ec485d8
Certificate serial: 09616E17
Authority key identifier: ED:47:6A:74:86:B7:85:45:12:93:57:11:26:C5:F9:DA:3E:C4:85:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7UdqdIa3hUUSk1cRJsX52j7Ehdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/g9DzI0bGqeIdQKRB9APT1oPOUcA.roa
Signing time: Sat 01 Jan 2022 07:58:46 +0000
ROA not before: Sat 01 Jan 2022 07:58:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2119
IP address blocks: 193.160.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157380119 (0x9616e17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed476a7486b785451293571126c5f9da3ec485d8
Validity
Not Before: Jan 1 07:58:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=83d0f32346c6a9e21d40a441f403d3d683ce51c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d1:69:0d:0e:85:28:be:ad:1f:a2:73:65:0c:
3c:f3:f9:bd:08:8f:fb:c7:86:e4:f4:ca:79:81:3e:
fc:5e:77:80:c5:10:9a:02:1a:85:0b:6d:6e:7c:af:
b4:15:b7:c7:0e:fd:c5:52:71:db:32:62:56:e8:45:
ef:fb:15:9c:b4:1e:90:eb:08:73:ff:5f:de:ad:27:
89:fb:c7:23:96:b9:c5:aa:42:90:4e:96:8e:b3:5e:
8f:f5:46:1b:fa:3f:24:cf:99:b0:0e:90:e2:e3:6c:
95:5e:1f:d2:40:8b:d2:80:1d:b8:65:96:5a:63:94:
09:d6:59:18:2e:e9:20:5f:2f:43:9c:cf:0e:58:d3:
62:84:c2:66:10:6e:4b:c1:eb:97:8f:f5:06:95:15:
63:13:7c:cf:c0:fb:7b:fc:2f:f5:ec:58:52:86:3c:
1a:3c:3a:1f:fe:7c:ed:22:96:43:4b:76:d1:96:a7:
c4:96:7f:f7:5b:b5:09:13:89:ce:23:85:71:04:7b:
6b:96:bd:e3:f8:1b:18:49:68:c8:be:44:c5:62:2e:
a7:59:bc:02:88:a8:f4:6b:14:3f:64:e1:0c:8f:09:
32:62:74:2f:82:b8:e7:d2:8d:e0:02:c7:e3:8f:9f:
2d:61:30:0f:5c:25:0a:9d:98:62:43:98:b2:c4:9f:
9d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D0:F3:23:46:C6:A9:E2:1D:40:A4:41:F4:03:D3:D6:83:CE:51:C0
X509v3 Authority Key Identifier:
keyid:ED:47:6A:74:86:B7:85:45:12:93:57:11:26:C5:F9:DA:3E:C4:85:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7UdqdIa3hUUSk1cRJsX52j7Ehdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/g9DzI0bGqeIdQKRB9APT1oPOUcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a0147b-058d-4f2d-b603-61f9e54ed239/1/7UdqdIa3hUUSk1cRJsX52j7Ehdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.160.28.0/24
Signature Algorithm: sha256WithRSAEncryption
d4:b1:5e:95:a4:b5:f5:d0:c6:82:cb:0d:59:6a:64:d4:28:2d:
9a:44:94:39:b4:83:80:fa:4c:f3:cf:70:d3:ca:e3:1f:81:33:
91:10:2c:f6:8b:5f:55:9a:c8:28:f6:ee:dd:f0:21:cb:51:65:
0a:59:4d:a0:f2:79:70:e1:de:7c:42:34:b2:cd:e0:9d:3d:bb:
25:4d:41:a5:7b:ac:5b:fd:0c:09:19:c9:02:c7:f0:ec:97:52:
90:54:a2:84:90:c0:0e:51:c8:df:5c:73:34:0d:1c:cc:62:90:
99:0e:f4:2e:f8:63:ba:0f:a6:b6:bf:1f:eb:63:c2:8a:3f:8e:
fa:bd:6c:29:ca:2a:02:8d:96:2d:9f:c3:28:ef:62:6f:40:0d:
50:2d:a9:6a:e8:48:ad:76:38:c0:99:28:20:dc:b7:03:6e:2f:
97:0e:fc:79:51:e6:a1:21:45:09:43:32:ae:28:ae:ac:0d:b2:
25:fd:09:74:20:34:ba:97:b2:2a:6d:2a:27:a8:52:06:2b:f1:
06:bb:eb:13:3f:1c:37:97:32:c8:5a:6c:d4:98:52:1f:63:0f:
bd:b8:28:77:dd:ce:4a:ed:d9:ed:5a:7a:3e:49:84:d2:97:a8:
ff:aa:2d:01:c8:4f:0b:8a:9a:b5:8a:1e:4e:20:eb:29:71:60:
31:08:17:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:09 2024 by rpki-client on console-ams.rpki-client.org