Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/814cef-d825-487a-98ec-7b8ea0f83081/1/cnTe3oMY4XNJpNH27hdRuz4HglM.roa
File: cnTe3oMY4XNJpNH27hdRuz4HglM.roa (raw, json)
Hash identifier: TS/Wp9Uud9TG0KW8OWv5Ygpqn/GBBmXNpoIWKfS0H28=
Subject key identifier: 72:74:DE:DE:83:18:E1:73:49:A4:D1:F6:EE:17:51:BB:3E:07:82:53
Certificate issuer: /CN=a3e6ed87b669d05b420df5aa9a6132ea6fb51a5a
Certificate serial: 078823F4
Authority key identifier: A3:E6:ED:87:B6:69:D0:5B:42:0D:F5:AA:9A:61:32:EA:6F:B5:1A:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o-bth7Zp0FtCDfWqmmEy6m-1Glo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/814cef-d825-487a-98ec-7b8ea0f83081/1/cnTe3oMY4XNJpNH27hdRuz4HglM.roa
Signing time: Sat 01 Jan 2022 09:00:33 +0000
ROA not before: Sat 01 Jan 2022 09:00:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8758
IP address blocks: 193.247.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126362612 (0x78823f4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3e6ed87b669d05b420df5aa9a6132ea6fb51a5a
Validity
Not Before: Jan 1 09:00:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7274dede8318e17349a4d1f6ee1751bb3e078253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:36:bb:ed:a5:b7:9b:45:e3:5d:ec:09:3e:48:
b7:df:74:8c:58:d1:4f:f3:ff:a7:b6:f6:ce:8d:f6:
e1:ab:df:30:97:15:d1:ab:40:30:c7:03:20:69:ea:
a3:04:55:c5:55:33:20:00:2e:9e:c5:23:94:4f:4c:
b4:30:dc:fe:5c:a1:70:78:e8:20:90:b9:0b:01:d5:
a1:3a:92:cd:a6:9f:4c:44:88:ee:57:6a:3d:1a:c5:
97:08:e3:05:7d:99:a0:20:5d:44:c2:87:65:a6:41:
d8:4c:75:b2:fd:d1:94:9c:32:fc:9c:0a:d2:09:d8:
ee:b2:6b:5d:5b:81:e5:e7:b3:3f:60:da:23:7e:04:
52:27:bd:59:b1:fb:51:fa:5f:83:47:44:67:4d:61:
f8:9b:83:e9:45:a0:55:fc:5c:af:ff:07:90:f0:fa:
37:06:8c:85:07:75:47:2d:5a:9d:a3:eb:a5:ba:0d:
ea:97:3a:7d:20:b3:2d:9f:e9:90:bf:40:5c:f7:fc:
e2:e9:4b:08:0a:25:96:ab:81:7d:10:06:e7:19:b2:
a9:40:4d:cc:74:46:d3:0d:8e:c4:60:30:8d:78:97:
32:87:e2:49:79:83:1a:f0:86:11:2f:36:08:b4:7f:
44:03:db:2a:8d:27:04:5b:02:bc:f0:57:71:ef:c5:
2d:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:74:DE:DE:83:18:E1:73:49:A4:D1:F6:EE:17:51:BB:3E:07:82:53
X509v3 Authority Key Identifier:
keyid:A3:E6:ED:87:B6:69:D0:5B:42:0D:F5:AA:9A:61:32:EA:6F:B5:1A:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o-bth7Zp0FtCDfWqmmEy6m-1Glo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/814cef-d825-487a-98ec-7b8ea0f83081/1/cnTe3oMY4XNJpNH27hdRuz4HglM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/814cef-d825-487a-98ec-7b8ea0f83081/1/o-bth7Zp0FtCDfWqmmEy6m-1Glo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.247.162.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:ab:10:c0:a8:81:3b:78:58:62:89:76:19:74:20:7a:25:88:
a1:72:c2:f4:75:5a:ba:fc:dd:bb:ad:99:e8:8b:77:d1:f6:bc:
ec:87:31:30:76:65:88:1d:66:96:33:c5:85:a9:0a:ed:83:31:
95:c7:22:f8:d5:c9:b5:f3:2d:4b:b1:7c:fc:5d:d2:7d:65:da:
21:06:ef:9a:0e:56:ab:29:83:7f:eb:87:84:0a:17:f6:05:a7:
f6:5a:c0:15:56:7b:c6:71:16:c6:3a:82:1a:61:fd:43:0d:86:
36:d6:ee:6b:ff:a9:1d:7e:67:38:35:d2:60:b8:f2:78:40:15:
ad:6a:aa:c5:1e:e1:99:03:92:b8:40:01:92:74:61:53:78:f1:
a4:ce:cb:03:d0:9c:e4:01:5a:93:90:42:f8:9b:14:b3:bb:be:
9d:4b:e2:29:db:9f:48:fb:90:68:de:b1:05:25:96:71:81:16:
a0:f0:a7:9f:52:8b:67:9d:61:34:fe:0d:89:bb:1c:e3:8d:c0:
90:4a:1e:54:3d:d6:6a:2a:da:55:8b:ff:22:0e:66:a6:15:59:
09:58:f6:d7:9c:5f:c1:76:4c:d6:f4:16:39:d4:f1:5a:d5:c9:
98:34:4c:36:b1:5a:bf:00:3a:6f:5f:ce:fd:86:83:23:1f:ef:
e0:15:85:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:21 2024 by rpki-client on console-fra.rpki-client.org