Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/mC6eBWO4BI41XbPWRsIVteuo88U.roa
File: mC6eBWO4BI41XbPWRsIVteuo88U.roa (raw, json)
Hash identifier: Ps7X7kzLsNNpihcg9uoCeYpBwOqKtxFmWM+SKNLBzv4=
Subject key identifier: 98:2E:9E:05:63:B8:04:8E:35:5D:B3:D6:46:C2:15:B5:EB:A8:F3:C5
Certificate issuer: /CN=573104ff3568cb99b7f5024e73ff2aea0563ce6a
Certificate serial: 0182AB5177F4B11CCF0344494CEDD5A51B7D
Authority key identifier: 57:31:04:FF:35:68:CB:99:B7:F5:02:4E:73:FF:2A:EA:05:63:CE:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/mC6eBWO4BI41XbPWRsIVteuo88U.roa
Signing time: Wed 17 Aug 2022 10:20:19 +0000
ROA not before: Wed 17 Aug 2022 10:20:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211960
IP address blocks: 193.228.137.0/24 maxlen: 24
2a04:1ac1:11::/48 maxlen: 48
2a04:1ac1:1::/48 maxlen: 48
2001:67c:2924::/48 maxlen: 48
2a04:1ac0:fff3::/48 maxlen: 48
2a04:1ac1:2::/48 maxlen: 48
2a04:1ac0:fff4::/48 maxlen: 48
2a04:1ac1:3::/48 maxlen: 48
2a04:1ac1:10::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ab:51:77:f4:b1:1c:cf:03:44:49:4c:ed:d5:a5:1b:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=573104ff3568cb99b7f5024e73ff2aea0563ce6a
Validity
Not Before: Aug 17 10:20:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=982e9e0563b8048e355db3d646c215b5eba8f3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:27:ed:25:ea:27:8e:01:0a:f4:14:e6:10:a8:
51:4c:b5:18:21:10:0e:25:dc:25:79:bd:08:4b:d4:
f4:51:0c:5c:35:48:a2:c5:a1:b8:41:93:37:72:44:
51:63:a4:49:48:8c:fb:c4:c7:92:8d:d8:d4:f3:a2:
28:91:51:c6:97:79:2d:cb:e6:45:1a:73:8e:8b:a7:
d7:4b:3d:83:d4:74:23:6d:71:f9:fd:d6:cd:a8:d5:
ca:12:fb:9f:3d:7b:37:28:cc:02:24:43:04:d6:5d:
b5:ed:04:ba:df:aa:57:9b:15:6f:c5:0c:08:6f:21:
c9:f3:c4:2a:a7:56:9e:df:ef:02:c5:67:b4:b7:49:
ab:5d:36:4b:68:d3:43:36:20:1f:b2:d0:71:5f:d6:
90:be:da:7e:00:f7:e4:3b:a2:bf:c4:0f:fc:e8:a5:
bb:1f:4f:b9:66:87:14:28:9d:04:6d:7f:65:0c:4e:
18:27:de:97:39:ab:20:38:c4:50:d8:11:01:76:e8:
ee:f6:15:98:f6:9a:8a:7f:5e:b5:ab:a2:fa:d8:6b:
e5:12:35:66:fa:b6:83:3f:37:97:1f:af:06:66:24:
55:50:3b:5f:d7:0d:0c:8d:b4:53:49:c9:47:d2:06:
4f:45:4a:d8:be:1a:45:3c:fd:c8:ed:0d:24:89:0c:
8c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:2E:9E:05:63:B8:04:8E:35:5D:B3:D6:46:C2:15:B5:EB:A8:F3:C5
X509v3 Authority Key Identifier:
keyid:57:31:04:FF:35:68:CB:99:B7:F5:02:4E:73:FF:2A:EA:05:63:CE:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzEE_zVoy5m39QJOc_8q6gVjzmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/mC6eBWO4BI41XbPWRsIVteuo88U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/3e76fc-5dcd-4ba5-8495-1998cb9d065c/1/VzEE_zVoy5m39QJOc_8q6gVjzmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.228.137.0/24
IPv6:
2001:67c:2924::/48
2a04:1ac0:fff3::-2a04:1ac0:fff4:ffff:ffff:ffff:ffff:ffff
2a04:1ac1:1::-2a04:1ac1:3:ffff:ffff:ffff:ffff:ffff
2a04:1ac1:10::/47
Signature Algorithm: sha256WithRSAEncryption
18:00:c6:92:9a:68:ff:90:9a:77:6a:45:9c:9e:5d:3b:21:0b:
c2:b7:a9:60:ab:20:d1:b2:d4:c8:a3:a4:81:ed:57:1c:24:1a:
ae:6e:a4:f2:a0:80:45:6d:ff:8d:16:b6:f1:55:87:75:77:d5:
00:f6:c3:8e:ba:46:61:a9:b4:3c:c2:12:69:53:b6:b9:9d:c1:
3a:48:a5:5d:30:15:8e:9c:e3:38:71:07:d4:7d:63:18:11:5b:
ea:e0:0f:0c:68:5b:77:9a:e5:75:71:81:c1:c4:f9:f5:d7:55:
01:82:8f:e2:7a:57:16:98:a2:d6:f2:8d:86:58:8a:e6:16:68:
50:be:02:5d:09:75:e4:75:f8:56:dc:82:2a:4b:70:ef:21:2d:
21:36:c0:f8:b9:e6:83:14:55:1d:51:94:47:9d:5b:15:90:03:
d3:e9:ac:1c:3e:cc:0b:ac:4a:d2:0e:94:05:43:25:f0:17:a9:
b9:3e:cf:b4:8b:cb:55:4d:f7:f4:07:50:b0:36:2f:2e:cf:92:
c2:b9:6b:49:12:1d:68:e8:4f:d1:27:45:64:4c:c3:e3:d4:f5:
39:1d:68:0b:42:1a:d6:c5:dc:1d:c3:ad:c3:c2:52:6f:20:d2:
68:0b:1d:89:50:43:bd:b3:26:92:6f:5f:6d:34:2d:97:23:eb:
e1:ec:57:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:04 2024 by rpki-client on console-ams.rpki-client.org