Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/KlWvOtmU1xKLUYDs3gVYHJdm4iI.roa
File: KlWvOtmU1xKLUYDs3gVYHJdm4iI.roa (raw, json)
Hash identifier: aR3hECUDL5yqws/lNdZxRfCwbTn+uBvUlCw4eV+Te/U=
Subject key identifier: 2A:55:AF:3A:D9:94:D7:12:8B:51:80:EC:DE:05:58:1C:97:66:E2:22
Certificate issuer: /CN=33c342c06aacc359d39439ff58defa8ea1875748
Certificate serial: 0E386304
Authority key identifier: 33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/KlWvOtmU1xKLUYDs3gVYHJdm4iI.roa
Signing time: Wed 20 Apr 2022 06:37:52 +0000
ROA not before: Wed 20 Apr 2022 06:37:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41826
IP address blocks: 193.34.164.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 238576388 (0xe386304)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33c342c06aacc359d39439ff58defa8ea1875748
Validity
Not Before: Apr 20 06:37:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2a55af3ad994d7128b5180ecde05581c9766e222
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e3:32:3a:07:ca:30:d4:6f:09:86:ba:f5:13:
cc:13:ba:f0:07:a5:07:24:73:bc:8a:1e:cc:83:8c:
c0:5c:a9:d6:24:32:97:67:17:93:88:c9:30:e0:21:
50:a6:fd:37:67:a9:cf:95:6c:95:b3:ad:90:40:bd:
32:7d:90:27:e4:bc:73:d6:03:59:93:3b:ca:db:93:
a5:ba:3c:d8:0b:2a:38:d9:a1:e6:89:bf:46:d7:ce:
e7:19:70:8c:22:ed:f7:d0:ad:9c:d7:bf:59:00:4a:
84:2e:13:da:d3:d7:d2:95:a0:3c:63:a8:0b:94:2f:
67:68:6d:ad:8f:3c:78:ff:02:64:1d:c6:9c:f1:fd:
96:dd:ee:06:6d:a6:20:c1:11:17:9d:38:fe:cf:0f:
b8:e7:5d:8d:36:11:1c:d4:fa:72:cc:5c:c4:c8:d8:
77:99:2e:37:02:ae:2b:89:ff:d1:e5:be:c6:7a:1e:
c7:51:7a:9c:d3:11:f6:08:a9:54:86:b2:dc:9e:66:
3c:2b:b4:e9:68:60:83:1d:80:85:f7:18:50:b2:c8:
bc:8d:f9:de:91:e6:de:2b:12:70:ef:f9:ef:cf:86:
4d:30:21:4a:42:a6:f1:07:a4:fe:3f:74:e9:4d:94:
41:01:2f:65:89:5c:84:e3:36:c0:38:f5:32:75:c5:
4b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:55:AF:3A:D9:94:D7:12:8B:51:80:EC:DE:05:58:1C:97:66:E2:22
X509v3 Authority Key Identifier:
keyid:33:C3:42:C0:6A:AC:C3:59:D3:94:39:FF:58:DE:FA:8E:A1:87:57:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M8NCwGqsw1nTlDn_WN76jqGHV0g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/KlWvOtmU1xKLUYDs3gVYHJdm4iI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/c55fdf-a68a-4aa0-b8c5-7f2333604997/1/M8NCwGqsw1nTlDn_WN76jqGHV0g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.164.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:38:97:52:cc:3e:d5:5b:20:3c:23:29:5f:4d:46:02:7e:c3:
19:ac:74:ef:33:8a:ef:5e:e7:6c:25:4f:72:4f:7b:62:62:e8:
a8:e7:89:83:32:c1:c0:f8:5c:32:5c:9f:89:51:b4:bb:5a:c7:
dc:9c:d8:c9:9b:87:96:e1:8e:05:f5:da:db:ff:03:0e:a5:4a:
70:e5:fc:b4:81:dd:44:14:29:a3:5d:f8:a7:a4:1a:ef:74:7b:
30:c5:8f:bb:5a:13:fa:27:2f:a5:b0:82:14:f4:6e:4a:03:28:
f1:7c:22:65:ac:c9:69:4c:81:2a:24:8d:01:ee:14:31:3b:85:
84:4f:49:e5:d7:9a:fa:5b:49:68:36:53:b1:3b:c3:a8:c1:6f:
a6:c5:45:0c:ab:b5:89:59:5c:9c:dc:27:68:bf:94:35:10:cd:
90:25:20:01:8d:94:6a:54:3e:6b:fe:d9:53:0a:d2:95:6e:1d:
fa:d5:5e:8d:23:8e:33:0d:2f:09:73:a2:c3:6f:24:d2:14:60:
96:bc:48:71:b2:36:1c:45:94:d4:79:08:95:59:e7:3a:c5:b8:
dd:9f:45:60:73:9c:92:b8:49:3d:bd:95:c3:12:ef:33:fb:f1:
25:34:8f:65:5e:c6:48:cf:88:e5:61:9f:b2:c1:0c:c1:ca:3b:
1e:d5:ed:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:54 2024 by rpki-client on console-fra.rpki-client.org