Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/fZYc1h5gqFJBqmjz3DM9v1SutZs.roa
File: fZYc1h5gqFJBqmjz3DM9v1SutZs.roa (raw, json)
Hash identifier: qTUEAlgKCW1T8fdJZaBItoIQKXVWI6ZzIEBrewtLEwU=
Subject key identifier: 7D:96:1C:D6:1E:60:A8:52:41:AA:68:F3:DC:33:3D:BF:54:AE:B5:9B
Certificate issuer: /CN=a85310f503137ae8b35d4f329f46f069dd703815
Certificate serial: 0184C34A0DE630B8E365CEE190BB12AD26F1
Authority key identifier: A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/fZYc1h5gqFJBqmjz3DM9v1SutZs.roa
Signing time: Tue 29 Nov 2022 12:08:41 +0000
ROA not before: Tue 29 Nov 2022 12:08:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202709
IP address blocks: 193.42.210.0/24 maxlen: 24
194.50.74.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:c3:4a:0d:e6:30:b8:e3:65:ce:e1:90:bb:12:ad:26:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85310f503137ae8b35d4f329f46f069dd703815
Validity
Not Before: Nov 29 12:08:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d961cd61e60a85241aa68f3dc333dbf54aeb59b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:aa:a7:38:75:87:86:f0:22:b6:df:5a:88:ea:
23:a6:0d:d2:d4:8b:07:e1:62:8b:9b:d0:5d:83:05:
bd:33:3c:d1:a1:d1:ca:78:df:d1:44:54:95:22:c1:
95:39:dc:ba:e2:f2:87:48:7e:93:d2:22:e9:07:6c:
8f:4a:49:2d:40:0b:e4:72:92:ae:d4:bc:9c:1b:3b:
58:1a:52:96:79:ae:73:5f:21:ec:25:59:f8:7f:75:
6d:ec:f1:57:85:a9:11:fd:64:6c:02:11:6d:d9:4f:
40:86:bc:ee:56:f0:ae:76:39:98:5d:5c:6c:0c:be:
d0:ea:be:9b:af:c3:af:0c:36:a2:36:d4:7e:02:25:
ff:a4:eb:2e:2f:35:9e:09:fb:6a:d3:a2:df:d1:02:
fc:dc:d9:44:09:98:61:69:46:dd:66:b4:ae:40:c3:
45:60:53:89:35:1d:9b:28:d8:f4:3d:e8:76:b1:19:
02:fc:15:7b:e9:32:a6:01:53:63:fc:e8:cf:c3:99:
14:04:ae:8b:03:92:9a:0e:9f:58:ab:e6:59:95:2c:
84:c8:c5:2a:34:47:4d:3e:01:0a:5d:87:aa:83:ad:
a3:fc:3b:4e:96:61:d2:c0:59:31:31:20:f9:60:ac:
ad:5c:3b:4a:55:92:6c:3a:04:e2:5a:ad:59:7c:7d:
b3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:96:1C:D6:1E:60:A8:52:41:AA:68:F3:DC:33:3D:BF:54:AE:B5:9B
X509v3 Authority Key Identifier:
keyid:A8:53:10:F5:03:13:7A:E8:B3:5D:4F:32:9F:46:F0:69:DD:70:38:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qFMQ9QMTeuizXU8yn0bwad1wOBU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/fZYc1h5gqFJBqmjz3DM9v1SutZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b42949-ee0a-4123-87bf-30189a5a4eba/1/qFMQ9QMTeuizXU8yn0bwad1wOBU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.42.210.0/24
194.50.74.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:02:ee:25:eb:54:ce:e6:15:0b:96:d1:2b:5f:59:a3:ae:41:
e7:13:73:27:b7:91:41:6e:db:fd:bd:3c:8b:06:09:f4:b6:37:
6c:fb:0b:c1:de:2f:dc:65:e8:0e:fe:2e:4b:3b:e2:37:07:f3:
26:36:0a:17:7f:fb:35:81:5e:f5:01:b8:bb:f8:86:71:66:4a:
28:99:f3:9e:ae:d0:24:98:ac:cb:39:c1:76:a0:36:75:b0:40:
b8:e7:4e:8a:46:5b:e0:a2:44:3a:f6:3f:a9:be:81:fa:59:05:
2a:44:d8:65:2c:59:54:1e:85:a5:61:19:ed:a6:10:25:e7:b6:
d5:1b:06:1e:b5:64:99:09:5e:05:ab:4a:aa:fb:21:e7:1c:b8:
72:dc:00:bb:ba:e7:58:3f:67:83:c6:7b:f8:52:73:43:53:3e:
7d:b1:d6:3d:42:f3:4f:f3:5a:31:6c:80:43:07:7e:e7:e5:45:
aa:7a:b3:b0:2c:ca:23:9e:d5:32:69:54:ab:a7:46:a3:be:a5:
53:37:24:d0:13:65:4f:bb:90:8d:4b:f3:19:72:6b:25:21:52:
a9:30:58:46:75:ed:29:19:d7:ab:ad:65:d0:e2:25:b7:73:0b:
df:bc:e3:7c:aa:7d:82:41:b7:87:73:33:0a:dd:b1:6b:ea:d2:
83:e0:42:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:03 2024 by rpki-client on console-ams.rpki-client.org