Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/XGXfNyJA6OuKcatqg5iYuggGS_4.roa
File: XGXfNyJA6OuKcatqg5iYuggGS_4.roa (raw, json)
Hash identifier: Ud2tO4IHO3WEspmsG6Ul0CLUJQyR2Fe0U5bfXbKK6OI=
Subject key identifier: 5C:65:DF:37:22:40:E8:EB:8A:71:AB:6A:83:98:98:BA:08:06:4B:FE
Certificate issuer: /CN=2f3eaf4ec754f4a0e3d84ca253ad406ee9c7de15
Certificate serial: 018383F311336E34AE5A11C96C1F925DE0A7
Authority key identifier: 2F:3E:AF:4E:C7:54:F4:A0:E3:D8:4C:A2:53:AD:40:6E:E9:C7:DE:15
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Lz6vTsdU9KDj2EyiU61AbunH3hU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/XGXfNyJA6OuKcatqg5iYuggGS_4.roa
Signing time: Wed 28 Sep 2022 11:54:48 +0000
ROA not before: Wed 28 Sep 2022 11:54:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203735
IP address blocks: 193.219.112.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:83:f3:11:33:6e:34:ae:5a:11:c9:6c:1f:92:5d:e0:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f3eaf4ec754f4a0e3d84ca253ad406ee9c7de15
Validity
Not Before: Sep 28 11:54:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c65df372240e8eb8a71ab6a839898ba08064bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:07:15:cf:3b:dc:54:bb:85:81:16:72:20:0a:
6c:23:0a:a2:af:dc:c2:d6:ee:c8:fb:f3:de:31:10:
ae:7e:1d:c1:ee:5c:3a:d0:90:56:20:34:9c:08:16:
ef:b9:09:e9:97:a8:a3:eb:fc:0f:57:d6:47:ae:25:
12:b4:9c:f3:16:55:bc:14:dc:e3:04:c5:74:1c:dd:
df:43:50:1b:ea:08:cb:70:70:16:1a:40:bf:a4:84:
89:6e:1c:db:24:27:7c:88:91:f1:52:05:77:c8:98:
92:ce:bd:23:c0:26:d7:0b:22:dc:f4:02:43:c7:a9:
6a:66:12:f4:8d:97:34:a7:50:42:a3:48:68:70:4a:
44:8a:ff:6b:40:c6:4b:8f:79:24:3d:6e:35:7a:1c:
e3:6c:03:b4:c6:93:3b:22:96:0a:b4:3b:59:89:6b:
ff:32:53:d6:be:03:90:2a:4d:27:f4:54:51:41:4b:
ae:d5:e5:ec:28:5a:fe:e0:9b:8b:98:4a:00:3f:9c:
85:f8:44:02:8c:04:66:6d:b5:85:5b:08:45:12:91:
7c:c6:63:d3:dc:78:18:76:3c:19:6d:b4:a8:9e:d6:
0a:05:bd:f6:d2:60:5e:38:eb:3a:d0:2c:eb:3d:61:
eb:67:41:1f:49:e4:d6:e5:3b:76:d8:34:25:f4:c0:
70:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:65:DF:37:22:40:E8:EB:8A:71:AB:6A:83:98:98:BA:08:06:4B:FE
X509v3 Authority Key Identifier:
keyid:2F:3E:AF:4E:C7:54:F4:A0:E3:D8:4C:A2:53:AD:40:6E:E9:C7:DE:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Lz6vTsdU9KDj2EyiU61AbunH3hU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/XGXfNyJA6OuKcatqg5iYuggGS_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/130a65-1b7a-4575-b280-90c3cce569f0/1/Lz6vTsdU9KDj2EyiU61AbunH3hU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.219.112.0/24
Signature Algorithm: sha256WithRSAEncryption
54:2a:9f:97:b2:e9:e9:00:09:72:9e:cd:3b:c1:44:bc:eb:1e:
0f:c2:75:9b:15:e1:b4:03:28:ee:6b:8a:63:c1:0d:fa:4c:30:
2f:19:c2:9b:14:8d:0f:ec:55:a6:56:ea:19:bd:20:45:b6:47:
c2:23:3e:9f:0a:82:9e:35:45:06:b9:e6:2d:83:dd:da:e1:f7:
9a:86:b8:d0:b9:63:00:9e:6a:c9:5b:8e:1d:10:8e:af:7e:97:
99:55:35:45:84:fb:b6:65:d9:4f:11:98:00:68:f6:ee:04:56:
01:39:35:32:e8:f2:34:1c:23:e8:3e:4b:e5:e0:99:b1:72:4e:
a2:14:1c:04:98:c8:ef:b2:79:ea:0e:ba:8b:e7:33:56:ce:03:
f1:64:da:cb:a6:14:41:7b:49:2d:11:68:cf:fb:32:fe:99:c9:
a1:b7:f7:aa:a3:61:7f:e9:be:8a:73:c5:7a:95:ea:b8:ec:64:
48:89:9c:12:cc:fa:ea:38:ca:ff:05:3e:86:dc:32:a2:9b:c7:
fa:de:d1:8b:8d:1a:45:25:74:d6:79:63:ac:a4:28:e8:42:9c:
a6:8c:ab:8a:c5:31:62:15:0a:09:ee:3a:62:25:cf:ae:33:4b:
2d:31:e4:97:17:01:ae:ab:14:55:44:02:06:cb:1c:2e:49:e9:
e6:f1:60:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:28 2024 by rpki-client on console-fra.rpki-client.org