Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qWgU9bWw9hUbrtO-5xqHPOdsgMc.roa
File: qWgU9bWw9hUbrtO-5xqHPOdsgMc.roa (raw, json)
Hash identifier: ovvCcN49/B4tkJBsug0XOh1+Z67Z56ky/6i3S26YeMU=
Subject key identifier: A9:68:14:F5:B5:B0:F6:15:1B:AE:D3:BE:E7:1A:87:3C:E7:6C:80:C7
Certificate issuer: /CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Certificate serial: 018451237A47F12AA6A36D2AF2B81222C4F3
Authority key identifier: 35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qWgU9bWw9hUbrtO-5xqHPOdsgMc.roa
Signing time: Mon 07 Nov 2022 08:09:50 +0000
ROA not before: Mon 07 Nov 2022 08:09:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 193.124.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:51:23:7a:47:f1:2a:a6:a3:6d:2a:f2:b8:12:22:c4:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=35690f5e32d5c86af1e1349dfd4e8ceeb70e1ac7
Validity
Not Before: Nov 7 08:09:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a96814f5b5b0f6151baed3bee71a873ce76c80c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:cd:14:a1:b9:59:2e:a5:af:1d:87:a1:d9:8e:
87:49:67:10:ab:d2:0e:c7:d5:ab:87:52:52:09:ba:
30:7b:60:05:9c:5b:71:b2:7a:a8:fb:e6:20:b4:3f:
15:f5:29:16:a5:3f:a9:02:90:f9:0f:93:2f:d1:05:
8e:ac:03:99:79:1a:62:38:85:29:a8:1d:12:0f:fa:
3c:17:4c:8e:cc:a2:6e:56:f0:d3:2f:01:74:ee:f6:
8a:34:42:2f:53:95:62:56:17:cf:68:3d:2c:0a:2c:
9c:f0:04:63:57:de:0e:9d:13:60:99:d8:aa:53:c1:
a5:4e:9e:0f:4b:79:b6:a8:5c:55:b1:a7:b1:f2:0b:
25:0c:6c:e2:30:03:ff:c6:4d:4a:fa:a1:c8:87:18:
00:36:1b:81:ba:a4:69:5e:74:5b:00:f8:7e:cd:6d:
c6:22:ba:bf:bd:57:dd:96:59:94:cb:61:75:8b:7c:
be:75:15:00:5a:6d:be:87:08:93:42:42:3b:bf:e0:
ea:cb:9f:c3:94:29:f8:e3:d9:18:77:7e:ba:f3:a6:
2f:fe:1f:c1:59:29:de:43:6c:cb:b1:86:ed:75:74:
f9:62:1e:7f:74:42:e1:3f:82:84:2d:ac:e0:a9:95:
70:01:97:6b:22:37:4c:1f:24:ba:d9:78:26:f9:10:
22:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:68:14:F5:B5:B0:F6:15:1B:AE:D3:BE:E7:1A:87:3C:E7:6C:80:C7
X509v3 Authority Key Identifier:
keyid:35:69:0F:5E:32:D5:C8:6A:F1:E1:34:9D:FD:4E:8C:EE:B7:0E:1A:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NWkPXjLVyGrx4TSd_U6M7rcOGsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/qWgU9bWw9hUbrtO-5xqHPOdsgMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/e1447a-8f18-4a80-a422-5a42428f1143/1/NWkPXjLVyGrx4TSd_U6M7rcOGsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.124.203.0/24
Signature Algorithm: sha256WithRSAEncryption
22:a5:9e:59:6e:47:61:05:8a:de:5c:1b:89:82:2b:27:e0:41:
08:d7:78:17:15:cc:08:06:93:77:5f:1d:79:0d:27:96:3c:4f:
5a:4f:68:1a:f4:12:8c:ff:d8:a6:c3:a1:62:2f:c5:74:05:d5:
3f:e4:55:a4:21:dd:8a:52:3d:97:2d:d9:6f:59:27:90:24:a2:
a8:e4:d5:b2:85:8c:f0:71:f2:48:c3:54:bc:76:f2:0e:a8:df:
2d:d3:3b:40:59:70:a3:fc:8b:78:22:f6:04:08:22:52:55:d3:
66:bc:eb:d5:32:c7:ff:69:bd:91:32:f5:25:43:31:77:a1:88:
cb:19:bb:14:0e:a0:df:dd:27:40:39:c7:8b:43:9c:19:9e:a4:
1d:4b:0f:14:57:8f:d5:a8:63:58:3d:50:75:9f:85:e7:59:6d:
f3:66:24:76:e7:6a:1d:b3:82:1c:66:e6:92:7d:f0:37:fc:cf:
09:28:9d:4b:be:5b:7c:46:ef:0d:fe:aa:ee:ab:5b:80:ee:fd:
bd:40:7d:11:84:08:bb:75:fa:08:e1:fd:c4:f5:14:e2:63:e5:
cc:e3:be:6c:48:05:07:2a:0a:f1:24:cf:b8:c6:72:7d:a1:83:
a7:f0:76:8c:81:ea:04:f2:83:5c:c2:72:85:cc:c1:d6:8b:65:
65:6c:52:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:49:47 2024 by rpki-client on console-ams.rpki-client.org