Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/XG8YoJopyNtSB3z1jvVmspqk0Do.roa
File: XG8YoJopyNtSB3z1jvVmspqk0Do.roa (raw, json)
Hash identifier: HbdtYNpaJcvPtbAeIohn3zQBvbfxDY8XNU9A0usYR40=
Subject key identifier: 5C:6F:18:A0:9A:29:C8:DB:52:07:7C:F5:8E:F5:66:B2:9A:A4:D0:3A
Certificate issuer: /CN=552c9a1c9c4ff793e888bd583dca9815cc4574c0
Certificate serial: 17053204
Authority key identifier: 55:2C:9A:1C:9C:4F:F7:93:E8:88:BD:58:3D:CA:98:15:CC:45:74:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSyaHJxP95PoiL1YPcqYFcxFdMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/XG8YoJopyNtSB3z1jvVmspqk0Do.roa
Signing time: Sat 01 Jan 2022 10:54:38 +0000
ROA not before: Sat 01 Jan 2022 10:54:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49234
IP address blocks: 193.24.128.0/18 maxlen: 18
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 386216452 (0x17053204)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=552c9a1c9c4ff793e888bd583dca9815cc4574c0
Validity
Not Before: Jan 1 10:54:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c6f18a09a29c8db52077cf58ef566b29aa4d03a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ae:19:8b:77:af:bc:d0:49:a4:85:56:d2:78:
62:ec:d0:5e:34:09:39:ef:53:fb:ec:51:af:8a:25:
45:20:30:b6:1d:78:5a:a9:91:68:b7:8c:c4:3b:a1:
5d:13:48:4d:a3:88:2f:eb:58:21:89:98:eb:21:28:
6e:35:32:66:94:83:31:e3:b9:da:e4:d8:a0:5d:a6:
fa:ad:d8:b7:47:3c:be:95:78:5c:ba:79:09:7d:5d:
66:4f:e9:27:a1:ed:ab:0b:59:15:3e:2b:17:c5:85:
94:8a:f8:45:c2:23:a3:15:bc:67:1e:02:d1:d2:a4:
14:f9:a5:35:35:58:5c:e8:2a:91:f6:b8:64:0e:f1:
74:f8:b3:13:71:5e:84:21:15:47:38:a0:ad:4b:59:
95:43:de:d6:f7:21:a6:95:46:62:92:82:2e:71:57:
7a:e8:a8:0f:6a:2d:f1:17:ac:9e:81:c8:7b:c5:54:
a7:dd:3f:c8:bb:65:cb:23:0a:24:46:9d:3b:f8:a2:
70:f1:a4:01:e1:42:b4:3e:28:f4:ef:8b:f8:18:e7:
a2:2f:98:c8:bd:96:61:50:3c:58:c2:c9:1d:55:a6:
2f:87:d7:58:8e:5f:cd:d6:7a:01:02:bf:57:a5:7c:
e9:65:c8:80:60:f5:1f:dc:eb:38:8c:ee:a5:61:64:
6c:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:6F:18:A0:9A:29:C8:DB:52:07:7C:F5:8E:F5:66:B2:9A:A4:D0:3A
X509v3 Authority Key Identifier:
keyid:55:2C:9A:1C:9C:4F:F7:93:E8:88:BD:58:3D:CA:98:15:CC:45:74:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSyaHJxP95PoiL1YPcqYFcxFdMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/XG8YoJopyNtSB3z1jvVmspqk0Do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bcea5-8e45-458a-b031-b78ff80a8027/1/VSyaHJxP95PoiL1YPcqYFcxFdMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.128.0/18
Signature Algorithm: sha256WithRSAEncryption
17:03:76:05:28:86:42:b4:92:2f:d4:d9:32:9a:54:e8:a6:22:
79:6e:50:02:00:47:42:c9:e3:74:43:a5:4f:69:ac:1c:3f:28:
67:b3:9b:b4:c6:98:0f:77:1c:9e:49:e1:81:a0:42:f2:ee:2e:
4f:58:6f:68:b2:01:a6:6b:be:a0:63:85:92:55:10:c1:cb:7a:
7c:dc:83:b7:8e:5d:ea:dd:75:ea:5d:3a:1b:82:05:8b:22:7d:
df:ad:82:b8:76:4f:ca:c3:f7:3b:bb:61:e7:19:94:99:f2:15:
a1:eb:df:34:6b:da:59:d5:eb:b7:46:9a:5c:0a:18:75:78:bb:
a6:4c:77:46:c8:85:16:4a:a6:32:b6:49:64:e7:75:fd:27:81:
32:86:72:a6:4f:08:55:d1:1c:8a:3a:7d:07:4a:80:9e:16:6b:
22:27:a5:a6:4f:d6:dc:90:2c:f0:98:31:a3:3e:fb:da:b2:30:
0d:2c:23:11:6b:1f:26:e1:29:a5:c9:dd:71:d7:ab:2e:e5:5a:
7f:1c:2e:ef:3f:50:5e:81:78:6a:26:d7:34:bc:ba:47:8f:36:
0f:d6:e6:7f:96:2a:1a:1b:88:ad:d0:78:ab:65:40:78:05:f3:
2a:43:8f:8d:c8:37:ac:01:87:15:bc:4b:6c:a8:e0:c0:ee:8d:
54:5a:16:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:44 2024 by rpki-client on console-fra.rpki-client.org