Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3Cabmle0gYCuNq2FO-t7ZJPM_GQ.roa
File: 3Cabmle0gYCuNq2FO-t7ZJPM_GQ.roa (raw, json)
Hash identifier: jPce/D4+FZ8GtDFXVobDRQ4HM7Jp1ZXr1Xq/Nyx+EJI=
Subject key identifier: DC:26:9B:9A:57:B4:81:80:AE:36:AD:85:3B:EB:7B:64:93:CC:FC:64
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1C510781
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3Cabmle0gYCuNq2FO-t7ZJPM_GQ.roa
Signing time: Sat 01 Jan 2022 01:02:19 +0000
ROA not before: Sat 01 Jan 2022 01:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15504
IP address blocks: 93.123.19.0/24 maxlen: 24
87.121.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 475072385 (0x1c510781)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 1 01:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc269b9a57b48180ae36ad853beb7b6493ccfc64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:4a:18:75:4c:b5:fd:77:fb:26:99:9c:9d:f3:
c7:de:fe:5e:52:32:13:c0:03:50:58:1b:3b:63:47:
d4:c7:5a:a8:88:c8:86:c5:30:50:66:e5:d0:41:38:
86:a3:b4:9e:2d:3d:0c:73:1e:d0:b4:46:3c:e0:20:
d3:f1:60:14:59:c3:73:04:a1:f4:14:11:40:31:8c:
76:ac:52:b5:8e:10:cd:ae:8c:fc:6d:f8:a0:a2:70:
dd:c2:0d:30:f9:a0:6c:1c:2c:df:b9:c3:0f:df:7f:
de:02:49:ce:a0:84:f5:56:ef:1a:19:0d:f0:4e:34:
e8:77:9a:c2:fe:71:be:1c:ec:36:14:32:a7:68:9d:
98:37:c6:d7:41:d8:7b:90:3d:22:af:e2:13:86:04:
65:a2:d8:9e:6e:d0:7d:5b:3d:69:cb:6d:a4:99:4b:
d8:15:48:9f:a5:64:c7:c8:b5:59:ba:b8:95:03:b0:
14:40:3f:b6:13:ed:9d:0c:76:52:46:61:ac:44:00:
d5:d7:62:24:ae:13:a1:98:ed:b7:e8:c6:eb:f4:92:
48:96:38:3e:81:e4:af:bb:0e:cb:ed:e4:38:d4:e2:
06:29:b4:72:ad:59:4c:53:04:c6:ee:14:63:a8:00:
ad:cd:40:06:1e:b2:36:2a:77:ec:55:16:1d:97:1e:
5f:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:26:9B:9A:57:B4:81:80:AE:36:AD:85:3B:EB:7B:64:93:CC:FC:64
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/3Cabmle0gYCuNq2FO-t7ZJPM_GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.121.107.0/24
93.123.19.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:7b:5f:2a:a1:51:32:9f:1a:a5:84:a1:6f:13:a3:5b:65:24:
a2:53:c3:c4:f1:b8:14:56:87:81:4d:8b:28:f3:e4:b1:88:24:
1e:d4:64:52:45:af:9d:8b:03:92:c3:91:9f:62:47:9d:78:22:
06:d1:10:55:f2:df:17:f8:e0:ca:1a:fe:96:9d:8a:f3:31:d6:
6c:67:0f:72:47:a2:d1:3c:ec:05:a1:1f:3b:51:5c:17:a8:6a:
46:48:33:83:ff:cc:c9:bf:0b:c7:39:35:94:eb:e1:7b:8d:91:
24:3d:d3:36:bc:59:c5:74:45:0f:97:79:06:26:b1:ad:c6:ff:
f6:03:90:20:17:6f:a3:04:95:c7:a8:17:91:3d:79:94:f2:68:
8f:79:a7:a5:69:d5:83:16:30:fa:2e:1d:69:18:5b:bd:14:2f:
0f:44:e4:5e:4f:42:29:8d:c9:bd:bc:43:3b:27:4f:f9:eb:af:
29:8f:15:47:c5:7d:6d:0f:ae:ae:d5:8e:27:1a:8b:f0:dd:f4:
78:34:6f:f1:d0:9c:a4:93:d8:40:a8:4b:39:0f:cf:53:c0:58:
cf:fd:97:72:63:19:e6:29:25:bd:69:85:e8:8e:00:e9:fe:a6:
c7:58:5e:33:05:1c:6d:4c:fe:0c:19:fd:f4:6e:99:d4:be:9b:
d7:f7:6f:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:31 2023 by rpki-client on console-ams.rpki-client.org