Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SPkdB5mXe7mT4MyTnIuCgabtE14.roa
File: SPkdB5mXe7mT4MyTnIuCgabtE14.roa (raw, json)
Hash identifier: i/WrdTE2JHFSORuhxO5BM7ErzN9LI8MEjNmCADFRh3U=
Subject key identifier: 48:F9:1D:07:99:97:7B:B9:93:E0:CC:93:9C:8B:82:81:A6:ED:13:5E
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 083C4FD9
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SPkdB5mXe7mT4MyTnIuCgabtE14.roa
Signing time: Tue 18 Jan 2022 14:39:22 +0000
ROA not before: Tue 18 Jan 2022 14:39:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30456
IP address blocks: 193.109.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138170329 (0x83c4fd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 18 14:39:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48f91d0799977bb993e0cc939c8b8281a6ed135e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0b:5d:07:46:9f:19:b5:fa:f2:2f:66:96:62:
d4:78:a1:c4:19:56:12:97:31:7c:1e:63:14:ef:3d:
b3:4b:4a:1b:e9:b6:51:45:ac:d7:76:f9:3a:ba:9b:
42:6c:3f:3d:35:5d:88:33:a2:d0:f4:1f:f4:b9:04:
bf:27:a5:77:f5:7f:96:3b:f0:d1:e9:9a:36:5d:4f:
f4:e2:df:fb:f4:9d:4a:ee:d7:80:c0:e0:78:ac:e3:
79:ac:a9:db:e0:34:53:1c:7b:95:3c:63:8e:e9:9d:
50:99:a9:63:41:9c:df:67:0f:16:6c:8c:76:f0:23:
43:dc:66:1a:88:a4:3a:65:f8:c7:ca:13:bc:ca:f7:
1d:05:d4:ce:1c:db:a3:6e:be:28:e4:2e:ef:e6:58:
02:1d:2b:45:1b:f9:43:dc:93:fb:f9:10:eb:50:5d:
c2:6f:83:25:a2:20:98:d8:f6:96:50:5d:67:c1:0c:
7f:ab:d7:54:87:89:bc:a5:fe:d9:fc:49:cd:16:79:
f5:0d:ff:e6:ee:19:c2:ad:ef:4c:dd:99:29:5f:77:
b9:45:e4:33:66:f6:26:53:aa:dc:ab:8a:0c:26:86:
c1:7a:30:f1:45:bc:f5:b5:27:14:c4:de:53:3c:32:
95:e6:27:79:cd:ef:e0:63:e6:d7:a2:ee:b8:cb:c4:
5f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:F9:1D:07:99:97:7B:B9:93:E0:CC:93:9C:8B:82:81:A6:ED:13:5E
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/SPkdB5mXe7mT4MyTnIuCgabtE14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.137.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:15:d0:c5:56:dd:e4:9f:02:2c:7d:9c:95:22:48:06:ba:73:
53:35:bd:17:4b:23:e9:ca:b2:23:6d:9b:4b:71:6e:a6:2f:89:
d2:a1:5e:13:cc:4e:48:b3:1b:69:68:4f:21:e5:58:40:0e:b9:
3d:ea:6a:7c:98:c6:a8:87:66:88:a8:0d:89:d3:83:42:dc:48:
a2:0c:ab:12:0d:5a:9a:91:da:6b:3d:ad:d2:ce:ae:af:2d:8a:
63:be:db:14:7f:68:34:fb:02:e8:14:27:18:f9:e8:47:3b:29:
f7:1a:e6:62:50:aa:03:f7:7b:34:4a:1e:46:84:d6:40:04:2a:
4d:45:d4:ab:75:4b:ea:c1:2b:64:38:96:8d:b2:b2:5e:3f:de:
78:d5:7e:0f:cc:0a:7c:5d:d7:99:62:1a:88:8c:8c:f9:db:7b:
f2:22:89:36:1a:20:f9:55:de:e9:3b:d2:8b:c8:6b:b9:d5:c0:
ee:d4:ba:c1:05:99:7e:4a:6b:ff:a2:f5:e9:3f:dc:2b:2e:4d:
e1:69:bc:24:5f:2b:37:ad:5d:e5:c6:74:ac:1b:e4:a0:d3:62:
3a:1f:7d:c8:99:12:d3:a8:36:8d:42:a7:82:06:89:3c:db:74:
36:48:13:d5:62:9f:9c:be:04:a5:33:f0:45:44:df:53:30:33:
7c:4c:da:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org