Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/wEfnjYXUlOeg4Q3FKZentaH6jWY.roa
File: wEfnjYXUlOeg4Q3FKZentaH6jWY.roa (raw, json)
Hash identifier: LqzZwk4Wdi4GqIC9Da3Wl4L0xI+zL5tWb5+M/jHITXo=
Subject key identifier: C0:47:E7:8D:85:D4:94:E7:A0:E1:0D:C5:29:97:A7:B5:A1:FA:8D:66
Certificate issuer: /CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Certificate serial: 058022ED
Authority key identifier: 31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/wEfnjYXUlOeg4Q3FKZentaH6jWY.roa
Signing time: Sat 01 Jan 2022 10:57:56 +0000
ROA not before: Sat 01 Jan 2022 10:57:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8937
IP address blocks: 193.24.16.0/24 maxlen: 24
193.24.17.0/24 maxlen: 24
193.24.16.0/21 maxlen: 21
193.24.18.0/24 maxlen: 24
193.24.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 92283629 (0x58022ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3192c52f360a3a72fe22441ac3fc7e0e5225ee91
Validity
Not Before: Jan 1 10:57:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c047e78d85d494e7a0e10dc52997a7b5a1fa8d66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:64:ee:ef:2f:62:29:f6:4c:60:47:25:5b:4c:
87:4e:24:8c:61:3a:14:6c:06:c1:4e:04:d2:27:7b:
a4:17:9c:55:57:5d:fe:0f:9b:1e:7d:47:92:be:e4:
67:53:e2:6f:82:24:fc:3e:ab:6a:8d:d0:f2:1a:fd:
0b:db:b3:24:3d:de:23:fc:54:e4:6a:7f:11:85:e2:
7e:ba:b0:6f:d5:87:36:4c:94:13:68:f8:75:f1:db:
13:c1:ae:54:37:9e:eb:68:a9:ee:65:53:4c:fa:66:
f7:53:7f:df:d7:7b:24:45:87:a8:ca:26:9b:01:6c:
8a:0a:0d:19:9d:cc:7a:24:0e:f8:e4:9b:f9:15:df:
91:c2:bc:ec:93:07:ac:46:68:33:bc:8d:d9:8b:d4:
1c:be:bf:bd:c2:49:15:5d:6f:71:ed:b7:df:05:0c:
1d:f0:c0:2f:76:b2:59:1e:5e:d9:b8:ac:a8:05:57:
32:83:bf:15:da:27:bf:e9:d4:59:55:a9:9f:11:b1:
79:af:80:c7:52:12:28:82:62:85:06:6e:b6:83:39:
5f:d0:a2:d4:b4:be:9f:f4:4f:66:65:5a:cc:18:3b:
72:62:78:d0:b2:16:c5:fa:2c:29:74:d2:2e:99:72:
cd:93:66:16:27:93:4d:3e:ec:ca:02:ce:13:99:dc:
cb:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:47:E7:8D:85:D4:94:E7:A0:E1:0D:C5:29:97:A7:B5:A1:FA:8D:66
X509v3 Authority Key Identifier:
keyid:31:92:C5:2F:36:0A:3A:72:FE:22:44:1A:C3:FC:7E:0E:52:25:EE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZLFLzYKOnL-IkQaw_x-DlIl7pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/wEfnjYXUlOeg4Q3FKZentaH6jWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/524bfe-c5ae-4f67-8413-2748c4002c2e/1/MZLFLzYKOnL-IkQaw_x-DlIl7pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.16.0/21
Signature Algorithm: sha256WithRSAEncryption
e9:4b:d9:85:e9:28:15:c5:d6:87:0a:e5:d0:ed:17:c6:e1:3d:
72:22:a8:e2:c1:4a:3d:66:24:4d:a3:ea:78:be:61:bb:e0:ad:
63:42:d1:83:27:f1:3c:0d:5e:23:94:91:3d:2e:ad:24:94:0f:
38:2a:f3:d5:69:51:74:39:f0:dc:92:74:b5:f5:29:fc:b1:a5:
f9:3b:78:6c:85:96:e3:ee:4c:5a:cb:15:66:81:76:6a:d9:f4:
a9:5a:ff:0f:cc:9f:6b:a6:08:00:17:c3:de:9b:4e:b0:03:f7:
87:53:4a:3b:62:d5:7a:7a:95:10:75:aa:4b:b1:f5:55:46:31:
52:04:74:04:85:47:e1:9e:6a:88:2f:73:cb:22:00:2f:2c:cd:
f8:48:6e:94:99:a8:2e:63:fa:1a:f5:0a:46:08:3c:25:ba:6c:
a0:ab:a2:bb:b5:8d:bb:ec:d0:55:e4:d2:67:ae:0e:53:35:30:
68:7a:a2:d1:2b:7b:dd:c0:8f:cc:b5:6f:3a:85:d0:79:9d:dd:
73:8d:7a:f3:5f:5e:62:7f:67:f6:3d:60:4a:6e:0a:51:47:36:
4c:29:f7:83:2e:05:55:b6:47:27:3a:0f:49:c8:24:ee:e9:57:
d3:b7:ea:bc:1b:75:bc:e3:62:8f:48:63:3b:54:0b:08:fa:5f:
d2:14:66:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:15 2024 by rpki-client on console-ams.rpki-client.org