Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/1-MClYbLi9MYFPwIE4fYqQk3--EE.roa
File: 1-MClYbLi9MYFPwIE4fYqQk3--EE.roa (raw, json)
Hash identifier: RTg3t7xcNWUb6vsmSHGLWNISOrpOMBaFYKUkZdjiRvI=
Subject key identifier: F8:C0:A5:61:B2:E2:F4:C6:05:3F:02:04:E1:F6:2A:42:4D:FE:F8:41
Certificate issuer: /CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Certificate serial: 02B197
Authority key identifier: 79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/1-MClYbLi9MYFPwIE4fYqQk3--EE.roa
Signing time: Thu 07 Apr 2022 13:57:43 +0000
ROA not before: Thu 07 Apr 2022 13:57:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 193.28.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176535 (0x2b197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Validity
Not Before: Apr 7 13:57:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8c0a561b2e2f4c6053f0204e1f62a424dfef841
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5d:7d:6b:87:dd:a7:f2:10:bc:da:9c:22:15:
89:b4:ae:ce:6e:fa:ab:6d:b4:5e:3d:32:4d:b2:ae:
f9:34:46:70:49:ba:13:4d:97:7b:3e:84:87:c9:9f:
48:9c:d6:5a:9e:53:b6:b4:76:dc:53:b3:3f:e4:97:
a7:4c:10:33:e7:1d:7f:d1:1e:9d:84:6e:14:47:24:
c6:a3:41:39:72:4c:3d:a5:19:c9:e8:0e:cc:28:e4:
40:37:2c:4f:3d:af:da:53:6e:50:ad:fd:96:4c:96:
47:d2:93:90:7d:e3:16:37:95:48:87:bb:f3:81:d4:
35:da:5a:c5:06:a1:79:c2:af:49:85:ae:47:eb:48:
e9:83:d0:35:a2:36:2d:2c:22:33:4a:1c:fa:4c:b1:
72:3b:1a:6a:19:e1:70:e9:a2:b5:e0:a5:7e:5a:3a:
46:bb:43:b8:bf:38:ee:5b:4c:5c:7b:d3:14:4a:07:
a9:75:65:a7:27:8b:3c:0c:ed:5a:68:5f:d8:d2:71:
1a:26:65:10:ff:cd:ef:26:70:5f:21:62:53:94:34:
b8:05:75:0a:e4:7d:5c:31:5c:9a:b1:71:80:ff:84:
51:c7:74:ff:b8:d7:ab:c2:0a:14:1a:3d:48:8d:b0:
4e:35:56:5e:ff:e9:f1:ba:44:2c:c0:e4:06:fa:bd:
94:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:C0:A5:61:B2:E2:F4:C6:05:3F:02:04:E1:F6:2A:42:4D:FE:F8:41
X509v3 Authority Key Identifier:
keyid:79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/1-MClYbLi9MYFPwIE4fYqQk3--EE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.249.0/24
Signature Algorithm: sha256WithRSAEncryption
66:a6:5c:1e:60:08:57:51:8c:c9:af:8f:97:ea:f7:4e:51:cd:
41:8a:cd:b5:a2:9e:3b:92:88:a3:bb:81:bc:3b:88:28:fa:f1:
52:a9:1b:cf:cb:82:11:a6:84:f8:b1:ae:c7:ac:64:77:3a:bd:
8f:f3:a3:58:ac:06:62:41:36:16:4e:29:e2:38:ee:ab:c7:d0:
60:b3:41:e6:d3:09:1e:ca:78:7e:7e:bb:0c:6b:45:a9:c9:05:
37:1f:e5:9c:a5:8f:b6:1b:df:50:93:14:13:f7:56:29:db:f6:
8a:86:90:1d:c3:18:49:73:ba:98:ea:06:75:d8:5a:68:fb:9d:
14:87:d2:58:7f:6b:da:cf:42:bd:20:ca:d6:40:a2:46:e7:81:
d2:ae:19:e5:26:c9:6d:de:c2:95:9f:aa:10:fd:46:b2:92:d4:
e0:1e:9b:ee:da:9b:96:0c:85:eb:38:0e:e3:a3:81:79:cd:de:
71:3c:73:16:6d:20:3e:20:f6:d7:e6:fb:59:f1:f8:08:c2:71:
3f:c9:c6:dc:8b:3b:fd:04:85:cb:39:2c:4c:94:88:c5:83:76:
b7:11:f0:92:e6:67:2d:45:06:b6:85:61:a1:e9:2e:56:b8:76:
0a:4b:d5:40:f2:ba:ca:3a:8f:e7:7a:ae:9f:be:c9:12:af:4f:
dc:36:34:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:01 2024 by rpki-client on console-ams.rpki-client.org