Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/sq40UzTntb2yKMTQHwBqKGDw3DM.roa
File: sq40UzTntb2yKMTQHwBqKGDw3DM.roa (raw, json)
Hash identifier: 2exGmC/HQvTVioanwuhsk++AI/iUsuBkP1+LEqyz1uE=
Subject key identifier: B2:AE:34:53:34:E7:B5:BD:B2:28:C4:D0:1F:00:6A:28:60:F0:DC:33
Certificate issuer: /CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Certificate serial: 013C1D
Authority key identifier: 79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/sq40UzTntb2yKMTQHwBqKGDw3DM.roa
Signing time: Thu 07 Apr 2022 13:57:42 +0000
ROA not before: Thu 07 Apr 2022 13:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 193.28.240.0/24 maxlen: 24
193.28.241.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80925 (0x13c1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79d0d856764a3fee64be14f0a49f59a6865285d1
Validity
Not Before: Apr 7 13:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2ae345334e7b5bdb228c4d01f006a2860f0dc33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:b7:e3:14:1c:1f:b6:ad:64:ba:b6:a7:3e:6a:
41:23:3e:04:2c:c9:b0:d5:ca:5a:e7:47:86:72:12:
c8:8c:f7:27:4a:38:37:8c:7a:4c:d0:81:c9:21:15:
ae:2b:77:3e:9a:e2:c7:e2:76:9f:67:ae:12:52:7a:
87:31:11:55:fb:d6:96:8b:e4:eb:61:57:3f:38:e6:
08:ee:40:cf:71:a2:89:af:ee:04:0b:0a:62:65:f9:
d6:4a:85:6d:bd:7d:48:f6:73:67:93:85:b3:95:4c:
d6:1a:b4:19:e2:ad:00:20:da:0a:a3:d7:c8:08:98:
4d:55:a0:74:f2:f2:a3:39:c5:29:ec:2b:fe:09:00:
70:5c:5a:01:bf:33:87:a0:29:dd:93:85:a1:fb:60:
09:0f:f5:8c:e4:d9:f4:70:5e:c7:5c:b4:56:b5:09:
7c:7d:4d:f6:6a:77:99:0f:73:f5:89:a8:d4:24:2d:
68:a2:b2:cb:81:fd:84:05:28:af:ec:e8:0a:b1:96:
9a:d4:08:73:04:dd:50:f8:c2:43:0d:ca:e9:b1:4a:
bf:0f:b1:0e:44:44:d0:40:b4:35:6e:27:7e:5f:b6:
9d:22:88:5e:93:80:83:f7:db:99:1d:82:f9:cc:48:
3c:62:6e:74:19:d2:b2:f5:31:ff:3c:d5:0f:c7:07:
af:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:AE:34:53:34:E7:B5:BD:B2:28:C4:D0:1F:00:6A:28:60:F0:DC:33
X509v3 Authority Key Identifier:
keyid:79:D0:D8:56:76:4A:3F:EE:64:BE:14:F0:A4:9F:59:A6:86:52:85:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/edDYVnZKP-5kvhTwpJ9ZpoZShdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/sq40UzTntb2yKMTQHwBqKGDw3DM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/43e309-75c5-4f40-9db3-f2bb69e75e74/1/edDYVnZKP-5kvhTwpJ9ZpoZShdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.28.240.0/23
Signature Algorithm: sha256WithRSAEncryption
c4:06:ff:19:ee:b0:95:6f:81:4b:f1:6a:d0:f1:11:e8:f1:60:
35:f4:98:82:bf:67:e0:9e:35:21:c9:5f:d2:e8:2e:54:c7:cf:
26:db:d6:6c:db:7f:d7:d3:dd:ce:92:c6:45:98:52:f0:dc:24:
a0:42:23:95:fc:eb:2e:af:e6:23:af:b7:55:80:ad:9a:be:74:
d8:39:c2:73:f6:cd:bf:81:ff:74:aa:fa:43:a1:2e:68:7b:75:
c8:7b:ea:6a:c8:2e:78:74:fc:36:63:30:b4:e3:43:66:99:3a:
1a:8a:f9:be:73:9e:a6:cb:22:66:52:13:22:26:2b:37:c5:45:
f1:8d:b0:78:3f:37:47:58:36:3d:fb:89:f0:ef:56:64:4f:f4:
b2:e7:97:36:40:a8:11:70:43:e7:db:d4:66:77:b9:e3:90:df:
3c:c5:4b:06:85:4f:1b:9d:80:76:af:7e:44:ab:01:b8:ea:78:
32:b5:4d:e5:7d:05:e6:76:41:16:fb:87:ea:4b:50:70:05:f6:
65:0f:34:9e:18:62:95:1a:49:8f:ee:75:fa:f0:91:63:75:a3:
44:db:03:06:68:75:b1:72:db:43:07:ed:33:26:92:5b:b9:62:
7a:31:bf:c9:31:6e:89:5c:3e:76:72:e0:f9:15:9e:a5:db:51:
10:92:6d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-ams.rpki-client.org