Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CBy2aRmuBWERm6pTEZIkwQr3QTE.roa
File: CBy2aRmuBWERm6pTEZIkwQr3QTE.roa (raw, json)
Hash identifier: UzD+nir1vjSK1IXWDAtvmxwWsovQw4rHoLR6Ppu+LNQ=
Subject key identifier: 08:1C:B6:69:19:AE:05:61:11:9B:AA:53:11:92:24:C1:0A:F7:41:31
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 0184E97A5B1B298814CD90A88A53557FE757
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CBy2aRmuBWERm6pTEZIkwQr3QTE.roa
Signing time: Tue 06 Dec 2022 22:07:00 +0000
ROA not before: Tue 06 Dec 2022 22:07:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48459
IP address blocks: 194.153.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e9:7a:5b:1b:29:88:14:cd:90:a8:8a:53:55:7f:e7:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: Dec 6 22:07:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=081cb66919ae0561119baa53119224c10af74131
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:06:88:ca:ae:32:54:cd:86:bb:f7:3b:e7:f3:
d3:b9:35:74:a4:8c:12:b9:6c:5e:2c:c6:5e:59:85:
c0:cf:77:d3:b2:3b:22:a8:a0:c7:29:e8:22:15:55:
d1:7c:de:4b:b8:69:10:84:71:75:e4:1d:20:88:3f:
9f:5f:c0:4e:aa:02:b8:fb:c8:68:e5:0c:ad:d8:8f:
15:fa:78:0b:f0:a4:c6:61:92:78:5f:3a:c9:b2:d9:
91:62:37:13:2d:07:a2:e9:7a:b9:2f:cf:bd:8e:c9:
da:06:12:30:de:90:1f:5e:a1:54:ee:cf:c7:37:4c:
e7:0f:a1:89:27:a3:a2:c5:5e:05:16:ce:3f:0e:d4:
98:ad:95:9b:a9:8a:cb:78:46:c5:d3:4e:e1:26:18:
b1:b4:d7:84:ec:52:a4:cd:1a:c0:2c:44:01:7f:6e:
d0:84:96:cf:96:a0:a2:6a:2f:b0:12:25:59:a2:6e:
18:7c:4a:e0:25:14:44:12:c4:3f:c5:6a:36:bd:03:
58:43:6d:9e:74:db:77:0e:23:1b:76:53:2f:a2:2e:
1c:65:0a:97:3f:ff:f6:1c:36:59:d2:14:78:93:88:
d6:36:41:2c:6a:15:d0:5c:05:a8:96:13:61:fa:6b:
08:b5:50:30:84:da:1c:77:1a:f8:07:e9:de:24:b6:
a3:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:1C:B6:69:19:AE:05:61:11:9B:AA:53:11:92:24:C1:0A:F7:41:31
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/CBy2aRmuBWERm6pTEZIkwQr3QTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.153.225.0/24
Signature Algorithm: sha256WithRSAEncryption
59:16:7b:66:e5:80:4b:02:50:6a:2f:5d:07:35:e1:46:be:6a:
a1:2a:ad:11:b8:cd:c6:86:d2:97:21:ac:65:62:3a:d1:24:91:
04:22:7b:4c:c7:1e:55:17:10:20:c1:57:e7:18:1d:22:43:cb:
eb:87:32:d0:d0:69:7a:11:84:85:27:23:6a:34:d2:f1:d8:ea:
f0:a6:3c:99:86:78:a2:51:e3:e4:56:6e:43:7c:7b:91:80:01:
85:67:56:ee:db:99:9e:c7:1c:70:ea:cc:1e:b4:5a:e8:40:b6:
ba:a0:8b:c4:41:89:ac:5a:68:2b:55:a5:97:c8:0d:3f:e8:2e:
31:65:7b:e3:4a:e4:f0:5d:4f:9d:a8:d6:fa:4b:6d:ea:12:e8:
80:fa:2a:4e:65:16:ca:53:c6:d2:0c:a7:d9:be:45:b7:6c:8f:
6a:6e:47:ec:f0:d0:11:5b:5a:65:7c:d6:9a:74:45:ec:00:f0:
d2:d0:7e:24:30:f1:a2:ed:5e:cf:77:24:a5:08:33:e1:80:91:
ed:b7:dc:82:a6:11:52:f1:51:3b:68:15:d1:5e:c2:2f:60:eb:
71:9f:c0:f9:ae:e5:e2:06:bd:43:69:35:83:d0:c0:99:02:0d:
c0:f7:df:05:b5:21:dc:51:67:e7:77:4b:c8:59:24:75:1b:39:
46:b6:72:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org