Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/s1NwKkMhBwk2Bi49jLYd0b7vEVQ.roa
File: s1NwKkMhBwk2Bi49jLYd0b7vEVQ.roa (raw, json)
Hash identifier: 2Mj5cT6jdeH2YPkVx7H8jnm0BDq8NLUsqHR+VqndPKY=
Subject key identifier: B3:53:70:2A:43:21:07:09:36:06:2E:3D:8C:B6:1D:D1:BE:EF:11:54
Certificate issuer: /CN=3183785916cd98d7c770d685145499a8a0a15722
Certificate serial: 1AEF431B
Authority key identifier: 31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/s1NwKkMhBwk2Bi49jLYd0b7vEVQ.roa
Signing time: Tue 03 May 2022 12:17:52 +0000
ROA not before: Tue 03 May 2022 12:17:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42280
IP address blocks: 194.102.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 451887899 (0x1aef431b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3183785916cd98d7c770d685145499a8a0a15722
Validity
Not Before: May 3 12:17:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b353702a4321070936062e3d8cb61dd1beef1154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:51:d2:5e:20:e5:3a:c3:35:04:38:f3:7b:d4:
95:54:29:8d:4e:da:92:55:5c:7b:3f:d5:64:4f:79:
59:d4:3a:e9:ce:b4:f6:d3:6f:61:73:6f:11:13:7e:
33:f1:26:21:71:61:14:a8:a3:b0:02:59:8b:f6:2a:
cf:eb:75:bd:da:53:ae:af:d1:c6:2d:a9:15:7e:12:
f1:b8:67:37:fc:7c:dc:8f:b4:17:be:44:23:fa:7c:
4a:b8:9f:52:74:b1:b4:19:3d:14:59:66:29:e4:f4:
29:d8:40:fb:63:de:64:7c:51:9b:57:26:7d:5b:a2:
58:7e:d0:43:a5:fe:77:50:d6:e4:0a:68:5e:38:e3:
96:70:a7:d6:e1:b6:39:d5:e2:dc:69:df:0d:80:3b:
12:31:8f:b4:68:02:34:aa:12:d4:2a:5f:a9:8f:ae:
55:7d:03:bd:f3:a7:1e:62:9d:66:f2:c9:b5:50:63:
87:f5:f3:22:0a:42:65:05:93:07:83:a6:38:1d:7b:
0b:91:a1:d6:47:1c:51:da:ba:11:ab:da:85:30:dd:
8b:4e:a4:5a:30:8c:2b:e7:62:f4:ec:54:ce:aa:43:
7e:a6:42:19:e6:93:b7:bf:11:e9:4a:0d:2f:09:0a:
54:03:c9:68:06:e7:30:70:dc:0e:83:49:df:a2:f8:
18:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:53:70:2A:43:21:07:09:36:06:2E:3D:8C:B6:1D:D1:BE:EF:11:54
X509v3 Authority Key Identifier:
keyid:31:83:78:59:16:CD:98:D7:C7:70:D6:85:14:54:99:A8:A0:A1:57:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MYN4WRbNmNfHcNaFFFSZqKChVyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/s1NwKkMhBwk2Bi49jLYd0b7vEVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/7193db-7f85-42bb-b09a-f52c47c225db/1/MYN4WRbNmNfHcNaFFFSZqKChVyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.102.193.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:14:9c:18:a4:6b:ee:c6:0b:de:bf:d3:89:8f:68:f0:3b:7d:
5c:5d:f3:86:29:54:c1:f2:8f:cf:09:49:09:60:5d:e4:61:b4:
a2:97:97:a5:73:05:eb:c9:fc:5e:c9:ef:f3:7a:b1:7e:0b:37:
a3:ba:59:32:ff:06:79:4f:55:2e:10:32:99:15:1d:50:28:ff:
4f:5f:9c:4d:83:ca:4b:35:36:6d:ee:00:14:05:91:3c:e2:4a:
de:70:0d:7d:b1:96:6b:2f:17:8b:4d:4a:3f:36:de:90:b2:7c:
5d:e2:cf:94:26:ef:46:18:e7:d5:97:c0:9a:dd:9f:23:b1:2a:
63:a3:6f:f6:e1:4c:6d:7c:5e:41:f9:34:c7:87:7e:b0:69:81:
de:41:40:ae:89:f2:db:ba:99:b9:d6:fb:8b:97:83:d0:a8:f4:
84:b0:00:fb:b8:93:47:5f:6b:f9:fc:8b:5e:ff:83:b8:01:73:
95:23:fa:1b:7f:f5:1e:76:2a:3e:a2:9e:3a:c2:c7:7b:a1:81:
74:a4:70:ba:1e:72:ed:f1:dd:2d:87:2f:c3:1b:96:09:dd:b9:
e6:58:4f:39:6e:59:57:e2:f9:d6:b1:3b:6e:1d:02:05:82:bd:
54:aa:e8:61:ca:85:46:51:22:e3:80:6b:ee:ce:96:ff:1f:86:
7a:27:62:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:22 2024 by rpki-client on console-fra.rpki-client.org