Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/3POzKypU117rT5YO9XUtdTCwFlE.roa
File: 3POzKypU117rT5YO9XUtdTCwFlE.roa (raw, json)
Hash identifier: aZfR6k6QQosSdzogYWbcJik79WZ7EtZYPoXF1zT+nk4=
Subject key identifier: DC:F3:B3:2B:2A:54:D7:5E:EB:4F:96:0E:F5:75:2D:75:30:B0:16:51
Certificate issuer: /CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Certificate serial: 0A2161FF
Authority key identifier: 9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/3POzKypU117rT5YO9XUtdTCwFlE.roa
Signing time: Sat 01 Jan 2022 11:56:12 +0000
ROA not before: Sat 01 Jan 2022 11:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9121
IP address blocks: 93.157.188.0/24 maxlen: 24
93.157.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169959935 (0xa2161ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e55320077696944b1613c2e8c9c606a1e06eb79
Validity
Not Before: Jan 1 11:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dcf3b32b2a54d75eeb4f960ef5752d7530b01651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a3:0d:9e:ec:24:ba:12:5b:b4:55:e8:f3:39:
ab:25:ec:08:cd:6a:84:88:a0:60:83:fd:0f:eb:bc:
09:95:a7:9a:66:7f:6b:5f:2c:cf:dc:6f:98:a2:ec:
86:38:49:f8:e5:6a:bf:06:22:fb:e3:24:74:59:d1:
22:a7:0d:d9:a5:cf:e6:0c:17:a9:71:e9:bd:7e:15:
8b:cb:5a:46:d3:6d:52:94:ac:4a:af:5a:e0:4e:34:
bf:0d:f2:bd:3a:1f:5a:d2:b7:5d:5d:ea:43:8e:50:
24:57:f3:73:b0:0c:c7:a7:de:7c:68:0e:48:6b:35:
ae:59:d9:01:ba:2b:bf:93:21:4c:c9:74:17:18:ab:
e2:5d:b3:59:c4:cb:68:79:5d:27:fe:41:3a:37:a0:
15:82:9c:b5:83:3b:01:5a:e7:76:98:44:0c:c4:21:
13:7f:2a:1a:d9:af:e1:15:66:e8:10:cf:e6:f4:65:
74:af:d1:6b:5c:8b:64:b8:34:0a:fe:b2:8e:97:3e:
b4:01:31:f0:43:48:76:45:d6:24:d3:95:1b:44:d3:
85:a2:c7:31:3a:e5:6c:ca:e0:5d:49:a0:c7:f9:c1:
62:92:fe:b8:78:13:cd:f7:fb:61:07:08:10:e2:c4:
d8:63:99:e4:b8:08:43:b1:03:0c:39:92:1f:b0:0a:
25:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:F3:B3:2B:2A:54:D7:5E:EB:4F:96:0E:F5:75:2D:75:30:B0:16:51
X509v3 Authority Key Identifier:
keyid:9E:55:32:00:77:69:69:44:B1:61:3C:2E:8C:9C:60:6A:1E:06:EB:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlUyAHdpaUSxYTwujJxgah4G63k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/3POzKypU117rT5YO9XUtdTCwFlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/260b61-a348-4d47-92f6-1e0e8b909e34/1/nlUyAHdpaUSxYTwujJxgah4G63k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.188.0/24
93.157.190.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:b7:ca:c4:ed:e8:d1:f9:09:d9:1a:64:b3:13:09:c7:72:52:
d4:0f:72:3a:12:2b:cd:b9:d3:b0:80:02:7f:ba:18:01:06:89:
9e:47:8a:a7:32:d9:86:7c:a3:c2:eb:2b:41:fb:a7:13:7a:c9:
6d:d4:4f:52:dd:04:3a:9f:9b:5e:12:a9:1b:fe:2d:8c:d0:d1:
ac:16:ca:c8:4b:48:79:56:01:64:df:79:a9:e9:2c:9c:73:ca:
68:60:3b:11:1f:40:ce:64:28:f9:45:c8:4b:75:52:d6:50:39:
b9:5a:93:7b:ee:b2:3c:34:e9:4c:64:83:b0:a2:38:67:be:dc:
4a:71:24:fe:a5:72:26:83:30:04:25:c4:f2:e8:d5:3e:ff:fb:
c6:b1:ed:b1:a9:77:06:3f:63:13:7e:72:03:67:0b:de:cd:41:
cf:d2:a9:8d:ce:d8:df:82:02:84:3c:82:02:ad:da:8f:1d:eb:
16:bf:fc:0b:4b:4b:6e:38:dd:a9:81:b1:92:d3:83:6b:91:c7:
e3:eb:07:e3:66:5f:63:2d:8d:13:88:99:e0:b0:7e:05:c5:35:
e7:19:7c:67:d3:bb:cb:04:aa:0f:16:4d:b5:ac:fe:99:0d:1f:
18:c4:20:ab:61:f2:6f:dd:da:dc:5d:51:16:de:9d:b6:b5:25:
a5:d0:b3:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:43 2024 by rpki-client on console-ams.rpki-client.org