Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d5f9aa-337b-4d60-8f5e-02125e44e3a8/1/kXvv7dscZoZdaL2a7qY_6tvIBqg.roa
File: kXvv7dscZoZdaL2a7qY_6tvIBqg.roa (raw, json)
Hash identifier: d9XMoBlS0E086JTmPwIu7RHi9oKBoYJPxjpKHdLdeWA=
Subject key identifier: 91:7B:EF:ED:DB:1C:66:86:5D:68:BD:9A:EE:A6:3F:EA:DB:C8:06:A8
Certificate issuer: /CN=bb57561ca2dbf750e8f5e0b7389ef09ce9b5bcea
Certificate serial: 0ABF5770
Authority key identifier: BB:57:56:1C:A2:DB:F7:50:E8:F5:E0:B7:38:9E:F0:9C:E9:B5:BC:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u1dWHKLb91Do9eC3OJ7wnOm1vOo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d5f9aa-337b-4d60-8f5e-02125e44e3a8/1/kXvv7dscZoZdaL2a7qY_6tvIBqg.roa
Signing time: Sat 01 Jan 2022 00:56:01 +0000
ROA not before: Sat 01 Jan 2022 00:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2852
IP address blocks: 193.84.32.0/20 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180311920 (0xabf5770)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb57561ca2dbf750e8f5e0b7389ef09ce9b5bcea
Validity
Not Before: Jan 1 00:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=917befeddb1c66865d68bd9aeea63feadbc806a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d5:15:f0:4f:05:37:7b:c7:5a:d5:e3:dd:d8:
5f:f6:2c:66:30:ac:c0:96:4b:e2:c3:4a:c4:fa:e6:
e5:a8:e8:bc:2d:a8:0c:75:b0:34:5b:db:a4:0c:29:
9b:af:82:dd:fe:ee:15:ea:d6:17:e2:41:d8:0c:b2:
d2:74:f2:e8:16:08:7a:31:2e:d3:3d:9f:fe:5a:64:
b1:0f:aa:e3:d8:09:1e:a5:56:1e:95:59:d0:f0:b4:
d7:61:07:9a:14:88:95:b5:13:7e:63:97:2c:d6:f8:
d7:ad:cc:6c:51:0f:8f:3f:83:b5:c8:a3:61:6b:a5:
5d:23:9b:bd:9e:91:86:59:9d:f3:2b:1f:6d:7f:c1:
a0:d4:55:e1:e8:8b:30:ea:f1:9d:c2:ee:c4:0c:ba:
ff:04:ba:47:55:2e:71:70:49:71:ee:56:db:bf:85:
05:0a:aa:55:be:90:79:66:28:06:7f:91:48:7d:a5:
a2:7a:5a:7a:2b:c1:7f:a7:80:04:00:4e:e7:35:0b:
28:7e:1f:a4:8c:fd:2a:89:56:f4:31:14:fc:7d:c0:
3e:fc:c1:f3:e8:1e:c1:db:7b:c5:aa:92:33:f6:40:
3f:e1:a3:96:b2:af:dc:38:68:71:2c:02:3d:78:dd:
17:a1:59:a1:7a:5f:de:03:a0:1c:ab:86:2c:2e:ae:
c8:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7B:EF:ED:DB:1C:66:86:5D:68:BD:9A:EE:A6:3F:EA:DB:C8:06:A8
X509v3 Authority Key Identifier:
keyid:BB:57:56:1C:A2:DB:F7:50:E8:F5:E0:B7:38:9E:F0:9C:E9:B5:BC:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u1dWHKLb91Do9eC3OJ7wnOm1vOo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d5f9aa-337b-4d60-8f5e-02125e44e3a8/1/kXvv7dscZoZdaL2a7qY_6tvIBqg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d5f9aa-337b-4d60-8f5e-02125e44e3a8/1/u1dWHKLb91Do9eC3OJ7wnOm1vOo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.84.32.0/20
Signature Algorithm: sha256WithRSAEncryption
49:50:f8:aa:52:f4:15:6d:60:9c:51:9f:6c:61:da:e5:f2:28:
d2:ec:a8:50:b6:d9:75:25:36:47:eb:d2:45:db:2e:5b:a4:3c:
2e:e2:6e:47:ba:32:0a:2d:56:44:dd:fb:ea:68:c6:7e:18:97:
de:25:08:4d:54:3f:05:ff:50:54:0c:70:cb:7d:ed:35:6c:f3:
5a:38:bf:52:ee:7c:d4:ab:5d:83:dd:f7:58:e1:ee:96:4c:87:
f2:78:00:d9:b5:13:f7:16:9d:5a:43:34:03:f7:13:27:e6:2e:
5e:d3:e3:72:d8:de:36:42:09:92:ea:8e:52:c6:fc:cf:f6:ea:
81:e1:b5:9a:52:c9:50:92:cc:dd:18:4d:f0:16:9e:82:9d:20:
50:c9:0d:b3:de:a5:e0:e0:5e:b3:e9:d8:fb:0e:5d:51:a5:fe:
f0:05:24:15:e1:ee:05:29:71:5e:ca:b3:aa:00:08:03:80:63:
b5:72:cf:d9:35:3c:19:3c:97:f9:3f:ab:b8:f5:c2:53:12:ea:
94:cf:1f:7d:f8:dc:3c:25:be:8d:78:39:29:8b:0c:2f:46:bf:
d5:37:55:3e:91:a5:c7:ce:6c:4a:6c:24:e5:cc:9a:de:9b:9d:
56:b6:66:70:74:85:f5:25:e0:21:ab:d5:19:31:24:f4:ae:c9:
b6:eb:27:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:05 2024 by rpki-client on console-fra.rpki-client.org