Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/TD3hzGm0wOeg_d0B-pEp773jNm8.roa
File: TD3hzGm0wOeg_d0B-pEp773jNm8.roa (raw, json)
Hash identifier: OrSVztsPXxOuEzdLh+8zSo7imeCrehit1+2rz9Fd92k=
Subject key identifier: 4C:3D:E1:CC:69:B4:C0:E7:A0:FD:DD:01:FA:91:29:EF:BD:E3:36:6F
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0184018D5BF04BC8E5606D6BF8A5ACCF6606
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/TD3hzGm0wOeg_d0B-pEp773jNm8.roa
Signing time: Sat 22 Oct 2022 21:15:52 +0000
ROA not before: Sat 22 Oct 2022 21:15:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.93.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:01:8d:5b:f0:4b:c8:e5:60:6d:6b:f8:a5:ac:cf:66:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 22 21:15:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c3de1cc69b4c0e7a0fddd01fa9129efbde3366f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:04:61:a2:6c:e2:eb:0d:79:c6:23:8a:7a:c2:
7c:0a:0e:71:1b:e7:e4:fc:6d:98:76:64:c5:84:f7:
bc:b3:3e:b6:f1:54:12:6b:72:20:f8:c7:25:af:8f:
9d:a2:c4:f0:29:01:1c:2c:ab:fb:5c:1a:b5:79:3c:
7b:df:11:96:3b:46:d6:27:1e:b1:30:94:a5:96:48:
2a:9c:ab:27:01:c2:a6:eb:c0:bd:b1:7a:61:f8:77:
1e:94:4b:df:71:2b:b9:b3:6e:1b:da:98:65:ad:fc:
25:8f:7e:d2:89:18:ac:69:97:23:5c:f6:6e:8b:0f:
20:c6:e0:47:12:0e:b9:b6:4f:e9:bd:94:03:eb:44:
94:bb:2d:4b:0c:37:31:89:d1:c1:fd:20:16:ff:f2:
96:ab:f8:f3:a3:88:a9:cc:11:d2:54:50:1b:b0:d0:
f6:f1:5a:85:47:1d:56:b8:33:d6:b6:ce:1a:75:43:
1a:68:4f:cf:23:81:4d:23:2e:15:55:8b:55:d9:de:
4c:b5:b6:ac:38:70:a4:e7:70:04:bf:60:2e:b0:31:
5e:cb:17:47:87:24:30:17:a2:98:5b:1e:21:ff:b6:
cd:07:12:c4:8e:3a:27:26:ee:76:ce:97:5d:2a:36:
c8:f7:b1:78:27:fe:07:51:07:84:8c:48:d4:15:e1:
35:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:3D:E1:CC:69:B4:C0:E7:A0:FD:DD:01:FA:91:29:EF:BD:E3:36:6F
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/TD3hzGm0wOeg_d0B-pEp773jNm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.53.0/24
Signature Algorithm: sha256WithRSAEncryption
79:e0:b7:87:b5:a3:1c:2e:f4:e5:62:b9:be:3d:3a:d5:09:ba:
f9:e5:5f:01:c2:60:95:b0:cf:8e:f3:a7:f5:b8:b6:2f:ae:f0:
ec:7c:14:5b:4d:0a:e3:f2:30:ad:93:8f:98:21:1c:3d:df:2b:
b4:69:ba:19:e1:61:37:99:7c:4b:65:68:ec:72:ef:c8:3e:58:
a9:71:46:e5:e5:97:5a:ad:6d:da:58:5b:14:f9:76:32:96:6b:
37:4f:23:6e:60:5d:87:3a:71:ba:12:cd:89:50:5a:81:90:ee:
1c:0e:6d:a8:f4:2f:9a:1c:6a:77:28:0b:bb:7d:cb:d9:f0:31:
20:0e:38:8d:84:ec:1b:fd:8d:c5:74:3b:a6:46:c2:1a:4c:cf:
f3:97:a7:a2:37:ae:63:85:4b:ac:0d:59:7a:68:ef:c8:38:22:
b7:28:da:dd:e9:ae:26:20:1f:10:ac:ce:3d:0b:0d:de:f7:4b:
3a:b0:a2:dd:9c:2b:ad:c6:49:4a:fd:8a:61:fd:15:54:22:51:
e4:64:3b:f8:0f:0e:16:fd:e0:f1:41:1c:f7:e4:e3:52:a3:1c:
ae:e7:29:03:d1:60:f3:c0:aa:66:dd:62:b8:b9:21:24:6c:6d:
72:d7:74:a7:34:a2:14:c4:2a:2a:48:29:a9:e2:4f:d7:c8:26:
bc:ea:f8:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org