Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/iOIGsOP8io4XkNNSkXrg5o4eoyE.roa
File: iOIGsOP8io4XkNNSkXrg5o4eoyE.roa (raw, json)
Hash identifier: wB6NTmmXTHkUzNwgiPvq+kR8AcISWacMQVTpeF3Ferg=
Subject key identifier: 88:E2:06:B0:E3:FC:8A:8E:17:90:D3:52:91:7A:E0:E6:8E:1E:A3:21
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01840A2C28D5917C651E8C927F1DA637EBD1
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/iOIGsOP8io4XkNNSkXrg5o4eoyE.roa
Signing time: Mon 24 Oct 2022 13:26:16 +0000
ROA not before: Mon 24 Oct 2022 13:26:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 193.93.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0a:2c:28:d5:91:7c:65:1e:8c:92:7f:1d:a6:37:eb:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Oct 24 13:26:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88e206b0e3fc8a8e1790d352917ae0e68e1ea321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:a5:c8:dc:39:0b:8c:f4:37:8a:85:5e:7d:77:
5e:58:0f:4c:09:f7:bf:7c:3c:30:91:64:8c:ac:b8:
1e:ce:78:72:a3:67:d5:8d:8f:b7:e7:cf:e9:25:cf:
92:24:59:38:92:1c:29:cb:63:1d:c1:d2:dd:19:9a:
be:16:b6:9c:31:2e:84:00:1a:03:a1:d7:bd:63:e2:
0e:dc:af:b9:88:46:f7:db:59:0d:2e:65:81:99:51:
d2:26:5b:0b:8b:a4:7c:d1:9b:d0:e9:cb:dd:a7:26:
fc:0c:86:fc:31:c2:43:7a:5e:fc:f3:ce:aa:32:3c:
4d:d1:93:92:4f:7c:a5:4e:9a:a0:e4:0b:03:6c:75:
97:80:ff:6b:dd:38:05:7f:3d:44:96:91:9b:2f:e4:
80:63:0f:0f:24:39:1a:3f:f2:d8:3e:ec:91:0f:ae:
96:3e:1c:c6:26:1e:3d:39:8b:36:23:99:1a:af:5e:
f8:ed:b9:ee:73:21:9d:11:c9:93:73:2c:86:82:7e:
a5:02:43:13:94:79:dd:0e:18:3a:a4:5d:e6:66:73:
ee:26:d1:79:20:ae:a4:79:58:a8:89:f8:e0:ba:22:
f5:20:e7:5b:3a:bb:3a:d7:74:7c:35:6e:72:5d:90:
7b:46:b9:52:dc:bd:01:a7:a8:42:ee:9a:67:b8:4b:
66:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:E2:06:B0:E3:FC:8A:8E:17:90:D3:52:91:7A:E0:E6:8E:1E:A3:21
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/iOIGsOP8io4XkNNSkXrg5o4eoyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.93.52.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a4:48:90:6b:4a:26:08:b8:69:8c:64:d4:cb:c4:ed:61:1c:
37:ed:2b:b5:97:23:18:5b:a4:52:aa:e0:15:9a:ca:97:a1:c7:
a0:a5:af:ed:3c:34:5e:9b:10:70:b0:af:60:e2:5d:1f:fa:58:
af:40:92:b3:45:eb:2c:b5:d5:0f:50:4d:8a:56:17:98:92:b4:
a4:ef:51:56:ed:83:7c:f0:b2:14:5a:bd:54:cd:29:01:52:87:
ef:2d:94:6e:f3:e4:d2:cc:25:c8:d7:ef:b5:74:f1:8e:17:fc:
e4:6d:43:21:cf:77:c9:7d:53:e6:1c:d5:60:ed:47:6f:2f:0d:
e1:40:5f:6f:05:24:de:b1:e8:15:7a:6d:0b:00:ed:13:e2:12:
86:fc:45:5c:1f:c9:b1:1d:4f:2b:6e:2f:ea:89:45:ce:df:0d:
f0:db:b0:7f:9a:f4:5c:37:cc:80:67:53:15:f3:29:a0:47:37:
c9:1e:8a:d4:68:f1:f3:6d:31:e7:f4:7a:cd:6f:b0:74:1e:87:
e1:75:0a:1b:a7:d7:c6:28:3a:2a:57:df:c4:52:b2:66:32:23:
fb:fc:32:63:94:c1:4e:c4:90:3e:7b:16:a4:7c:ab:66:29:03:
68:a5:a6:96:a2:a7:c2:b9:ed:fd:26:11:05:fc:a4:29:c9:50:
7b:67:d3:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org