Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/dtsXXqk_q-02xBCwVZwwj-hHirA.roa
File: dtsXXqk_q-02xBCwVZwwj-hHirA.roa (raw, json)
Hash identifier: SyYc7ie0kC9cEqPT+s39K67WaYD7Lxac79v+dfELcSE=
Subject key identifier: 76:DB:17:5E:A9:3F:AB:ED:36:C4:10:B0:55:9C:30:8F:E8:47:8A:B0
Certificate issuer: /CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Certificate serial: 01DB222F
Authority key identifier: A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/dtsXXqk_q-02xBCwVZwwj-hHirA.roa
Signing time: Sat 01 Jan 2022 10:03:42 +0000
ROA not before: Sat 01 Jan 2022 10:03:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44489
IP address blocks: 93.91.48.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31138351 (0x1db222f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a137891dd4f3df83772d7cfe7183843cbff44d54
Validity
Not Before: Jan 1 10:03:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76db175ea93fabed36c410b0559c308fe8478ab0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:8f:50:c6:8c:47:f4:10:67:50:9f:34:80:15:
a7:e3:8d:f5:e0:cd:69:4e:9b:b9:68:a3:41:32:18:
9a:ac:15:de:97:08:88:6c:74:8d:af:45:51:d6:67:
74:f4:18:88:a6:94:dc:5c:73:5a:6d:0d:b4:39:4b:
bb:14:f6:35:5e:ef:d4:4e:57:c2:26:ea:9c:74:35:
44:cc:fd:9f:cf:01:0f:6f:c3:aa:e3:d7:56:46:f8:
ea:43:d5:70:44:92:4e:c3:2e:fc:27:45:95:51:41:
07:ba:ee:f1:1a:09:da:e5:cb:9d:30:93:81:12:a6:
41:df:50:3c:e6:ef:d6:28:13:3a:17:15:1f:9b:5d:
2e:cf:b7:31:98:4b:52:a7:df:4c:fe:58:2c:a8:af:
d9:1f:3f:bb:99:13:2c:ab:80:4e:21:1f:d5:82:f8:
dc:d8:03:25:b8:bd:37:ab:d2:f3:e5:35:10:b5:1a:
1b:d5:ba:5c:1f:8a:bc:7b:0b:bf:84:50:93:12:99:
cb:93:7e:6d:9f:28:a2:44:72:48:97:11:a1:54:e9:
a1:a3:00:b6:82:ed:4d:14:7e:0d:f5:8c:96:de:cd:
1e:e8:b0:82:b8:00:91:d9:9c:4c:ac:a7:8e:1d:49:
90:23:86:40:a2:d0:58:8e:e8:a8:95:45:22:6d:14:
63:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:DB:17:5E:A9:3F:AB:ED:36:C4:10:B0:55:9C:30:8F:E8:47:8A:B0
X509v3 Authority Key Identifier:
keyid:A1:37:89:1D:D4:F3:DF:83:77:2D:7C:FE:71:83:84:3C:BF:F4:4D:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oTeJHdTz34N3LXz-cYOEPL_0TVQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/dtsXXqk_q-02xBCwVZwwj-hHirA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/a2bb92-c591-4250-b2d3-8dda6c6ca81d/1/oTeJHdTz34N3LXz-cYOEPL_0TVQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.91.48.0/20
Signature Algorithm: sha256WithRSAEncryption
4f:34:78:dd:e7:1a:5e:de:88:08:cb:f1:34:54:ec:8a:d7:3c:
d9:e4:78:5b:03:3f:86:d9:66:1c:32:76:12:29:95:48:7e:dd:
76:14:b4:96:9a:94:c2:19:bf:17:52:3e:55:90:c9:7f:d0:47:
e6:78:1d:f4:55:fb:71:61:6a:fb:c1:86:7a:5d:12:f7:04:7d:
4c:ed:72:7f:6f:6d:46:c8:25:b8:1b:04:9f:db:43:99:b8:6e:
14:8f:64:c0:bc:33:ce:29:39:48:4a:e6:9e:ad:b5:9d:9d:6e:
eb:17:a5:79:64:b7:3d:98:1e:f5:e3:c6:78:12:00:10:9c:12:
a5:4b:fb:66:2a:a0:73:77:7c:0f:89:fa:b1:dd:81:88:f1:9b:
32:ac:16:4b:f8:ae:09:88:cc:66:71:2d:4f:ef:12:24:f9:11:
0d:ad:e8:bc:79:04:dd:c8:2a:49:c8:cb:f8:cd:bf:e4:64:ce:
ab:74:11:d8:44:1c:de:4d:d3:26:73:22:4c:e0:3b:d8:79:ed:
66:ba:7b:90:08:41:5d:35:f8:2d:16:1a:38:ba:b5:32:f5:89:
6e:dc:11:79:af:a8:03:a1:63:d3:9e:75:df:ab:32:8b:34:07:
99:78:f6:e8:9f:3f:0e:5d:c9:59:5b:24:f0:23:7a:81:4e:55:
44:ff:06:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:22 2024 by rpki-client on console-ams.rpki-client.org