Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/Dpty1vXVVfFE14aQ_Zn8uAG_HdI.roa
File: Dpty1vXVVfFE14aQ_Zn8uAG_HdI.roa (raw, json)
Hash identifier: 6/ZngF27+BvPvZ2814Ly1MQBiqoRgAhd5d2UZqwzDK0=
Subject key identifier: 0E:9B:72:D6:F5:D5:55:F1:44:D7:86:90:FD:99:FC:B8:01:BF:1D:D2
Certificate issuer: /CN=a5a42d260d5ecdc2fa2b0b5dbf603b90d715444d
Certificate serial: 0B188D9D
Authority key identifier: A5:A4:2D:26:0D:5E:CD:C2:FA:2B:0B:5D:BF:60:3B:90:D7:15:44:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/paQtJg1ezcL6Kwtdv2A7kNcVRE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/Dpty1vXVVfFE14aQ_Zn8uAG_HdI.roa
Signing time: Mon 16 May 2022 08:02:29 +0000
ROA not before: Mon 16 May 2022 08:02:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34019
IP address blocks: 193.27.0.0/24 maxlen: 24
193.222.128.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 186158493 (0xb188d9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5a42d260d5ecdc2fa2b0b5dbf603b90d715444d
Validity
Not Before: May 16 08:02:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e9b72d6f5d555f144d78690fd99fcb801bf1dd2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f5:50:58:b9:89:5c:5d:ee:fc:09:9e:16:18:
c1:73:16:d1:57:27:71:42:51:4e:30:bd:1d:09:bf:
a9:ec:9e:a8:01:90:aa:27:80:63:53:ba:00:85:38:
d3:43:cf:4e:9d:10:6e:ac:dd:bf:6d:d5:2c:07:b5:
0a:0d:5e:b4:29:c4:d3:d3:32:7c:8c:30:f9:b0:e4:
b6:59:a7:a2:37:1b:91:be:03:35:e4:21:54:88:0d:
e4:2e:e3:8f:ea:b2:8b:e6:f5:13:c7:5a:8b:9e:9e:
c1:6b:f3:10:e4:df:a0:67:b2:7f:25:a2:cd:08:95:
e9:c2:37:38:21:37:3f:cc:ba:8a:c1:09:2e:89:b2:
f4:ea:f1:7d:be:ba:4f:9a:6b:1e:a1:e3:4c:9d:9a:
4f:8c:0a:bd:e7:3a:52:9a:cd:cd:da:c6:33:70:92:
28:3b:e6:18:12:0c:59:64:0a:17:da:cd:92:e4:74:
37:14:05:f6:96:4f:eb:df:c2:2d:cc:87:82:03:26:
72:da:f8:3f:3d:6b:98:b6:70:24:a6:c9:9c:51:3e:
b0:bf:dd:a4:a4:22:62:df:2c:82:fb:6e:a3:1e:f0:
27:e9:8d:38:b5:1d:4a:73:81:10:4b:58:82:f6:ab:
67:87:b9:71:ae:24:3d:68:75:31:55:56:b4:1d:3a:
ff:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9B:72:D6:F5:D5:55:F1:44:D7:86:90:FD:99:FC:B8:01:BF:1D:D2
X509v3 Authority Key Identifier:
keyid:A5:A4:2D:26:0D:5E:CD:C2:FA:2B:0B:5D:BF:60:3B:90:D7:15:44:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/paQtJg1ezcL6Kwtdv2A7kNcVRE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/Dpty1vXVVfFE14aQ_Zn8uAG_HdI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/c392d7-0a99-41c9-a2cd-f0d2b943cb53/1/paQtJg1ezcL6Kwtdv2A7kNcVRE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.27.0.0/24
193.222.128.0/24
Signature Algorithm: sha256WithRSAEncryption
03:d7:9e:5c:ce:c1:c4:af:8a:1a:b8:f7:ed:63:c9:e2:1b:64:
71:35:e5:9d:2f:14:d4:cf:e4:66:9c:4e:a0:6e:09:24:90:cb:
a9:cb:7f:b4:71:28:04:aa:fb:02:be:a2:4a:76:1a:a2:c5:91:
4e:af:b5:fd:aa:ea:5c:59:d5:f8:58:e8:5a:9c:86:ec:bc:12:
d9:db:cb:01:d9:8b:d7:e2:dc:f0:d8:82:bf:0f:2f:a2:a5:bd:
cd:6f:1f:ac:73:ba:65:43:a6:db:d0:ff:50:93:d1:12:ed:1c:
53:f6:7e:69:99:6b:c8:0b:3e:a3:25:4a:7f:c0:c2:8c:8c:36:
3f:93:4d:66:05:d0:44:46:0d:d7:9f:98:f6:96:a3:ff:d4:e5:
d1:e5:2c:5d:d5:01:e8:8e:b4:bb:4f:c2:11:d1:32:a6:8b:28:
cd:73:57:ae:9a:59:a7:4e:65:9b:21:6c:f0:7a:25:f9:32:8e:
25:71:a6:4d:a9:37:25:03:4b:1a:d1:48:d4:14:69:de:c2:96:
cf:fd:9b:b4:0e:95:f2:0f:84:84:da:37:43:ed:8f:f1:7e:22:
ea:48:bb:c7:14:75:88:87:11:d8:01:32:4d:02:c7:5b:15:44:
8e:9f:20:d6:ed:33:22:d2:e4:26:c3:1d:4e:bd:ca:68:eb:68:
f7:50:b6:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:45 2024 by rpki-client on console-ams.rpki-client.org