Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/EsMioao2WfPlpuubyL3e_bN-xM8.roa
File: EsMioao2WfPlpuubyL3e_bN-xM8.roa (raw, json)
Hash identifier: Wlt4bM0O3AXoHCy+Bi8ZqjjW+KUfETtDawHmjnq35/c=
Subject key identifier: 12:C3:22:A1:AA:36:59:F3:E5:A6:EB:9B:C8:BD:DE:FD:B3:7E:C4:CF
Certificate issuer: /CN=6aae7bc8d33163cc4b6dda171a387ff98022a0f6
Certificate serial: 0597229B
Authority key identifier: 6A:AE:7B:C8:D3:31:63:CC:4B:6D:DA:17:1A:38:7F:F9:80:22:A0:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aq57yNMxY8xLbdoXGjh_-YAioPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/EsMioao2WfPlpuubyL3e_bN-xM8.roa
Signing time: Mon 02 May 2022 16:19:20 +0000
ROA not before: Mon 02 May 2022 16:19:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202803
IP address blocks: 193.138.4.0/23 maxlen: 24
193.138.120.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93790875 (0x597229b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6aae7bc8d33163cc4b6dda171a387ff98022a0f6
Validity
Not Before: May 2 16:19:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12c322a1aa3659f3e5a6eb9bc8bddefdb37ec4cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:fd:37:82:a8:b9:fc:bc:5f:1d:75:43:13:9c:
c4:2e:fa:45:42:dd:13:7d:c8:b0:b7:e9:5a:0a:43:
43:6d:e0:bd:cb:9f:68:e8:e8:41:98:cf:b8:62:14:
ee:50:01:37:07:92:83:67:4d:5d:1a:f2:e0:db:7e:
17:d6:ec:ce:e1:9f:44:36:7c:f6:49:95:c2:cc:82:
a2:e8:97:e7:62:15:86:4c:3e:ee:a2:54:1f:64:a2:
7b:16:c2:1c:8e:5e:6e:41:17:b0:23:bc:2c:62:25:
73:4e:0f:fe:fc:9b:9e:9b:7b:44:53:f5:65:4a:73:
4b:18:b7:ce:7b:d8:05:7a:5c:eb:ba:22:e8:80:0c:
50:a0:73:2f:60:2e:6a:fc:01:ae:df:3b:64:6d:b7:
01:c8:53:2a:d5:7b:e9:56:11:ed:ef:ec:ef:74:94:
fb:13:07:f4:6b:64:7e:ef:87:cd:82:f9:75:59:0f:
54:81:60:68:a0:38:bb:bf:14:f6:c4:94:34:8b:69:
15:d4:2a:2d:bb:f8:91:e7:ae:87:51:8b:aa:a8:97:
6f:d0:6b:26:a9:0f:28:bb:7e:a5:53:5b:cf:e0:49:
2c:4b:29:b7:2b:f8:8a:00:46:da:40:7e:f2:ba:73:
43:d8:fe:13:2f:28:b0:66:ee:20:e9:db:8a:d2:31:
97:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C3:22:A1:AA:36:59:F3:E5:A6:EB:9B:C8:BD:DE:FD:B3:7E:C4:CF
X509v3 Authority Key Identifier:
keyid:6A:AE:7B:C8:D3:31:63:CC:4B:6D:DA:17:1A:38:7F:F9:80:22:A0:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aq57yNMxY8xLbdoXGjh_-YAioPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/EsMioao2WfPlpuubyL3e_bN-xM8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/e5dbf8-b41d-4acd-96ac-8f59cf016466/1/aq57yNMxY8xLbdoXGjh_-YAioPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.138.4.0/23
193.138.120.0/23
Signature Algorithm: sha256WithRSAEncryption
53:06:fd:29:aa:6c:da:b8:82:96:c3:a9:96:ac:eb:49:c1:ad:
4c:fd:97:61:7c:87:7a:b4:29:ef:e5:a1:50:0d:82:ba:79:61:
f8:a5:ef:b0:2e:34:0f:31:68:b5:6d:36:55:72:1c:c4:db:63:
2d:6b:b0:1c:ca:cd:79:b9:c5:02:7c:94:61:4f:e1:3c:20:86:
54:25:19:11:07:a5:14:62:58:cb:a7:7d:98:c2:d7:df:59:85:
e5:e2:b4:a4:7d:a1:0a:72:8c:c4:5e:19:af:ed:2b:13:be:61:
e2:6e:e5:e9:90:03:48:ee:2a:86:52:60:eb:af:71:8f:3d:b7:
8b:a2:96:d7:6d:a0:89:e9:44:ab:4e:f9:3e:f2:cc:ae:e0:4a:
0a:58:c9:e0:17:2a:ad:96:a9:31:fe:70:41:7a:72:49:74:f1:
d9:33:6e:cf:ce:11:7f:42:2e:39:a5:7a:dd:79:8e:d8:0c:95:
ae:65:a2:22:5f:78:da:d8:a5:6a:68:4c:d3:ac:59:ea:b3:f3:
92:8d:f1:3a:e0:d2:7b:ec:22:f0:b7:d7:8c:09:6b:18:06:e6:
e1:c4:0e:d6:14:61:d5:fc:65:3f:3c:fc:61:70:6a:b9:ce:3a:
c0:ba:bd:d2:af:4e:99:9b:1a:f0:0d:dc:ff:51:d6:56:d1:6d:
da:51:8c:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:55 2024 by rpki-client on console-ams.rpki-client.org