Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/g3XCf2PqQLH4iMEmWge2ZBfSTUQ.roa
File: g3XCf2PqQLH4iMEmWge2ZBfSTUQ.roa (raw, json)
Hash identifier: DIDktn12r6uD/f1y7LQh5js4+TMNMnKI/UstgYtZkR8=
Subject key identifier: 83:75:C2:7F:63:EA:40:B1:F8:88:C1:26:5A:07:B6:64:17:D2:4D:44
Certificate issuer: /CN=c2f3266e0612d8314f4e9f92a3db8bcb253edabc
Certificate serial: 0184D1BE8E65A012BC8784589D9358373ED0
Authority key identifier: C2:F3:26:6E:06:12:D8:31:4F:4E:9F:92:A3:DB:8B:CB:25:3E:DA:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wvMmbgYS2DFPTp-So9uLyyU-2rw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/g3XCf2PqQLH4iMEmWge2ZBfSTUQ.roa
Signing time: Fri 02 Dec 2022 07:30:37 +0000
ROA not before: Fri 02 Dec 2022 07:30:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198941
IP address blocks: 193.35.46.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:d1:be:8e:65:a0:12:bc:87:84:58:9d:93:58:37:3e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2f3266e0612d8314f4e9f92a3db8bcb253edabc
Validity
Not Before: Dec 2 07:30:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8375c27f63ea40b1f888c1265a07b66417d24d44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d9:1e:6a:bc:17:07:ed:f7:58:bf:82:50:fc:
48:51:f2:ec:cb:8a:20:da:17:e9:af:72:c7:ec:a7:
da:70:40:1f:6b:ea:d9:ba:04:8f:4c:a0:f5:eb:d2:
bd:a2:25:e3:2f:3e:47:a0:58:ec:64:6d:69:01:d3:
98:9a:1f:67:a6:bc:73:b2:f1:38:83:a4:aa:a3:d2:
6e:45:a3:64:df:23:89:2b:19:1f:f4:93:99:bd:1f:
67:6f:ee:fd:1f:ab:de:9d:0e:79:d6:26:f5:da:a7:
b8:a3:2d:40:49:38:13:be:5a:6e:c4:61:7d:9f:4c:
3a:0e:e2:54:37:56:cd:f4:b5:9a:67:c4:87:46:99:
f6:84:5d:b5:cb:bd:d0:d7:2b:a4:99:db:74:a9:d9:
4d:7e:92:4c:a8:6a:f3:56:e0:1a:60:8c:2c:48:0a:
04:09:1f:3e:35:dc:cc:c9:d1:a6:b9:f2:f6:c3:12:
46:59:8f:07:96:ce:14:84:75:f5:f3:3e:16:e8:c9:
ce:1d:bf:6e:17:9d:f6:83:6e:1b:53:77:20:f8:db:
3e:31:bf:a9:9f:82:4d:8f:00:df:1a:c5:cb:3b:86:
0d:91:cb:cd:fb:fb:ce:ed:30:1d:5b:49:ff:6f:ad:
35:28:21:fb:34:08:33:15:32:8f:8c:8a:9d:12:fc:
56:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:75:C2:7F:63:EA:40:B1:F8:88:C1:26:5A:07:B6:64:17:D2:4D:44
X509v3 Authority Key Identifier:
keyid:C2:F3:26:6E:06:12:D8:31:4F:4E:9F:92:A3:DB:8B:CB:25:3E:DA:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wvMmbgYS2DFPTp-So9uLyyU-2rw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/g3XCf2PqQLH4iMEmWge2ZBfSTUQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/dceacf-dae2-4763-b399-2fb99fe5e477/1/wvMmbgYS2DFPTp-So9uLyyU-2rw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.46.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:61:cb:bf:cd:7e:6b:19:c4:c6:2c:22:10:f6:04:5d:b4:1c:
a9:a9:63:a8:0b:cc:23:c9:dc:11:b3:90:9c:20:ac:8a:0d:c2:
f9:df:5a:5f:53:9b:a2:62:60:a6:31:db:5f:30:d5:91:8d:3e:
ed:74:53:68:e3:8f:7d:69:0c:ff:e7:55:e4:83:d0:4f:30:53:
77:12:6f:1e:d0:87:ea:e8:c2:69:bb:e3:d0:5a:51:8a:e2:f1:
de:eb:84:d8:dc:d7:04:f1:7e:15:ad:56:8f:41:7e:32:26:d1:
39:a7:95:03:a7:12:48:ba:ba:13:c4:5e:1f:b5:7f:58:5b:51:
2f:1d:92:75:2e:6c:05:72:20:51:f4:95:8c:d4:e8:d4:36:e5:
32:ec:12:ea:99:08:66:c1:18:50:70:0a:4a:c1:8b:d0:b3:98:
6a:79:46:ad:b6:4c:30:9f:26:f1:ba:cd:cf:18:41:2d:23:a8:
e2:a7:4c:73:51:aa:fb:db:22:05:24:8c:a3:2b:e7:0a:90:9b:
66:d9:26:42:cb:fc:bd:3f:33:fa:3c:b9:d9:f0:be:49:be:cd:
c4:61:07:4e:a5:7e:35:e4:a8:ba:8b:d2:2b:1c:13:08:08:2a:
69:f2:72:f5:c2:c1:2c:92:fb:ed:6e:47:1b:b6:a6:05:4d:d8:
c0:61:1e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:28 2024 by rpki-client on console-fra.rpki-client.org