Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/tDM6mKmmoHEfdHTQjg2y5Ymes9Y.roa
File: tDM6mKmmoHEfdHTQjg2y5Ymes9Y.roa (raw, json)
Hash identifier: 44THe74faL9PzaHjKz03vokuVZL72jeP0D5GdSYPlOs=
Subject key identifier: B4:33:3A:98:A9:A6:A0:71:1F:74:74:D0:8E:0D:B2:E5:89:9E:B3:D6
Certificate issuer: /CN=846af54e6558cfc86252946e4692ab92777c0e10
Certificate serial: 0182D05435A1A3962DF83308ED9F268437A4
Authority key identifier: 84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/tDM6mKmmoHEfdHTQjg2y5Ymes9Y.roa
Signing time: Wed 24 Aug 2022 14:49:15 +0000
ROA not before: Wed 24 Aug 2022 14:49:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8987
IP address blocks: 193.24.42.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d0:54:35:a1:a3:96:2d:f8:33:08:ed:9f:26:84:37:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=846af54e6558cfc86252946e4692ab92777c0e10
Validity
Not Before: Aug 24 14:49:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4333a98a9a6a0711f7474d08e0db2e5899eb3d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:85:f4:ce:3c:71:be:d1:07:96:92:0e:98:9e:
1c:ef:7c:4b:6c:87:7d:de:bb:16:82:c0:7b:77:c0:
ff:40:ca:69:64:a2:64:71:7e:5d:d7:58:02:d9:93:
79:f9:70:66:41:bb:7d:18:a8:ee:9d:f8:0d:28:bd:
ca:f3:a9:39:2f:66:0c:d3:04:35:10:b6:5f:b4:46:
f6:66:41:94:54:d0:44:67:70:00:6f:16:51:d7:36:
2a:d8:53:66:ce:c8:3a:c6:3f:04:8e:4a:92:b1:3e:
a1:3f:31:96:ad:4e:4f:17:98:72:05:0e:8e:b0:9b:
27:76:ac:df:00:af:5a:41:08:ca:be:23:81:72:d5:
8d:1d:d4:f4:02:f0:ae:be:bf:72:48:51:b7:8d:ad:
3e:be:54:66:0c:aa:27:72:14:0b:59:18:09:e4:17:
65:5d:ef:a6:8d:dd:08:b9:c1:1a:e9:a7:8e:bf:9b:
08:66:5a:84:61:80:1f:72:25:11:ce:88:5f:65:a1:
12:19:e8:db:b3:4f:10:9b:25:ae:7e:6c:1c:ce:f1:
6e:cb:3f:51:0b:4e:b8:b6:db:70:85:e4:04:5a:94:
07:bb:e0:44:f0:f6:41:27:3d:8f:83:06:4d:1c:24:
df:86:64:d7:02:13:57:5b:d6:c8:c3:6d:f4:bc:e4:
0a:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:33:3A:98:A9:A6:A0:71:1F:74:74:D0:8E:0D:B2:E5:89:9E:B3:D6
X509v3 Authority Key Identifier:
keyid:84:6A:F5:4E:65:58:CF:C8:62:52:94:6E:46:92:AB:92:77:7C:0E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hGr1TmVYz8hiUpRuRpKrknd8DhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/tDM6mKmmoHEfdHTQjg2y5Ymes9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/283fee-2c36-4e70-bbe4-07e36efc5e42/1/hGr1TmVYz8hiUpRuRpKrknd8DhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.24.42.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:27:39:ae:3d:95:ea:dc:3c:90:5e:c8:03:c5:4b:10:b6:7e:
b4:79:be:6f:66:e7:bd:01:a9:3f:94:c1:da:0e:3f:dc:29:49:
af:45:cf:07:d6:0d:5c:9b:06:43:2b:71:35:7e:b1:c6:39:ad:
83:c6:46:20:97:55:33:b4:e7:95:a6:05:27:12:fc:7d:94:7a:
58:00:05:8b:1a:57:ff:af:bf:44:01:1d:24:38:45:b8:16:1c:
ba:5e:12:a6:95:e7:3b:37:8a:c7:46:56:d1:42:59:d0:45:3d:
9b:e2:45:0c:aa:a5:77:69:f5:ca:22:42:34:af:37:16:e0:f0:
14:fe:b0:2e:db:13:44:0d:fa:8a:b5:15:05:9e:14:25:09:56:
8c:6a:6b:f0:8e:a4:7a:68:22:d7:a9:ec:c5:e8:51:e3:23:af:
05:20:61:9d:9c:c9:6e:1f:9a:4a:32:af:41:42:3d:f6:d9:26:
a2:6e:fd:6b:ad:de:33:a5:76:d5:20:b8:85:7f:71:c8:6a:bb:
50:87:41:13:ab:1e:99:e0:7f:8d:5d:14:0d:cf:4a:ac:ca:94:
0a:4a:00:19:57:0f:7c:87:90:14:03:8a:4b:e8:72:80:e1:f9:
db:b8:f0:44:59:7d:98:39:5b:28:a8:2d:bb:f2:a0:2a:12:91:
d5:af:30:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:32 2024 by rpki-client on console-fra.rpki-client.org