Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/IIySj57b2CoY2rT5zQ75-oaob_A.roa
File: IIySj57b2CoY2rT5zQ75-oaob_A.roa (raw, json)
Hash identifier: A4gWMnPCO2NYF6Zb9x4xPFgp8BYEnnSBkp3BB6ic9qY=
Subject key identifier: 20:8C:92:8F:9E:DB:D8:2A:18:DA:B4:F9:CD:0E:F9:FA:86:A8:6F:F0
Certificate issuer: /CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Certificate serial: 08CBAF27
Authority key identifier: 2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/IIySj57b2CoY2rT5zQ75-oaob_A.roa
Signing time: Sat 01 Jan 2022 06:53:53 +0000
ROA not before: Sat 01 Jan 2022 06:53:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 196879
IP address blocks: 193.106.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147566375 (0x8cbaf27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Validity
Not Before: Jan 1 06:53:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=208c928f9edbd82a18dab4f9cd0ef9fa86a86ff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a3:15:89:4d:2f:2f:d3:89:dc:1a:59:6f:ae:
4f:9b:7d:0d:cb:65:66:64:ad:94:02:10:98:7a:a6:
4e:6e:83:5e:15:1c:15:df:9a:78:fa:34:56:eb:aa:
f8:ed:97:ce:a4:6d:f1:ce:f6:3a:70:21:1d:ae:a1:
8e:41:76:49:ea:4f:32:d9:0d:e6:49:b1:4d:23:3b:
ab:3b:90:04:83:91:1a:82:63:4e:a5:5f:bd:d5:04:
36:1d:db:d6:31:97:8a:be:9f:2c:8d:a6:a6:fd:44:
1b:e6:35:18:ad:7d:84:63:99:38:0a:8a:98:56:bb:
f3:be:3b:7f:53:29:6d:98:93:84:b1:2e:d1:bf:62:
40:1a:1b:16:9b:fa:3c:6f:40:c5:9b:2b:2e:57:63:
81:7f:3a:aa:54:a1:9c:97:4e:71:31:f5:d8:60:9d:
f0:8f:fd:07:19:15:23:3a:88:3e:e7:be:5c:67:34:
29:ac:48:e6:20:3b:90:1b:5e:37:52:54:13:6a:5a:
3a:dd:7a:ea:25:59:a6:0b:07:9b:ac:ac:5d:22:98:
8c:46:57:34:1e:d0:e6:b1:23:e9:dc:3b:2d:33:91:
c5:ca:01:5b:f4:4c:2c:43:dc:f3:4d:a2:88:74:cf:
a8:d0:75:d5:8d:02:71:f3:55:bd:a6:56:81:bf:27:
91:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8C:92:8F:9E:DB:D8:2A:18:DA:B4:F9:CD:0E:F9:FA:86:A8:6F:F0
X509v3 Authority Key Identifier:
keyid:2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/IIySj57b2CoY2rT5zQ75-oaob_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.108.0/22
Signature Algorithm: sha256WithRSAEncryption
1b:f6:f5:1c:0b:5f:15:41:7f:f9:16:4e:c2:3a:41:29:a7:50:
e6:31:1b:45:9a:02:12:1f:96:ac:93:59:fa:45:da:f4:10:42:
91:c9:30:4b:b6:b8:44:a8:99:4f:cc:e1:73:f4:85:01:be:c9:
c4:58:c1:76:99:08:be:77:e4:4a:63:eb:d6:20:09:ca:d9:46:
c8:93:14:85:eb:02:45:b1:66:48:ad:d3:f1:1a:20:eb:a4:68:
be:0f:98:c5:45:df:fd:8c:ee:73:df:92:73:4f:e9:56:fa:1d:
24:c6:6a:ab:df:6a:c3:e5:66:0c:11:fe:9e:c9:89:99:bd:e9:
ac:1e:de:e2:a6:44:b8:3c:fc:1a:db:40:40:95:85:b2:dd:eb:
1c:61:7e:de:21:0d:31:13:28:fc:1f:91:70:b8:84:4c:d6:53:
33:78:fa:ba:ad:a5:8d:2e:44:c7:11:1c:2e:fc:90:30:f6:4d:
6e:ab:5a:54:b8:05:24:90:18:ff:55:2c:00:67:3d:6b:2c:a6:
83:4a:ff:e1:c9:8c:03:87:dd:a2:f0:97:11:a9:41:c9:4c:e1:
0d:a3:41:f8:39:2c:26:ec:23:09:84:36:18:1a:49:c2:1c:15:
45:f9:0b:b0:44:fb:dd:8f:e1:3d:03:60:a2:a6:9b:32:4b:06:
b5:34:4b:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:34 2024 by rpki-client on console-fra.rpki-client.org