Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/E1VAtJuFOBqSkYu0FAEQ26YEvv8.roa
File: E1VAtJuFOBqSkYu0FAEQ26YEvv8.roa (raw, json)
Hash identifier: tS9K/CkTgoGYA5Zs6c7d2fvZnjiMS75jgV+G35Bz11k=
Subject key identifier: 13:55:40:B4:9B:85:38:1A:92:91:8B:B4:14:01:10:DB:A6:04:BE:FF
Certificate issuer: /CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Certificate serial: 185E4C6E
Authority key identifier: FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/E1VAtJuFOBqSkYu0FAEQ26YEvv8.roa
Signing time: Sat 01 Jan 2022 13:55:22 +0000
ROA not before: Sat 01 Jan 2022 13:55:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48933
IP address blocks: 193.36.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408833134 (0x185e4c6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe5dbc41b11e77bc44bd2c735554b5b4258d0c33
Validity
Not Before: Jan 1 13:55:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=135540b49b85381a92918bb4140110dba604beff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:66:c7:4c:70:fc:0b:3c:13:6a:16:91:b4:2e:
07:c3:e5:0a:e2:03:0d:a4:14:ae:d8:f0:89:41:12:
ea:74:04:ea:44:14:5c:8c:50:bd:9a:de:f5:e7:d8:
34:51:f9:35:45:2c:ec:59:d0:5b:c5:96:65:ee:ed:
89:25:b3:cd:a1:68:be:39:64:1c:1d:44:65:6f:c5:
29:cd:5d:72:c4:17:4f:db:98:81:19:66:29:f7:a1:
27:08:18:7c:ec:d6:39:bf:8f:e2:b5:ee:52:6d:48:
52:09:61:48:17:bf:fc:e3:1c:8e:ea:ef:15:ee:bb:
8a:2f:13:8b:ff:05:bc:c0:ef:46:68:ff:0d:ff:9c:
99:a9:0b:6a:f0:32:9f:32:cc:92:15:71:84:00:ee:
86:ba:79:4b:30:dc:5f:73:e7:8d:a4:33:8c:07:bd:
3a:70:92:fa:44:1b:4e:cd:9c:ff:1b:8a:0b:e0:82:
59:f5:9d:23:37:86:68:cd:dd:5c:e5:65:d3:4d:02:
9a:45:71:ee:1c:37:f6:58:69:0e:dc:ba:71:41:8a:
8c:95:93:58:a7:8b:51:10:4e:91:fd:43:16:c5:a9:
d7:47:4d:68:2c:01:2a:fa:3b:68:61:ab:52:3e:7c:
43:75:13:59:37:d1:67:8e:4f:bf:29:21:bb:4c:fb:
0f:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:55:40:B4:9B:85:38:1A:92:91:8B:B4:14:01:10:DB:A6:04:BE:FF
X509v3 Authority Key Identifier:
keyid:FE:5D:BC:41:B1:1E:77:BC:44:BD:2C:73:55:54:B5:B4:25:8D:0C:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_l28QbEed7xEvSxzVVS1tCWNDDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/E1VAtJuFOBqSkYu0FAEQ26YEvv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/084d33-9fed-4620-b46c-88a63148026f/1/_l28QbEed7xEvSxzVVS1tCWNDDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.36.35.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:09:b4:8f:42:86:c9:51:69:c8:a8:85:78:97:f2:e7:d6:19:
b2:9f:9c:f0:79:51:d3:3d:88:2f:ac:dd:fc:ab:d4:6b:11:88:
f9:68:3b:81:47:cd:8d:b9:af:37:7e:b3:fb:d7:7c:28:63:28:
32:86:a4:3f:34:da:75:ba:da:c8:53:bf:29:0b:c1:84:8b:99:
39:90:c2:6f:26:a8:0e:bd:b2:e1:ec:a8:76:0f:e2:2c:38:af:
fc:78:77:89:b0:36:38:45:3c:09:ce:80:0a:8c:c4:9d:2f:2e:
e8:e0:83:64:08:ee:7e:ab:65:4f:68:cc:e6:21:ad:e7:db:5c:
6c:5f:7f:da:63:df:bc:11:b5:a8:17:ee:a2:42:05:59:3e:e7:
3e:15:27:8a:61:ff:5f:23:2d:79:f2:be:f8:34:8e:e2:fa:a0:
94:c4:51:42:b9:ab:83:5f:9f:6d:0d:27:de:21:f3:90:48:05:
a4:0c:c5:58:d6:fc:78:89:f8:b5:8a:f2:b0:2f:46:d4:65:38:
54:9a:8f:12:eb:ef:c2:9e:19:7e:07:2d:07:7f:89:56:f5:27:
0f:ac:48:d2:82:35:bf:02:33:5c:7c:6e:9a:eb:5b:7f:38:21:
15:42:8d:e5:e6:8e:22:c0:04:b7:ed:41:62:35:56:a1:56:c8:
61:94:60:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:38 2024 by rpki-client on console-fra.rpki-client.org