Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/Prez3iPR4hvvAKkkJJEciIMHwac.roa
File: Prez3iPR4hvvAKkkJJEciIMHwac.roa (raw, json)
Hash identifier: j0KYSsPHMornVnMa4nM6EGlskEhI/lyDZFit3huyY0M=
Subject key identifier: 3E:B7:B3:DE:23:D1:E2:1B:EF:00:A9:24:24:91:1C:88:83:07:C1:A7
Certificate issuer: /CN=16058d28430c4e49e61a58af4fd7a6f656edfd9e
Certificate serial: 0232AB99
Authority key identifier: 16:05:8D:28:43:0C:4E:49:E6:1A:58:AF:4F:D7:A6:F6:56:ED:FD:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FgWNKEMMTknmGlivT9em9lbt_Z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/Prez3iPR4hvvAKkkJJEciIMHwac.roa
Signing time: Sat 01 Jan 2022 13:04:42 +0000
ROA not before: Sat 01 Jan 2022 13:04:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211385
IP address blocks: 193.107.12.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36875161 (0x232ab99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16058d28430c4e49e61a58af4fd7a6f656edfd9e
Validity
Not Before: Jan 1 13:04:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3eb7b3de23d1e21bef00a92424911c888307c1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:1b:6e:b3:6e:69:80:89:88:8b:de:8d:59:36:
e8:b2:a3:80:d6:a9:7a:77:d4:17:3e:b1:11:7e:04:
3b:2e:64:5f:73:af:05:f6:fd:37:2c:a2:c7:50:bd:
77:44:53:fd:37:a4:09:5c:48:3f:43:da:8a:c4:ba:
75:4d:17:7d:c7:ea:52:97:cb:cb:99:66:4b:cb:b5:
43:1d:90:ff:67:f6:87:0a:d0:ea:03:1b:86:02:ac:
4c:35:88:9e:a3:4e:d6:f1:83:37:6e:61:25:97:b1:
0a:b5:8a:19:b9:d7:da:0e:d6:e4:39:a9:24:06:d1:
41:96:1d:0e:b7:e5:b7:28:5c:42:af:e0:87:8e:c3:
44:0d:0e:86:70:b0:b5:ca:7f:33:01:34:bb:49:4f:
e5:8d:5a:b9:cb:bf:cf:67:1b:6e:6f:3a:66:50:f6:
10:60:46:3d:82:e1:4a:0b:69:69:ca:a6:ea:8f:fa:
2c:bb:9a:ff:e0:0d:a0:82:56:06:b5:e7:a9:a5:83:
82:a1:16:7c:c3:c7:95:50:68:66:26:bd:d9:35:04:
f3:d6:64:d5:c8:20:5d:55:98:39:73:08:f9:5e:dc:
e9:0c:02:9d:62:f1:ca:cd:ca:36:6a:c4:18:a5:00:
25:9c:b6:01:be:8d:18:f8:fb:be:35:62:3b:52:8b:
d0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:B7:B3:DE:23:D1:E2:1B:EF:00:A9:24:24:91:1C:88:83:07:C1:A7
X509v3 Authority Key Identifier:
keyid:16:05:8D:28:43:0C:4E:49:E6:1A:58:AF:4F:D7:A6:F6:56:ED:FD:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FgWNKEMMTknmGlivT9em9lbt_Z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/Prez3iPR4hvvAKkkJJEciIMHwac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/b88139-1a93-4bd0-9825-bafb7911ee17/1/FgWNKEMMTknmGlivT9em9lbt_Z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.12.0/24
Signature Algorithm: sha256WithRSAEncryption
53:2e:9e:92:f3:a5:72:df:b0:4f:75:df:6d:97:f3:6e:f7:aa:
ba:0d:bb:7c:b8:8b:ea:f9:bd:a8:2c:58:49:64:05:56:a6:b6:
08:84:d8:c3:48:6e:67:f5:a3:cf:1b:65:0c:26:06:5c:c5:b5:
07:d0:3e:bd:d5:2f:de:5c:81:27:cf:74:4d:ad:c5:81:36:3b:
cc:ea:e8:35:0b:e6:d8:b3:eb:f4:8e:2a:cb:b2:89:3e:65:66:
e3:3e:e1:ec:54:00:bd:d6:59:b3:13:f6:c8:7f:ad:35:32:e7:
04:f9:3b:4b:49:9b:f7:11:fa:13:9f:64:2c:b4:d7:99:ea:c0:
3c:e1:f1:0d:22:d1:2d:bd:fe:e2:00:d9:08:9a:68:0e:bd:82:
27:d7:e4:20:32:de:d4:24:a0:da:c5:d4:ae:6a:77:3d:1d:1a:
c3:5b:df:34:7d:ee:10:bf:7a:61:d4:2f:d0:97:70:69:2f:e1:
f1:55:19:b5:a8:2b:08:4b:84:ee:c9:9e:53:52:1c:a7:1f:70:
2e:8e:04:16:ea:d6:02:b4:f6:d9:cd:27:8b:44:a0:8f:9f:08:
71:d3:08:02:5e:ed:a0:2b:da:06:a0:8f:c5:81:be:80:b9:98:
3b:75:19:7d:6b:f2:5a:00:db:5d:b8:d9:d5:1c:4e:37:d4:04:
18:4c:25:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org