Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/dnU6n57kzQQqGJC2P9rDf0t1Dqc.roa
File: dnU6n57kzQQqGJC2P9rDf0t1Dqc.roa (raw, json)
Hash identifier: LPIN0gq5bnYKe5DfdL13CRtbRmCulg927zuFUG2Q8y0=
Subject key identifier: 76:75:3A:9F:9E:E4:CD:04:2A:18:90:B6:3F:DA:C3:7F:4B:75:0E:A7
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0183C85C017AC70396C94B46525A6286C407
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/dnU6n57kzQQqGJC2P9rDf0t1Dqc.roa
Signing time: Tue 11 Oct 2022 18:43:36 +0000
ROA not before: Tue 11 Oct 2022 18:43:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197890
IP address blocks: 193.239.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c8:5c:01:7a:c7:03:96:c9:4b:46:52:5a:62:86:c4:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Oct 11 18:43:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76753a9f9ee4cd042a1890b63fdac37f4b750ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7a:3e:dd:b4:8d:69:bf:be:98:1f:46:4d:47:
33:e7:c3:53:ab:a4:4f:7e:b7:87:b0:da:22:42:1c:
ad:eb:d7:ea:23:92:c3:34:15:f5:5d:28:b1:aa:f5:
61:54:ba:fa:33:42:89:97:9b:9e:33:ec:7a:68:35:
0e:80:20:53:f7:3b:26:32:12:54:4d:9c:a1:cb:85:
6e:b7:88:01:9c:16:db:57:9a:41:21:25:a9:e8:36:
09:3e:89:92:a7:27:72:92:8b:68:26:68:63:6b:02:
d4:c8:c2:91:a5:5c:25:0b:90:1b:e9:3f:dc:98:88:
fe:f0:d1:7a:1d:29:2d:6b:74:50:50:89:ba:00:b9:
20:50:d7:e4:a4:6d:9d:82:bd:25:09:72:06:61:ce:
16:6b:39:32:0e:60:2f:f0:f2:b0:4a:10:11:6a:df:
bb:b0:cf:57:e6:24:99:f8:1a:f0:94:b9:ba:f4:9f:
97:75:9b:84:5c:d9:44:34:1e:20:93:76:fb:a1:f6:
51:0f:b6:dc:c1:92:fc:4f:56:10:c7:38:36:09:84:
14:24:3b:3c:10:06:42:1a:09:3d:9e:1a:78:78:5a:
85:5c:e1:cb:c6:29:c1:33:dd:0f:eb:10:f6:67:f6:
7c:a3:77:ac:ce:a9:b3:cf:65:8c:1a:d1:65:70:ad:
c8:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:75:3A:9F:9E:E4:CD:04:2A:18:90:B6:3F:DA:C3:7F:4B:75:0E:A7
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/dnU6n57kzQQqGJC2P9rDf0t1Dqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.197.0/24
Signature Algorithm: sha256WithRSAEncryption
96:a6:5d:6f:26:1f:22:9f:d5:03:87:2c:bd:80:19:81:ae:05:
63:b8:97:a4:1e:eb:34:a3:24:fb:45:c6:e8:28:23:73:d3:1d:
5d:5d:f0:78:52:06:f3:47:50:7a:19:b7:bc:eb:2c:35:01:23:
f9:92:05:e4:5c:1b:21:b8:89:3d:09:0b:0d:cb:9e:27:dd:8b:
a4:82:7f:5e:7d:bd:ad:02:59:22:37:ad:77:2a:54:7c:94:74:
3c:06:51:5b:f5:19:d0:c0:f7:ec:bd:79:a8:0c:78:c7:fd:b1:
39:be:46:1e:d8:2b:0f:d6:b1:a8:3a:fe:77:6f:69:6a:8f:66:
99:ec:b8:3c:e0:e2:05:45:43:bc:23:9b:b1:f4:fd:65:52:1d:
82:10:e9:d4:e1:77:fe:f7:ee:ab:a4:69:3a:41:2b:3a:86:46:
a4:ba:df:28:c2:8d:32:96:66:b8:4d:ee:cf:af:c7:de:ee:b6:
4d:94:16:ac:38:1d:2c:5d:50:fc:4c:7c:9a:0e:5b:30:99:e1:
9f:b5:86:a6:02:ed:22:2e:84:81:e3:27:32:aa:50:28:9a:f8:
03:e0:b2:65:d9:5c:3b:61:c5:f4:1f:32:28:4e:a3:10:6d:48:
19:6e:8e:f0:f7:c3:41:d8:35:34:8c:98:56:ce:50:b7:19:43:
7c:08:60:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:46 2024 by rpki-client on console-fra.rpki-client.org