Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/352HM5T7VVqN0Zu0b_7CGf3Fuwg.roa
File: 352HM5T7VVqN0Zu0b_7CGf3Fuwg.roa (raw, json)
Hash identifier: Atl9OgI2jQOQSVC42yY483pm2RdEnCPfvxUHrmZMthI=
Subject key identifier: DF:9D:87:33:94:FB:55:5A:8D:D1:9B:B4:6F:FE:C2:19:FD:C5:BB:08
Certificate issuer: /CN=de9461c211bf3551c5507c930b4204c6ec43b322
Certificate serial: 01BE3814
Authority key identifier: DE:94:61:C2:11:BF:35:51:C5:50:7C:93:0B:42:04:C6:EC:43:B3:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/352HM5T7VVqN0Zu0b_7CGf3Fuwg.roa
Signing time: Sat 01 Jan 2022 08:03:39 +0000
ROA not before: Sat 01 Jan 2022 08:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211392
IP address blocks: 193.106.189.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29243412 (0x1be3814)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de9461c211bf3551c5507c930b4204c6ec43b322
Validity
Not Before: Jan 1 08:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df9d873394fb555a8dd19bb46ffec219fdc5bb08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:75:d1:0b:a4:8f:22:21:5d:b8:cc:3d:66:87:
96:ce:97:0d:f3:3b:77:bd:1f:93:f4:c1:32:7a:97:
3e:8e:a7:24:4c:e9:eb:31:c0:fb:15:2d:c7:91:ac:
96:05:e7:62:4f:d6:31:0e:aa:a8:2e:f0:1a:a5:e3:
76:16:28:01:01:94:31:1e:ef:69:b5:10:36:fd:b1:
71:41:e3:34:8e:ca:44:f3:8d:51:80:01:96:3a:4f:
c5:fd:27:c3:7d:f1:40:77:6e:91:3d:05:5c:35:4c:
33:66:48:0b:53:b2:d8:e7:de:a2:47:aa:30:5c:b9:
47:c1:bf:fb:4c:de:0f:65:fb:00:e3:60:50:2e:d5:
28:0c:55:db:85:e5:8f:61:0b:70:ba:ea:b1:0f:54:
e7:78:7e:37:f9:94:e6:24:79:ec:7f:68:da:4b:9b:
87:0e:96:a7:61:54:4a:09:37:08:d3:09:b8:80:37:
11:86:1c:66:aa:3f:4f:59:42:d7:60:13:3c:6c:b8:
3a:3b:b9:86:88:5a:9d:f6:78:ec:6e:81:2b:df:30:
f3:63:97:0b:03:39:04:7d:12:99:a8:30:09:f7:d0:
e1:6c:ab:f5:6d:9b:57:01:99:0c:77:9c:ab:aa:49:
b5:8e:38:09:71:76:c3:29:6f:45:2d:70:56:cb:3f:
4e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9D:87:33:94:FB:55:5A:8D:D1:9B:B4:6F:FE:C2:19:FD:C5:BB:08
X509v3 Authority Key Identifier:
keyid:DE:94:61:C2:11:BF:35:51:C5:50:7C:93:0B:42:04:C6:EC:43:B3:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3pRhwhG_NVHFUHyTC0IExuxDsyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/352HM5T7VVqN0Zu0b_7CGf3Fuwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9183d4-0779-49c4-96f7-8202a467d753/1/3pRhwhG_NVHFUHyTC0IExuxDsyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.106.189.0/24
Signature Algorithm: sha256WithRSAEncryption
75:89:47:44:69:52:6a:dd:95:7e:44:82:76:ce:2b:f2:ef:24:
fd:71:30:46:3e:60:9b:9e:2a:4b:a0:cc:6c:e3:c8:bf:b6:49:
67:75:62:6c:d3:72:a5:3c:d0:8a:d0:56:c5:11:e8:b6:ac:0d:
1e:c0:e9:42:3f:28:b3:3d:93:67:10:76:20:75:5d:8d:b0:fc:
e2:88:6f:74:02:c1:21:ae:9c:88:4b:77:dd:4f:39:ab:f0:fb:
ee:1d:33:8c:dc:65:78:ec:2a:65:a6:de:02:e8:19:4b:a6:4a:
24:36:7e:ac:11:06:41:e1:c3:a3:1f:4e:d4:a5:a9:fd:a0:b5:
74:31:5f:2e:fa:8f:92:96:71:62:08:22:34:52:b1:16:e7:de:
65:c9:6b:94:37:51:b3:27:71:09:2b:a4:4d:9b:92:6f:a2:93:
38:53:b1:d9:30:4b:b1:7a:dd:e0:c7:ca:a6:c5:d5:d1:4c:89:
e6:81:1d:cb:1d:3f:e6:79:4b:6b:39:e6:f8:52:3c:a3:3b:22:
2d:5f:20:0d:cf:02:8a:8d:4a:e5:1d:fc:e5:98:9b:06:c8:c5:
d3:63:9b:69:6d:83:fb:67:28:67:e8:e9:da:7c:42:5d:4e:38:
37:dc:33:73:7a:d6:0b:4d:c9:fa:ac:03:a3:38:d1:5a:c5:dd:
f2:2d:b1:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:39 2023 by rpki-client on console-ams.rpki-client.org