Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/tEg6uVGA3A4HS9VMIb5boZ44mvw.roa
File: tEg6uVGA3A4HS9VMIb5boZ44mvw.roa (raw, json)
Hash identifier: 6faajnyk2k8g2YSdhHMPqrorekSmUyOqifxQUBji+Xo=
Subject key identifier: B4:48:3A:B9:51:80:DC:0E:07:4B:D5:4C:21:BE:5B:A1:9E:38:9A:FC
Certificate issuer: /CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Certificate serial: 01F35A91
Authority key identifier: 00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/tEg6uVGA3A4HS9VMIb5boZ44mvw.roa
Signing time: Sat 01 Jan 2022 11:01:48 +0000
ROA not before: Sat 01 Jan 2022 11:01:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 193.46.81.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32725649 (0x1f35a91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00aff6b4effe7c363ef200f6f3e5888b915ba681
Validity
Not Before: Jan 1 11:01:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b4483ab95180dc0e074bd54c21be5ba19e389afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:1f:d1:2f:72:71:39:a7:fa:d0:1d:89:a4:7e:
bd:77:5c:30:c1:99:b1:37:00:e6:52:27:a3:ed:02:
55:ca:70:89:fb:91:33:d7:51:b4:ba:ea:c9:a1:70:
51:ad:24:19:97:f9:8f:26:50:a5:94:a8:df:89:fd:
9d:e8:b4:d6:b5:10:c9:e2:ee:6a:e1:dc:6a:5d:65:
60:d1:6c:0d:86:70:35:3f:a4:d9:3e:7d:df:05:05:
75:40:b5:cb:cb:79:9d:d6:9c:68:30:6c:cd:49:f6:
f1:68:be:84:8b:2a:38:72:5a:56:63:df:51:b2:19:
b4:5c:04:ce:c9:54:6a:76:68:1b:fc:a9:df:c3:d0:
ac:e5:b5:00:9c:ba:a3:61:b3:10:76:59:d1:94:88:
93:1d:dc:97:11:86:2b:a6:7b:11:a2:e2:4e:99:65:
07:cc:64:0e:d7:fc:0c:0a:13:b7:4b:19:e1:94:74:
bf:ef:ef:db:6b:4e:34:72:70:3a:53:c4:70:ac:31:
5b:46:68:5e:c0:78:c2:c9:cd:3c:29:5f:1a:7e:7e:
a2:a7:03:59:d9:8b:29:4b:f6:5d:9d:82:5f:ae:a5:
82:4a:a3:53:7e:31:1b:d0:a4:b7:69:71:d5:3c:ad:
80:5a:76:5b:95:5e:4e:8f:e7:cd:18:b9:47:13:8a:
82:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:48:3A:B9:51:80:DC:0E:07:4B:D5:4C:21:BE:5B:A1:9E:38:9A:FC
X509v3 Authority Key Identifier:
keyid:00:AF:F6:B4:EF:FE:7C:36:3E:F2:00:F6:F3:E5:88:8B:91:5B:A6:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AK_2tO_-fDY-8gD28-WIi5FbpoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/tEg6uVGA3A4HS9VMIb5boZ44mvw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/098d13-6d6d-4294-9753-a8773de768f7/1/AK_2tO_-fDY-8gD28-WIi5FbpoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.46.81.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:ac:ae:38:ef:ed:1e:2d:09:be:5d:c1:b3:7b:93:06:85:c8:
3b:fa:4f:fc:01:95:db:86:c2:2e:8f:9c:a5:10:30:6e:cc:df:
0b:05:d5:7e:9d:52:78:a7:89:94:e1:ad:b5:d0:1e:0a:56:e4:
55:a8:80:3e:cb:34:3b:0a:72:6e:a7:a0:4d:ce:dc:3c:49:95:
c6:66:dd:e9:d4:02:86:71:8a:21:ff:26:a7:9b:9b:17:f0:ab:
36:2a:37:5f:7d:49:c6:16:e3:e1:27:73:a7:79:5a:27:d3:9c:
04:dd:8c:c7:75:08:93:3a:73:4d:f8:f9:88:1b:70:e4:5e:f5:
8c:63:52:25:2a:83:4b:48:20:fc:0c:17:6f:70:a2:6e:a2:03:
d6:cd:52:5f:6f:5f:bc:6f:82:28:6c:a8:52:98:a6:97:9b:e5:
aa:92:8a:df:9a:41:f6:60:e6:f2:91:54:4c:db:59:3f:1c:53:
dd:b0:71:c1:0b:07:ba:23:bc:92:20:c4:41:34:c2:ba:d7:e6:
98:eb:29:4c:b5:36:f4:67:36:69:de:37:44:a2:1a:96:4a:f3:
45:d5:41:b1:95:35:d6:dd:60:f6:db:c4:93:c4:12:94:94:af:
af:9e:04:38:09:7c:9a:92:ba:ef:07:d0:78:6b:11:d2:0f:20:
76:26:98:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:14 2024 by rpki-client on console-ams.rpki-client.org