Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/3AqsakefuGUJtUpsSnnb9Y4KqNs.roa
File: 3AqsakefuGUJtUpsSnnb9Y4KqNs.roa (raw, json)
Hash identifier: Kwszc/wWEDBTdFqX5HGoomL04ekMBWrQcV6XMVzPqeE=
Subject key identifier: DC:0A:AC:6A:47:9F:B8:65:09:B5:4A:6C:4A:79:DB:F5:8E:0A:A8:DB
Certificate issuer: /CN=2ccb9b89bc0bc21752474e650dc34f069da5c0b3
Certificate serial: 1CA2BB56
Authority key identifier: 2C:CB:9B:89:BC:0B:C2:17:52:47:4E:65:0D:C3:4F:06:9D:A5:C0:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LMubibwLwhdSR05lDcNPBp2lwLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/3AqsakefuGUJtUpsSnnb9Y4KqNs.roa
Signing time: Sat 01 Jan 2022 11:01:30 +0000
ROA not before: Sat 01 Jan 2022 11:01:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59536
IP address blocks: 93.157.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480426838 (0x1ca2bb56)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ccb9b89bc0bc21752474e650dc34f069da5c0b3
Validity
Not Before: Jan 1 11:01:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc0aac6a479fb86509b54a6c4a79dbf58e0aa8db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:c0:fe:16:5e:b7:da:1f:87:e4:e0:28:a8:f5:
d3:90:9f:db:99:f2:6d:70:56:f4:73:1d:a9:3e:cf:
de:65:22:5a:f3:fe:13:42:19:e2:01:7e:8e:1f:7d:
74:a2:c1:67:a5:5d:e5:a2:96:d2:e6:d7:21:ea:ca:
e7:cb:9a:e2:9a:10:48:b7:c6:00:60:e7:0e:56:96:
73:7a:29:c5:c3:ec:3a:a5:18:c4:1b:9c:3c:1c:20:
d8:e5:aa:b6:4c:86:fe:b9:90:b0:36:87:4e:a0:9c:
ef:08:05:61:66:76:79:0b:b9:64:12:16:7d:db:78:
07:69:da:99:a2:85:79:25:61:ad:4d:23:ec:69:9a:
7a:db:d4:6e:95:2d:14:0b:41:74:3c:5c:02:b2:c8:
2c:98:ae:c8:c1:e6:23:17:9d:85:cb:e9:40:33:5c:
ab:c6:cd:9a:c8:c0:60:53:43:cf:f1:56:07:cd:78:
69:9c:3e:6e:b9:5d:72:24:d7:94:21:8a:81:8c:68:
36:aa:88:ad:cf:b0:52:ff:a0:a8:86:75:73:39:68:
2f:09:e3:a8:35:08:6d:4c:ad:18:07:7d:a9:f7:ec:
31:1a:79:ed:23:7b:78:cd:4b:f4:41:f0:58:44:7c:
15:b5:b4:1b:6d:12:c8:ca:de:f3:4d:96:d5:56:34:
71:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0A:AC:6A:47:9F:B8:65:09:B5:4A:6C:4A:79:DB:F5:8E:0A:A8:DB
X509v3 Authority Key Identifier:
keyid:2C:CB:9B:89:BC:0B:C2:17:52:47:4E:65:0D:C3:4F:06:9D:A5:C0:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LMubibwLwhdSR05lDcNPBp2lwLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/3AqsakefuGUJtUpsSnnb9Y4KqNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/23f7c4-6e3b-4fda-931b-062aed51381c/1/LMubibwLwhdSR05lDcNPBp2lwLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.157.13.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:ec:e9:c9:e3:8b:e3:f3:a0:cd:d5:98:28:a7:aa:fd:82:f1:
07:af:a3:68:e7:4a:d8:4c:1d:8d:aa:c8:90:12:7f:6d:8f:58:
4a:cd:67:56:6f:bc:80:21:d6:0e:8d:fc:56:81:0e:84:03:57:
a3:da:aa:34:d3:76:5e:83:89:6b:67:2b:f1:c8:04:cf:a2:da:
0d:90:d4:58:22:ba:4b:af:fe:da:4f:64:11:9d:4b:c0:b5:90:
6c:77:4e:76:b4:db:77:13:97:8c:86:7f:e0:3c:04:08:25:a1:
c8:44:cd:0d:5a:e1:a1:6b:76:a6:26:70:b3:c4:0c:dd:9e:16:
c3:b8:98:15:41:2d:df:d0:ff:9b:c4:0a:76:8c:e3:a6:4f:9b:
14:c9:6e:f0:62:87:2a:9a:30:37:9d:ee:6c:64:60:bb:72:08:
b5:66:22:68:1d:32:21:90:a6:34:14:9f:83:47:85:6d:9b:9b:
23:26:7b:95:46:30:5d:7f:44:08:d8:e2:c1:b2:68:16:ef:da:
ba:37:bd:f4:4c:c8:cb:fc:45:fa:d0:b5:16:e8:36:94:ef:69:
a7:ba:3a:34:43:80:f3:f3:99:ba:49:61:a2:2d:ce:64:ce:f3:
d7:a4:3c:0c:ba:1d:0b:81:72:7f:94:45:e0:25:8d:c9:ac:75:
d6:d9:7d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:43 2024 by rpki-client on console-ams.rpki-client.org