Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/42694f-89a6-43c8-8346-bb0eed13f23b/1/a1ZyJEwSTu2aAnFU7U4vfLFic_0.roa
File: a1ZyJEwSTu2aAnFU7U4vfLFic_0.roa (raw, json)
Hash identifier: YKShJl1wp2jyJEtuieMaZhUAvjyDNIge8Oxtu688gV4=
Subject key identifier: 6B:56:72:24:4C:12:4E:ED:9A:02:71:54:ED:4E:2F:7C:B1:62:73:FD
Certificate issuer: /CN=276abb1ad567e5bb1e475a72a0a68453e3fba1cd
Certificate serial: 015DED
Authority key identifier: 27:6A:BB:1A:D5:67:E5:BB:1E:47:5A:72:A0:A6:84:53:E3:FB:A1:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J2q7GtVn5bseR1pyoKaEU-P7oc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/42694f-89a6-43c8-8346-bb0eed13f23b/1/a1ZyJEwSTu2aAnFU7U4vfLFic_0.roa
Signing time: Mon 04 Jul 2022 15:50:25 +0000
ROA not before: Mon 04 Jul 2022 15:50:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212033
IP address blocks: 193.3.45.0/24 maxlen: 24
2a10:5dc0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89581 (0x15ded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=276abb1ad567e5bb1e475a72a0a68453e3fba1cd
Validity
Not Before: Jul 4 15:50:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b5672244c124eed9a027154ed4e2f7cb16273fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:8b:fd:b3:ae:1a:e1:d8:f8:fa:48:f6:11:84:
58:73:bc:f1:8f:4c:b4:74:fc:11:eb:d7:ee:36:78:
a1:47:cf:24:54:e2:99:3f:41:9a:b8:1b:66:a3:a4:
5d:80:f4:ef:dc:94:ab:17:1f:b3:1c:17:88:4e:f2:
a9:45:23:8c:f1:16:db:46:c7:ba:c2:4f:cb:b4:a3:
21:94:db:26:78:b2:7f:b0:22:6e:35:ce:f8:15:f6:
41:1f:89:23:f2:27:a1:d3:99:5c:36:ee:5a:8b:66:
a1:f3:ee:cf:83:f7:9d:f6:a4:ea:c3:a9:ad:ad:24:
bf:07:7e:13:f2:eb:af:be:35:7c:87:14:4b:02:61:
c7:a4:8d:71:45:20:6c:78:d5:07:95:bd:a8:e7:24:
94:82:0b:04:78:b1:29:f5:b9:c2:f1:9d:14:24:08:
df:c5:b4:fb:5e:3d:7e:ff:fa:0b:f2:04:fb:e7:3a:
7c:59:70:98:04:76:a1:30:c0:ee:e1:2a:13:8a:ea:
69:28:71:01:2f:7b:e6:46:a6:6f:d1:98:2d:3b:9b:
18:6f:9d:7d:a1:71:58:99:8f:9e:d1:96:58:47:c7:
a5:c6:f5:a3:db:93:46:50:10:c8:10:4c:9b:f7:a2:
5a:15:9b:82:5e:59:ff:45:ae:0c:9c:8c:2f:4b:ae:
48:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:56:72:24:4C:12:4E:ED:9A:02:71:54:ED:4E:2F:7C:B1:62:73:FD
X509v3 Authority Key Identifier:
keyid:27:6A:BB:1A:D5:67:E5:BB:1E:47:5A:72:A0:A6:84:53:E3:FB:A1:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J2q7GtVn5bseR1pyoKaEU-P7oc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/42694f-89a6-43c8-8346-bb0eed13f23b/1/a1ZyJEwSTu2aAnFU7U4vfLFic_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/42694f-89a6-43c8-8346-bb0eed13f23b/1/J2q7GtVn5bseR1pyoKaEU-P7oc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.45.0/24
IPv6:
2a10:5dc0::/32
Signature Algorithm: sha256WithRSAEncryption
23:8e:56:18:4f:c7:9d:29:16:87:93:59:7c:0c:f3:e3:b7:66:
6a:5c:8a:c4:c3:36:81:ae:9f:b3:53:f3:b9:62:58:8c:e3:0b:
ca:88:57:dc:69:b3:5c:47:2e:78:10:c7:23:7f:7e:e5:a7:f0:
b3:e5:8c:d8:21:90:2b:a0:31:8a:e4:af:e6:48:45:72:7c:b3:
0e:9c:52:a2:ff:df:da:b9:17:ac:8c:83:b1:9d:b4:83:77:20:
06:95:db:13:87:b2:e3:96:6c:db:4d:95:fe:e6:c7:cc:7b:b9:
78:6d:fa:c1:d4:c6:50:51:67:ec:7a:17:0b:cf:a9:95:cc:8e:
47:74:3e:f9:92:e7:9b:09:1f:50:fd:e6:e6:55:71:7c:62:60:
0e:25:68:cb:12:e6:68:83:99:3a:40:24:b8:ef:04:7f:e4:a2:
f1:48:8e:72:67:f9:0e:f2:8f:a8:cc:81:4f:a3:3c:de:65:9e:
a9:61:1c:c3:55:a5:de:f0:48:c0:fd:67:6a:c9:0b:2e:74:56:
e6:46:d1:5c:f1:43:f3:9a:5f:a1:61:41:ee:c7:70:fd:d2:99:
f7:0e:90:f7:7b:79:bb:f9:ce:46:e6:b7:c1:4d:69:78:5d:31:
89:15:5e:90:be:4c:f1:4d:ad:0e:8f:f3:41:0f:9d:de:1b:df:
83:65:d8:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:24 2023 by rpki-client on console-ams.rpki-client.org