Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/c98fb5-dc94-4b7d-a989-6c2fab5a4085/1/cKQPOfiONen0becpbThNrpPkRnk.roa
File: cKQPOfiONen0becpbThNrpPkRnk.roa (raw, json)
Hash identifier: S0+uLfDw0VdtHpvTGxGzgVHRwaMFndNzbqB7AaeJpBA=
Subject key identifier: 70:A4:0F:39:F8:8E:35:E9:F4:6D:E7:29:6D:38:4D:AE:93:E4:46:79
Certificate issuer: /CN=39a6f54d21f537a9de24787dd0e8fba406a9cadd
Certificate serial: 0A543D51
Authority key identifier: 39:A6:F5:4D:21:F5:37:A9:DE:24:78:7D:D0:E8:FB:A4:06:A9:CA:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oab1TSH1N6neJHh90Oj7pAapyt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/c98fb5-dc94-4b7d-a989-6c2fab5a4085/1/cKQPOfiONen0becpbThNrpPkRnk.roa
Signing time: Sat 01 Jan 2022 00:59:01 +0000
ROA not before: Sat 01 Jan 2022 00:59:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56647
IP address blocks: 193.37.232.0/24 maxlen: 24
193.37.235.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173292881 (0xa543d51)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39a6f54d21f537a9de24787dd0e8fba406a9cadd
Validity
Not Before: Jan 1 00:59:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70a40f39f88e35e9f46de7296d384dae93e44679
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:9c:f9:a3:9a:27:9e:56:33:0f:66:1c:d0:65:
34:76:b0:f0:79:4c:b6:66:fe:57:ee:aa:dc:15:7b:
dc:66:b0:22:11:63:c3:be:63:73:a1:da:dd:c5:3c:
c9:00:a6:80:23:7b:70:83:48:58:dc:52:08:0b:35:
ff:a4:6e:cf:19:58:85:f5:7d:1f:df:25:75:cd:82:
b4:72:76:b5:5c:b2:d9:2c:8c:c8:7d:09:35:82:3f:
c5:6c:f6:14:c4:b4:55:e9:1a:59:5f:e2:96:4c:74:
75:f9:74:41:82:90:01:0a:42:fa:04:26:02:65:8b:
44:db:d5:35:ef:8e:73:34:ab:43:71:ba:9d:49:10:
1a:0e:3e:09:f8:c2:d2:36:f3:39:5c:73:3d:4f:6b:
14:a7:00:b3:73:51:33:0e:a0:fe:04:d1:f2:7c:1d:
7b:80:9b:b9:1f:08:b7:cd:0f:47:17:45:2c:c4:64:
ed:24:66:47:57:98:03:14:7d:e9:31:b1:b8:28:57:
ca:17:e4:43:3a:0b:bd:25:a1:08:c8:28:36:70:8b:
66:ea:74:37:77:ea:af:e0:56:79:84:3a:0f:b7:fd:
d1:ea:47:cc:42:56:01:f9:8c:28:e2:48:fe:c2:eb:
86:14:98:ae:80:8a:07:19:7f:a7:2a:a1:fe:2e:d2:
30:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:A4:0F:39:F8:8E:35:E9:F4:6D:E7:29:6D:38:4D:AE:93:E4:46:79
X509v3 Authority Key Identifier:
keyid:39:A6:F5:4D:21:F5:37:A9:DE:24:78:7D:D0:E8:FB:A4:06:A9:CA:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oab1TSH1N6neJHh90Oj7pAapyt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c98fb5-dc94-4b7d-a989-6c2fab5a4085/1/cKQPOfiONen0becpbThNrpPkRnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/c98fb5-dc94-4b7d-a989-6c2fab5a4085/1/Oab1TSH1N6neJHh90Oj7pAapyt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.232.0/24
193.37.235.0/24
Signature Algorithm: sha256WithRSAEncryption
54:d9:89:de:5d:3e:b3:11:d8:2d:74:a2:24:79:ed:bb:e3:ec:
5d:fb:70:7c:54:cc:f6:4e:37:c4:bb:5b:26:4a:ff:9c:b1:7b:
8f:f4:ca:06:5d:30:50:26:d8:16:87:89:88:34:b8:d9:91:4c:
31:5e:df:ab:a1:7a:9f:79:14:bd:81:7f:5a:29:b1:dc:9a:7c:
9c:6c:04:ee:b0:69:94:7b:67:fd:6a:cf:ea:79:8d:bd:21:a3:
3c:bb:d5:a1:34:0c:15:c9:dc:e8:5d:30:04:56:c2:c3:60:4c:
8c:1f:7d:ff:ea:3c:46:15:ce:be:66:8d:87:74:45:bb:79:9d:
22:e2:60:e3:f4:cc:c6:41:29:33:0e:70:5e:79:8e:94:71:36:
6d:45:a6:11:fe:d8:30:d2:20:88:be:bc:cd:42:07:43:e7:08:
a5:70:f6:c9:1f:af:bc:fd:64:bb:e2:54:18:a6:3b:95:c3:05:
f9:70:eb:2f:77:67:4a:47:f5:de:8b:5f:0e:04:e3:bf:ae:fc:
8c:95:29:1a:47:c0:28:46:00:9f:c2:30:b4:bb:e1:b2:43:e0:
55:56:eb:92:fd:6b:7a:b2:d4:e1:36:18:c6:f6:80:d8:92:12:
ea:8f:a0:7c:77:4b:9d:7c:92:4a:1a:2e:8d:44:2a:ea:8a:e0:
43:1e:33:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:35 2024 by rpki-client on console-ams.rpki-client.org