Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/Ga81Jrle0Vqnl7C4dvyl0l27jBM.roa
File: Ga81Jrle0Vqnl7C4dvyl0l27jBM.roa (raw, json)
Hash identifier: JvSOrefd3UAvi+tQr5YbBAm+mDbvH1RBklnhB/AJ88k=
Subject key identifier: 19:AF:35:26:B9:5E:D1:5A:A7:97:B0:B8:76:FC:A5:D2:5D:BB:8C:13
Certificate issuer: /CN=e96a769beca3b1932955158135596365c43c83b1
Certificate serial: 05B11D
Authority key identifier: E9:6A:76:9B:EC:A3:B1:93:29:55:15:81:35:59:63:65:C4:3C:83:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Wp2m-yjsZMpVRWBNVljZcQ8g7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/Ga81Jrle0Vqnl7C4dvyl0l27jBM.roa
Signing time: Wed 09 Mar 2022 15:56:59 +0000
ROA not before: Wed 09 Mar 2022 15:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211701
IP address blocks: 193.169.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 373021 (0x5b11d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e96a769beca3b1932955158135596365c43c83b1
Validity
Not Before: Mar 9 15:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=19af3526b95ed15aa797b0b876fca5d25dbb8c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:65:50:c2:e8:a6:42:39:1d:d4:a1:93:e7:82:
9c:25:01:86:03:bf:75:b6:d5:99:14:36:5a:5d:18:
d9:82:59:a2:f4:b5:57:00:28:e8:19:f5:be:37:f3:
8c:0f:18:34:df:56:3d:90:71:b7:f7:08:70:88:40:
62:2f:45:83:89:a9:ab:d2:6b:b7:69:b2:a9:92:87:
60:16:87:46:4a:22:48:a5:3b:33:eb:2c:20:ab:80:
51:06:8f:b8:d3:ef:50:26:21:ae:c8:af:3b:18:5d:
4a:39:c9:a2:e6:12:cd:a7:c4:82:0a:94:ea:c4:0b:
21:a2:74:ee:b7:e2:83:1f:27:3f:79:b5:53:c5:8d:
bf:3a:a5:0b:66:3e:3c:68:ec:6c:cd:80:ac:b4:81:
6b:cc:c0:58:a5:da:06:26:48:d7:56:2c:f4:04:45:
ac:1a:a8:cc:05:82:45:81:11:1e:a4:a8:a4:9c:68:
05:36:23:6b:7a:34:25:e7:6f:81:e2:77:e7:37:2d:
d4:65:0d:d5:94:2a:64:b8:b9:da:6a:f4:8d:5a:25:
10:a2:df:16:93:86:36:53:68:78:f1:78:33:12:b8:
5b:73:d7:5b:db:3b:56:ee:c8:12:00:df:b5:1f:de:
53:3f:2e:9c:e4:1d:40:2e:67:e6:26:b6:f6:5d:5b:
1e:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:AF:35:26:B9:5E:D1:5A:A7:97:B0:B8:76:FC:A5:D2:5D:BB:8C:13
X509v3 Authority Key Identifier:
keyid:E9:6A:76:9B:EC:A3:B1:93:29:55:15:81:35:59:63:65:C4:3C:83:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Wp2m-yjsZMpVRWBNVljZcQ8g7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/Ga81Jrle0Vqnl7C4dvyl0l27jBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/cae91b-9e0e-4d5c-afc4-55118f8bd5f2/1/6Wp2m-yjsZMpVRWBNVljZcQ8g7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.136.0/24
Signature Algorithm: sha256WithRSAEncryption
92:28:e7:19:c2:7b:f2:10:ab:09:08:cf:0e:51:9f:ba:a1:6c:
ae:4d:78:cd:2e:53:b9:3a:e6:3a:27:d0:30:59:8f:af:cb:fd:
af:a1:be:eb:af:70:a9:89:51:95:c8:8f:ce:30:6e:10:23:49:
1d:e1:24:f0:93:5f:a3:e0:b8:fb:e8:89:e3:01:ee:88:53:50:
62:79:f6:0c:72:ba:91:9c:7c:6f:ee:c7:c1:c6:f7:fd:2f:b6:
40:e9:22:68:7a:7b:1c:6b:c4:1a:8e:5b:92:1e:6e:5c:32:14:
b2:20:c1:e0:2e:8b:04:67:13:bc:3f:59:11:8c:31:c6:92:37:
01:e3:b7:c8:33:68:75:9b:3d:75:49:2c:5a:db:7b:e6:8e:93:
b8:0f:86:4f:e3:66:69:4d:95:f3:e8:82:d7:92:5a:62:a6:ae:
ba:aa:34:50:fa:9e:97:13:b7:24:6d:ab:ba:5c:fe:39:84:be:
c7:69:48:69:de:01:2b:1f:84:5e:0f:22:1c:22:b3:43:73:a7:
b4:70:07:1f:b9:57:f4:a6:9e:c0:2a:f9:74:44:10:45:ad:16:
31:31:98:a9:9a:33:5c:2a:38:a4:4b:c9:57:6c:2b:fb:49:ed:
ad:82:93:48:e7:5b:07:c0:57:6a:ff:da:ff:f9:ef:ae:c1:a6:
ed:a6:1d:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:51 2023 by rpki-client on console-fra.rpki-client.org