Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/S_Ja0Un-DHx7Fpd1fBi2vSUnINI.roa
File: S_Ja0Un-DHx7Fpd1fBi2vSUnINI.roa (raw, json)
Hash identifier: hC3s8Q1Vr8tNM2mpGidt7eUBEFCSc6fkNcxlfnpre1E=
Subject key identifier: 4B:F2:5A:D1:49:FE:0C:7C:7B:16:97:75:7C:18:B6:BD:25:27:20:D2
Certificate issuer: /CN=44c295ca6ee8cae7006b577af54e376623df7799
Certificate serial: 044383C4
Authority key identifier: 44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/S_Ja0Un-DHx7Fpd1fBi2vSUnINI.roa
Signing time: Sat 01 Jan 2022 00:53:12 +0000
ROA not before: Sat 01 Jan 2022 00:53:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56911
IP address blocks: 193.239.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71533508 (0x44383c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44c295ca6ee8cae7006b577af54e376623df7799
Validity
Not Before: Jan 1 00:53:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bf25ad149fe0c7c7b1697757c18b6bd252720d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:21:39:fa:1d:c4:1a:ea:65:52:26:31:ed:51:
76:8b:12:22:c0:a1:f8:b0:aa:24:5f:0c:77:9e:0f:
95:51:f1:f7:2d:6e:16:4f:d3:2e:a1:84:02:b3:68:
cb:3a:a1:17:ba:55:2d:ea:19:99:77:11:dc:c3:99:
1f:cd:ff:ea:6c:74:16:d6:1a:1e:84:64:81:f1:af:
70:6c:3f:d9:1e:cf:27:70:80:c3:c2:0b:15:2f:9e:
b5:0f:8f:82:85:71:f9:4a:2a:a3:e4:ce:1d:fd:9c:
38:53:ae:c3:fd:ee:73:7f:dc:49:6b:5c:21:3c:9c:
cc:01:b1:9d:ed:65:fe:8d:73:bb:3a:fe:e8:60:41:
2f:5f:95:bc:91:33:f5:8c:8a:04:12:2c:a0:4f:65:
b9:0c:3c:1a:c1:a1:f1:a2:36:31:b5:49:a6:7c:a8:
51:60:97:0e:d2:b7:24:88:f1:ef:fd:79:fc:c3:3f:
00:aa:d1:5c:d8:ca:c7:f4:e3:f6:99:34:83:68:1b:
da:0f:c8:ae:b4:10:66:00:a7:5c:d1:98:c8:36:66:
a5:9d:ca:e5:b8:48:02:f5:e8:a1:06:7e:22:67:57:
b9:cb:b0:6e:c6:bb:ab:e0:10:60:e8:c6:7d:b1:98:
d5:97:cd:0c:c7:8e:f7:f9:35:34:42:8e:94:82:5c:
55:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:F2:5A:D1:49:FE:0C:7C:7B:16:97:75:7C:18:B6:BD:25:27:20:D2
X509v3 Authority Key Identifier:
keyid:44:C2:95:CA:6E:E8:CA:E7:00:6B:57:7A:F5:4E:37:66:23:DF:77:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RMKVym7oyucAa1d69U43ZiPfd5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/S_Ja0Un-DHx7Fpd1fBi2vSUnINI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/17a88d-236d-4fad-9035-7599b441cd1c/1/RMKVym7oyucAa1d69U43ZiPfd5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.239.203.0/24
Signature Algorithm: sha256WithRSAEncryption
26:21:c7:34:64:73:be:a6:79:70:69:4d:5a:18:44:21:20:a4:
c0:82:7a:4f:b0:bc:5f:06:6b:f4:e2:de:41:45:a8:15:83:f7:
10:16:e0:11:74:66:be:86:03:ae:a7:b2:e2:87:b6:ce:7e:66:
50:53:dd:0f:5d:9f:3f:c1:b2:1e:f4:5e:ff:a8:10:b9:36:87:
33:90:5a:24:ad:6f:2c:00:c3:a0:82:5a:ea:02:a3:fe:c4:16:
6a:8e:f2:ea:93:7e:9e:31:73:1c:00:31:35:06:d6:9b:04:ac:
75:f9:4a:64:7d:69:03:14:5c:32:46:ac:dc:96:93:70:43:b4:
66:b6:0c:32:ca:74:54:dc:b7:a0:eb:54:62:2c:ee:a2:19:1c:
56:5e:1c:ec:8d:f2:42:2f:6a:33:2f:c0:30:8c:e9:40:d2:1d:
65:4d:4b:6f:4d:00:6b:43:61:f8:39:a0:32:44:a6:fd:cf:cb:
4f:de:b3:53:ee:ac:63:55:eb:e8:94:e4:34:f7:7e:4e:b4:f7:
c3:e1:3f:57:20:21:3e:95:2b:f2:69:15:7b:07:86:84:d6:32:
91:1a:6f:0e:2a:f6:76:4f:6a:35:20:b2:67:07:fe:5e:58:75:
9e:3f:d1:64:0b:9d:06:ea:39:ac:fa:44:22:3d:70:f9:b5:81:
1d:c0:14:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:22 2024 by rpki-client on console-fra.rpki-client.org