Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/sV4ICGFa7Dnt8FUYUTewtATXT2E.roa
File: sV4ICGFa7Dnt8FUYUTewtATXT2E.roa (raw, json)
Hash identifier: 2eTLUDkyrAF76SrDTjOp5zezClHLsw1/j3SDdlR/ErQ=
Subject key identifier: B1:5E:08:08:61:5A:EC:39:ED:F0:55:18:51:37:B0:B4:04:D7:4F:61
Certificate issuer: /CN=93bc8ddb8032e184c92bfe206e328f2c05d78e4b
Certificate serial: 042CAF7F
Authority key identifier: 93:BC:8D:DB:80:32:E1:84:C9:2B:FE:20:6E:32:8F:2C:05:D7:8E:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k7yN24Ay4YTJK_4gbjKPLAXXjks.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/sV4ICGFa7Dnt8FUYUTewtATXT2E.roa
Signing time: Sat 01 Jan 2022 10:56:07 +0000
ROA not before: Sat 01 Jan 2022 10:56:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209234
IP address blocks: 2.56.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70037375 (0x42caf7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93bc8ddb8032e184c92bfe206e328f2c05d78e4b
Validity
Not Before: Jan 1 10:56:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b15e0808615aec39edf055185137b0b404d74f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a6:8c:56:d4:a5:42:4c:74:08:06:08:83:55:
f5:8a:7b:9d:2d:cf:68:dc:d6:86:bd:cf:ac:11:d2:
e6:80:87:54:d9:09:85:3d:65:02:96:10:41:39:9f:
3c:fb:10:bb:d5:29:86:93:4f:16:10:fe:50:64:94:
a6:1b:21:19:02:b4:6e:a2:32:27:bc:21:9e:af:96:
19:68:80:d5:e6:a7:78:ac:5a:6c:25:a4:18:7e:83:
4d:a1:8f:a3:00:ec:9c:ce:22:de:de:52:2d:28:9c:
e3:05:81:4b:de:a8:d5:9a:cc:aa:20:c5:18:f0:cb:
24:6d:c4:e2:fe:fd:3d:2c:4b:fa:0d:7c:43:9b:17:
fa:84:f1:60:5c:9f:14:ca:9c:0a:ab:66:5f:b6:0a:
f6:63:cf:0c:d7:f5:de:1d:1f:cb:8b:2d:95:e6:15:
81:87:98:da:b2:c1:06:37:fb:62:2c:70:07:a3:4e:
95:64:e9:40:a8:af:e3:74:de:02:fe:4f:ac:c3:65:
4e:81:69:89:69:50:ed:ef:42:c9:64:5d:22:95:96:
47:b9:d2:f2:a9:a7:bb:9d:3f:d5:9e:1d:67:64:e6:
f7:08:fa:16:a8:88:02:31:90:0c:6b:08:6e:14:25:
4d:16:29:0e:16:3c:b9:a4:7c:0e:de:56:99:02:01:
1f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5E:08:08:61:5A:EC:39:ED:F0:55:18:51:37:B0:B4:04:D7:4F:61
X509v3 Authority Key Identifier:
keyid:93:BC:8D:DB:80:32:E1:84:C9:2B:FE:20:6E:32:8F:2C:05:D7:8E:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k7yN24Ay4YTJK_4gbjKPLAXXjks.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/sV4ICGFa7Dnt8FUYUTewtATXT2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/f813cf-0d6a-4798-98f1-b9167748a8a3/1/k7yN24Ay4YTJK_4gbjKPLAXXjks.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.92.0/22
Signature Algorithm: sha256WithRSAEncryption
40:ce:26:91:f0:98:30:00:8a:1d:9f:81:8c:bc:04:9e:19:41:
b8:b2:2f:36:15:32:35:64:58:fb:24:65:56:30:a1:62:57:55:
ef:67:e8:23:d6:67:76:3c:f5:31:e8:96:cb:6f:4f:16:5d:6e:
71:84:4d:f3:50:22:4d:4b:47:db:76:bd:75:06:8a:5f:f3:73:
ec:9b:75:06:74:3e:94:23:f0:fa:f5:59:a1:ae:a9:ca:04:2e:
2a:a7:95:e6:d7:a4:74:45:bd:e6:94:85:b0:82:3c:34:25:5d:
e0:4a:36:86:f3:3d:e2:02:5b:0a:2a:22:ca:7a:a2:bb:5a:f7:
d4:c6:b6:13:c2:b3:89:a0:3e:77:69:7e:0a:a9:14:6d:a5:54:
ef:6e:bf:04:77:95:2a:8b:69:d6:af:4e:cb:51:9a:a4:4e:6a:
5d:39:66:fe:72:5a:e9:ad:45:46:6d:89:ae:9f:93:1c:93:c9:
05:50:1b:ad:f4:e9:97:98:06:95:44:0a:6a:97:78:0e:d2:06:
08:f1:13:ed:cd:8c:77:60:32:87:0a:fe:cb:46:be:a1:e0:0f:
61:6d:97:a9:ea:82:7d:cc:03:fd:59:2c:5c:27:42:54:d2:88:
f5:eb:a2:8d:49:04:9e:9f:d5:88:1a:cd:94:7c:2f:3b:4a:b1:
9b:a7:e7:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:40 2024 by rpki-client on console-fra.rpki-client.org