Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/P4ghEejY8_A3n-57Fw6tjdWfZbY.roa
File: P4ghEejY8_A3n-57Fw6tjdWfZbY.roa (raw, json)
Hash identifier: hu/99Ny5zHTNMJ1vGeRmmb/oftMsAyvUX/PKF0jo1LM=
Subject key identifier: 3F:88:21:11:E8:D8:F3:F0:37:9F:EE:7B:17:0E:AD:8D:D5:9F:65:B6
Certificate issuer: /CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Certificate serial: 048B3DCC
Authority key identifier: DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/P4ghEejY8_A3n-57Fw6tjdWfZbY.roa
Signing time: Sat 01 Jan 2022 16:11:05 +0000
ROA not before: Sat 01 Jan 2022 16:11:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6696
IP address blocks: 193.105.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76234188 (0x48b3dcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de12f965a9ec33e2c2e87b6161beefb8be286ca3
Validity
Not Before: Jan 1 16:11:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f882111e8d8f3f0379fee7b170ead8dd59f65b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:84:7e:cf:04:62:3a:e0:16:65:d0:e0:33:
a3:07:00:ee:1e:23:a0:e9:35:a7:0e:be:90:5d:ae:
bd:e8:27:5c:a7:be:3f:7b:2b:92:da:27:74:8e:68:
ef:90:d7:63:6d:60:95:f9:16:59:85:e9:65:ae:1c:
97:72:1a:a9:4c:34:b9:22:95:40:87:a1:a6:b7:47:
b9:3f:4d:b5:90:ac:3f:6e:f9:4f:4e:b1:c3:64:55:
e9:6b:1f:bc:35:12:8d:53:3c:16:5b:a8:03:a3:62:
db:2c:cd:f6:f8:79:4d:2f:cf:81:50:ba:46:f1:f8:
c8:b4:55:00:91:4c:b5:e7:7d:cc:43:85:4f:7d:c0:
8a:4e:ac:1a:0f:68:7f:b6:39:99:7e:ed:98:4d:7f:
64:55:96:4d:f2:f7:5e:e4:18:2a:6b:f7:4e:4b:a3:
f9:45:21:54:a7:71:eb:54:88:9e:85:5c:d6:ce:c4:
b3:ef:96:64:10:1e:3f:ee:20:67:03:f9:15:3d:61:
dc:ab:ba:b2:fc:ca:0d:31:1f:aa:a5:17:f3:4d:d8:
f2:de:65:dc:6d:35:32:79:77:f1:55:00:d6:cf:85:
a1:45:4a:fd:bb:6a:ab:3d:fd:91:62:25:9e:51:7d:
e0:5c:7e:6a:5a:4e:3b:3a:0a:f5:75:0c:20:e9:40:
51:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:88:21:11:E8:D8:F3:F0:37:9F:EE:7B:17:0E:AD:8D:D5:9F:65:B6
X509v3 Authority Key Identifier:
keyid:DE:12:F9:65:A9:EC:33:E2:C2:E8:7B:61:61:BE:EF:B8:BE:28:6C:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hL5ZansM-LC6HthYb7vuL4obKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/P4ghEejY8_A3n-57Fw6tjdWfZbY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/0f0373-db6d-4797-820d-b6d12ac66831/1/3hL5ZansM-LC6HthYb7vuL4obKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.73.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:bf:04:be:10:4e:48:70:6b:15:df:c8:d5:0f:94:3f:6a:fa:
17:da:c9:34:e7:d0:e9:f0:aa:df:4d:b7:96:32:f8:0c:75:a6:
3c:7b:13:f0:fb:f1:aa:be:34:f4:c3:19:3c:c4:62:a3:5c:f9:
4f:65:d8:37:b9:50:cb:7a:4a:27:b4:a0:81:a5:41:ea:93:9d:
42:2f:f2:cb:cc:76:79:4e:a8:98:78:d5:3d:c9:97:ac:91:ca:
e4:df:35:6e:95:99:86:8f:d7:23:55:af:86:af:39:fb:e0:76:
f1:00:30:57:79:e9:47:1c:6a:f2:cb:eb:1c:2b:b3:41:8b:1d:
3a:1a:60:42:c8:3d:e0:1b:9e:0a:e0:1f:e3:d4:51:12:ff:91:
80:c6:f1:78:ff:53:e9:ef:a7:19:cf:f5:4b:da:91:74:21:a0:
2d:3c:d6:b4:6b:86:4b:a1:3a:3e:e2:b7:ac:27:b7:00:f8:28:
e5:25:b6:7f:9a:8e:be:53:23:a1:2e:dc:0c:8c:bf:47:8b:59:
35:7e:65:46:23:24:3f:17:9c:d8:6e:49:76:f0:15:dc:0d:78:
53:73:f4:d7:51:9a:64:43:47:75:8e:2c:b9:0d:aa:2d:d7:80:
fc:b6:d2:4d:95:95:08:6a:91:09:18:b7:44:f3:96:2f:8a:6c:
dd:78:cc:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:21 2024 by rpki-client on console-ams.rpki-client.org