Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/3cedfe-026c-4d78-b8c8-525230e20681/1/r130SeIEdGQ56qi7POUoggJmVRk.roa
File: r130SeIEdGQ56qi7POUoggJmVRk.roa (raw, json)
Hash identifier: oW168JZrg61maRAQM1SYNByq88I/78ctbxRrOXuskJA=
Subject key identifier: AF:5D:F4:49:E2:04:74:64:39:EA:A8:BB:3C:E5:28:82:02:66:55:19
Certificate issuer: /CN=dc700b96e9a7a0f9db89bf5e18115b12a3ef1692
Certificate serial: 187F08D3
Authority key identifier: DC:70:0B:96:E9:A7:A0:F9:DB:89:BF:5E:18:11:5B:12:A3:EF:16:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HALlumnoPnbib9eGBFbEqPvFpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/3cedfe-026c-4d78-b8c8-525230e20681/1/r130SeIEdGQ56qi7POUoggJmVRk.roa
Signing time: Sat 01 Jan 2022 04:52:53 +0000
ROA not before: Sat 01 Jan 2022 04:52:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198949
IP address blocks: 193.56.233.0/24 maxlen: 24
193.56.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 410978515 (0x187f08d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc700b96e9a7a0f9db89bf5e18115b12a3ef1692
Validity
Not Before: Jan 1 04:52:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af5df449e204746439eaa8bb3ce5288202665519
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:17:3b:f2:9a:1a:55:14:08:ae:43:ec:19:e8:
a0:11:68:8f:e2:f9:29:9a:51:a6:05:ed:6d:a7:e9:
54:1b:dc:68:7c:de:54:60:21:db:0b:6f:ed:97:8b:
d6:8a:dc:85:93:ec:06:60:6c:ab:5e:3d:4e:a4:0d:
55:9f:a9:7f:12:e4:d3:0d:57:06:ae:0d:64:aa:2c:
8f:e6:60:bc:35:10:f2:9b:ee:45:97:7d:a8:a6:56:
5d:e8:83:f9:8b:78:7a:d5:e5:a4:80:25:62:29:04:
28:cd:dd:03:99:1a:80:d9:de:9f:d9:b9:87:d8:e9:
96:ee:86:cf:56:4f:45:d6:78:53:d7:d2:a1:5a:a7:
dc:fd:93:17:d6:17:d6:7e:a5:a2:33:4a:c4:fc:71:
f3:52:96:d3:1a:26:e8:7b:29:06:09:c8:43:52:2b:
a6:53:a9:6f:b0:93:bd:c4:28:b2:39:ad:c6:de:52:
6c:c9:44:e3:6a:43:04:8a:09:3f:a1:43:95:2e:6e:
04:25:8c:57:f7:1e:b4:14:7c:04:c9:b7:6e:77:db:
15:2c:43:cc:54:b0:96:77:5f:ec:85:4b:7c:d8:56:
ce:b2:09:c9:54:29:d7:ba:d5:61:87:3a:1a:c6:44:
fd:37:1d:c1:13:3b:5a:f2:65:bd:0d:45:71:6d:75:
a8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:5D:F4:49:E2:04:74:64:39:EA:A8:BB:3C:E5:28:82:02:66:55:19
X509v3 Authority Key Identifier:
keyid:DC:70:0B:96:E9:A7:A0:F9:DB:89:BF:5E:18:11:5B:12:A3:EF:16:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HALlumnoPnbib9eGBFbEqPvFpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3cedfe-026c-4d78-b8c8-525230e20681/1/r130SeIEdGQ56qi7POUoggJmVRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/3cedfe-026c-4d78-b8c8-525230e20681/1/3HALlumnoPnbib9eGBFbEqPvFpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.233.0/24
193.56.237.0/24
Signature Algorithm: sha256WithRSAEncryption
75:b8:21:c0:6c:0c:ed:e0:a4:7e:2b:41:a8:2c:5f:4f:1b:93:
a3:65:c4:28:de:e1:c7:9f:d2:fc:fc:5c:5f:72:23:7d:9c:1a:
a7:47:ca:d1:59:ca:c6:de:2e:4a:50:83:4c:09:26:dd:2b:25:
3d:34:23:c2:c9:43:83:91:d4:7f:6d:8e:5d:df:ac:a0:c1:5d:
38:bc:5c:de:9b:92:a6:04:46:10:2d:8e:b7:44:3d:1f:e4:f7:
a0:d3:2e:bd:20:df:98:d8:db:94:47:51:58:9d:26:a7:46:40:
94:39:7c:9f:96:ac:ae:27:90:3a:f7:5d:3f:c4:a7:f2:c2:4c:
ce:9c:50:4f:ec:0f:a9:d3:b6:8f:19:19:97:c2:53:6b:cf:f8:
90:62:a5:6b:9c:38:a5:c3:47:66:3c:3e:22:d4:11:ea:41:34:
42:9e:49:b8:96:8c:c5:50:2e:90:60:b6:fd:71:e3:82:e4:89:
d3:d5:93:72:7c:83:24:5c:16:2a:37:58:e1:97:5a:92:90:e7:
a4:6b:1e:97:e3:1d:21:2f:76:36:51:18:58:87:61:77:dc:c0:
46:8e:5a:26:86:74:e0:07:96:27:d0:0d:d1:aa:e1:45:0c:9b:
a6:37:72:32:23:d7:85:7b:0f:ac:84:e9:2a:7d:7b:8d:f1:ed:
fc:21:e4:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:58 2023 by rpki-client on console-ams.rpki-client.org