Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4CR3LdQqT-SSKgCD4h-O8wLvRz8.roa
File: 4CR3LdQqT-SSKgCD4h-O8wLvRz8.roa (raw, json)
Hash identifier: lHdL04ykPURtxxAIXfadNq2gjZ9MrMPSyJTcj6Iv8sM=
Subject key identifier: E0:24:77:2D:D4:2A:4F:E4:92:2A:00:83:E2:1F:8E:F3:02:EF:47:3F
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2B08F28A
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4CR3LdQqT-SSKgCD4h-O8wLvRz8.roa
Signing time: Sat 01 Jan 2022 13:58:03 +0000
ROA not before: Sat 01 Jan 2022 13:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200745
IP address blocks: 193.192.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 722006666 (0x2b08f28a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e024772dd42a4fe4922a0083e21f8ef302ef473f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b5:d2:5d:b1:61:d4:3c:c8:7f:c6:d2:b9:6f:
ba:74:9c:b1:73:dc:40:a7:b8:d8:81:68:40:f5:80:
00:28:e9:a9:14:5e:78:dc:6a:c8:50:70:02:f3:8d:
c4:ef:8d:61:87:7c:ab:a4:0f:10:c4:81:d8:e7:11:
35:10:40:e5:e7:22:87:c7:81:51:9f:52:28:f0:60:
b6:75:42:8d:1d:d4:c9:ff:5a:c4:41:8c:e1:88:a7:
5f:31:2f:e9:17:fc:1e:c9:cc:94:4e:93:d3:9c:d2:
4d:2a:ff:fb:d7:c8:65:58:ce:11:dd:8c:1b:01:15:
b9:41:bf:10:9e:cb:50:02:b2:2f:b2:02:a4:ff:cf:
50:6b:f8:b4:26:9c:6d:14:7f:00:c1:e0:e7:04:d6:
73:83:65:3e:34:a6:e2:b4:70:6e:9e:87:be:08:6e:
72:a7:d8:ca:64:d1:4f:6d:0e:03:3d:57:b3:b3:32:
88:dc:c2:43:76:eb:1a:79:26:d2:46:24:a5:61:e9:
0f:36:d6:7b:4a:44:01:16:5d:d0:dd:d8:b7:e0:8e:
a1:36:2e:de:12:98:44:e1:17:c8:e2:35:47:ef:f6:
97:12:ad:28:f6:82:6d:79:cc:b0:57:9f:68:17:6e:
7d:a9:ba:54:b0:72:dd:c4:e7:25:56:0f:41:b7:11:
24:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:24:77:2D:D4:2A:4F:E4:92:2A:00:83:E2:1F:8E:F3:02:EF:47:3F
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/4CR3LdQqT-SSKgCD4h-O8wLvRz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.165.0/24
Signature Algorithm: sha256WithRSAEncryption
03:bb:96:82:58:a4:0f:d8:9f:97:56:eb:85:56:eb:70:e0:6b:
aa:91:f2:ea:d8:20:a7:3f:ac:b9:5c:39:e4:18:3f:2a:c9:d6:
b9:fe:65:ee:f1:38:ee:de:ae:4b:64:27:37:fa:ad:75:75:d5:
29:7a:76:d7:06:cb:ae:95:b5:2c:d0:d4:1e:23:a3:7f:07:71:
a8:92:2e:dd:08:e4:ac:8b:64:e1:ba:ac:d4:d8:67:0c:c6:df:
07:7d:59:d3:51:8f:28:76:02:18:a3:fd:49:b8:4f:e5:85:c2:
ed:41:4e:6c:fa:78:5a:45:28:be:ee:aa:a8:31:5e:8f:cb:10:
7b:c8:74:1a:5c:6d:86:90:d6:f0:4d:ee:f3:67:48:62:d2:c8:
25:99:8a:da:40:64:5a:12:99:f9:91:f7:03:59:e5:bc:d4:37:
84:14:40:a1:dd:ce:44:0d:87:56:fc:47:1e:cd:54:ee:a4:ad:
4f:fe:ff:3a:f9:7c:b9:ef:72:93:72:fd:8d:05:e9:7f:47:c3:
5f:7c:fd:bc:bc:d9:60:7d:80:ab:54:18:c1:33:fc:23:fa:66:
14:86:c6:ae:65:9f:f1:9c:cf:05:c3:d1:48:3e:dd:bf:a1:18:
3f:28:1d:f6:97:df:f7:f0:3e:27:d1:17:80:4d:99:9e:b7:24:
7e:98:d1:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org