Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dckxITeeVk98MX0iElVwSGVSVW0.roa
File: dckxITeeVk98MX0iElVwSGVSVW0.roa (raw, json)
Hash identifier: bylMMEc2Qj6DEK6KJnk5bj/br9PMmro59lFG9rAup+M=
Subject key identifier: 75:C9:31:21:37:9E:56:4F:7C:31:7D:22:12:55:70:48:65:52:55:6D
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 2AFE4DF7
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dckxITeeVk98MX0iElVwSGVSVW0.roa
Signing time: Sat 01 Jan 2022 13:57:59 +0000
ROA not before: Sat 01 Jan 2022 13:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198851
IP address blocks: 193.192.168.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 721309175 (0x2afe4df7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 1 13:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75c93121379e564f7c317d22125570486552556d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:09:00:13:2c:30:1d:2a:be:db:fc:97:d0:62:
80:bd:13:4e:3d:f7:36:49:d9:c2:20:b6:77:eb:c0:
71:0c:3f:6b:f5:75:7b:22:bc:bf:9f:f4:5e:31:a9:
a4:50:ef:2a:8e:13:70:e0:d7:99:64:79:d7:f3:d0:
ad:0b:18:df:d8:ca:a3:30:4b:0b:4a:14:e3:93:f4:
eb:2d:f6:c9:4b:55:36:1b:18:88:ab:3a:e2:ea:ba:
0d:a1:d5:d2:3d:34:f5:79:f9:d0:29:0d:86:c1:02:
c6:12:5d:61:c1:0a:13:6f:47:08:66:d9:47:dc:6a:
9b:1c:51:ec:4b:bc:7c:ae:03:33:7a:41:b1:65:92:
f2:11:b4:34:b9:b3:f8:b2:9f:53:5a:14:55:24:4a:
41:f1:17:37:e9:22:54:92:31:b7:3d:19:c6:ce:c9:
85:f8:ec:51:88:5e:2e:15:fb:e2:79:77:92:14:1f:
c6:d8:37:ef:76:a3:9b:59:a1:05:92:1b:f6:2a:ae:
da:d7:cd:4c:2e:8b:78:3e:45:56:57:36:5c:8b:cb:
ef:c3:37:5f:50:c7:d1:dc:97:9a:66:90:85:51:97:
c5:da:7f:ca:d2:f5:14:af:b6:e1:a4:ce:e0:3b:45:
d8:41:63:43:ef:6c:5c:2d:e5:5b:cc:10:a5:a3:b9:
06:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:C9:31:21:37:9E:56:4F:7C:31:7D:22:12:55:70:48:65:52:55:6D
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/dckxITeeVk98MX0iElVwSGVSVW0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.192.168.0/24
Signature Algorithm: sha256WithRSAEncryption
60:3e:39:b8:5e:c5:00:97:a0:bd:63:19:84:69:b9:31:14:96:
ca:20:71:a3:90:42:eb:fe:9a:59:b4:15:52:2a:92:45:8d:b9:
8b:ff:11:ee:da:3b:ab:21:12:7b:6d:0d:62:4b:8a:88:02:45:
cf:ac:48:f7:d4:b5:76:42:fa:05:c7:80:09:d1:48:59:62:6a:
07:6e:4b:27:af:07:5f:56:8a:9b:c1:72:d5:ed:ac:7c:4d:f5:
e2:6e:6a:94:9b:04:74:cb:fb:17:45:53:40:52:01:f3:b6:e3:
3a:ab:37:46:d7:59:f3:08:ef:c8:6a:d7:46:0d:1a:f2:1b:49:
38:5e:81:23:79:18:ea:c5:ec:ba:7e:6b:2e:92:c9:46:2c:63:
01:1a:66:e5:54:c2:a3:89:ce:8d:55:9b:cc:0c:0f:72:94:f4:
64:2f:4e:d4:5b:b3:2c:74:6b:ac:67:09:64:3c:60:5a:82:81:
64:b8:db:90:dd:4f:00:7b:c1:41:57:80:94:2b:c5:50:1e:83:
54:87:26:35:e5:b8:6f:90:08:53:20:78:96:3e:8e:bd:99:9c:
f0:fb:57:85:75:51:7f:ad:c4:95:7d:c5:42:9e:23:e8:cb:0f:
56:d1:79:87:a3:6b:68:4c:c5:2a:51:56:3f:9a:e8:ea:57:c2:
57:f6:6a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:06:21 2024 by rpki-client on console-ams.rpki-client.org