Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/q_Iptp1xb2NgHbNvxZSi1uFvkHk.roa
File: q_Iptp1xb2NgHbNvxZSi1uFvkHk.roa (raw, json)
Hash identifier: I48QrpoXqCyc/ybq+2WRXy/vXjx/CTC1T/7X1n4yjZU=
Subject key identifier: AB:F2:29:B6:9D:71:6F:63:60:1D:B3:6F:C5:94:A2:D6:E1:6F:90:79
Certificate issuer: /CN=5990c1553762ac9af57df9b58d9dc50af409c566
Certificate serial: 03FABFE2
Authority key identifier: 59:90:C1:55:37:62:AC:9A:F5:7D:F9:B5:8D:9D:C5:0A:F4:09:C5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/q_Iptp1xb2NgHbNvxZSi1uFvkHk.roa
Signing time: Sat 01 Jan 2022 11:59:08 +0000
ROA not before: Sat 01 Jan 2022 11:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41227
IP address blocks: 193.29.17.0/24 maxlen: 24
193.29.24.0/24 maxlen: 24
2a10:f980::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66764770 (0x3fabfe2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5990c1553762ac9af57df9b58d9dc50af409c566
Validity
Not Before: Jan 1 11:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abf229b69d716f63601db36fc594a2d6e16f9079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:df:e7:ce:d0:e2:61:2b:9b:71:6f:c7:10:03:
0e:6f:0e:4e:f5:8e:cf:80:43:9d:aa:38:22:ad:05:
be:36:2b:d5:22:7c:5c:b7:5d:ff:0c:0d:54:01:2b:
84:bb:ee:51:2c:da:de:25:8d:cb:a7:0d:a0:25:2f:
2b:15:b1:85:da:80:77:0b:a1:ba:8c:d9:0c:f7:b1:
c8:58:a9:bc:1b:f4:30:86:5f:a7:4e:97:89:cb:31:
ef:de:cf:3e:5e:e1:12:e9:96:3e:a5:a4:d2:78:b0:
bb:2d:d9:af:77:b5:c1:72:a4:7a:12:b7:15:ae:6d:
01:eb:72:3f:32:50:af:67:c8:f0:d5:b7:db:2e:31:
ca:3f:4a:db:2a:1e:e5:74:49:86:e9:a8:1b:1f:39:
9c:94:2f:32:a7:ec:cc:71:e8:b3:3b:f0:25:f4:5b:
4e:84:80:db:64:29:47:5e:f9:ab:2c:04:47:a0:77:
f2:41:d3:d7:1f:cb:ed:b8:9b:4e:84:23:59:1a:00:
29:24:ee:bd:cb:96:d0:50:d2:6b:ec:bf:2a:23:74:
1b:e7:99:9a:c0:87:7f:69:17:c6:18:66:b6:97:4d:
b7:d1:96:fe:75:78:28:b2:20:30:c9:68:6a:06:80:
5e:0d:ab:5f:40:e7:d5:b5:e8:7e:08:7f:44:44:7d:
37:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:F2:29:B6:9D:71:6F:63:60:1D:B3:6F:C5:94:A2:D6:E1:6F:90:79
X509v3 Authority Key Identifier:
keyid:59:90:C1:55:37:62:AC:9A:F5:7D:F9:B5:8D:9D:C5:0A:F4:09:C5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WZDBVTdirJr1ffm1jZ3FCvQJxWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/q_Iptp1xb2NgHbNvxZSi1uFvkHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/a8f8e1-dce2-47ef-824e-bef1034edbe5/1/WZDBVTdirJr1ffm1jZ3FCvQJxWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.17.0/24
193.29.24.0/24
IPv6:
2a10:f980::/29
Signature Algorithm: sha256WithRSAEncryption
82:09:8c:d2:f7:d3:d5:8e:27:48:78:a6:8b:3f:18:b5:9a:40:
3d:dd:b9:bb:33:ac:4b:f9:0e:d9:e0:7c:c5:18:f9:63:1d:46:
d7:65:48:65:e3:47:91:3d:05:ca:de:1d:d0:06:bc:e2:55:35:
c6:b2:26:03:6b:2c:55:af:c8:ad:cb:1c:2e:fb:2e:94:e8:13:
32:1b:ca:35:43:f0:b7:4b:b5:7b:ba:59:c6:9e:dc:fc:90:68:
28:7c:53:a4:a0:60:e9:ab:b9:78:97:97:df:e9:36:5f:c5:1b:
2a:0a:e3:97:ac:4b:d5:a3:d2:1c:79:85:09:15:d2:e6:38:49:
3c:a3:74:43:c1:67:64:7c:23:a4:d4:d9:22:2f:72:f4:f4:b2:
9c:48:c8:04:eb:8e:04:8c:d7:35:45:e1:6e:d9:b1:28:56:c8:
ba:a4:bb:91:d6:68:eb:06:ea:f0:ee:35:75:a0:e9:b8:6b:c0:
ea:62:9f:a3:e5:e1:fb:21:08:11:98:51:6e:63:02:b2:4f:a2:
30:d3:ad:cc:34:42:3b:70:fe:c2:54:5a:a2:e4:94:53:62:60:
02:ca:64:47:f5:0b:f3:49:93:04:39:ac:51:67:1e:3d:3c:ae:
c0:e6:6b:69:d7:a0:ad:18:a9:2a:8f:ad:77:ed:4d:9b:7c:d5:
3e:d3:59:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:16 2024 by rpki-client on console-fra.rpki-client.org