Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/fZujQED2Rmjghat-jreTHwqGnVU.roa
File: fZujQED2Rmjghat-jreTHwqGnVU.roa (raw, json)
Hash identifier: F58mHv/+r3KBJhxXReW57bjIdfkCw1ctg7EprU/zfJ8=
Subject key identifier: 7D:9B:A3:40:40:F6:46:68:E0:85:AB:7E:8E:B7:93:1F:0A:86:9D:55
Certificate issuer: /CN=a220dda64843a4ee364b089356ca87995830fd77
Certificate serial: 4C69
Authority key identifier: A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/fZujQED2Rmjghat-jreTHwqGnVU.roa
Signing time: Mon 04 Apr 2022 12:07:34 +0000
ROA not before: Mon 04 Apr 2022 12:07:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25460
IP address blocks: 193.161.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19561 (0x4c69)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a220dda64843a4ee364b089356ca87995830fd77
Validity
Not Before: Apr 4 12:07:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d9ba34040f64668e085ab7e8eb7931f0a869d55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:bd:e0:37:f7:13:4f:51:33:ec:99:2e:a8:99:
dc:ce:00:f4:41:08:77:31:1c:f0:76:7d:73:74:54:
1f:10:8b:67:2c:44:c7:0e:3a:e2:a8:3d:14:7c:64:
56:89:55:a1:a9:8c:d5:02:db:66:94:f3:be:95:66:
22:48:55:29:d7:d9:f6:5f:8a:c3:1f:cf:f5:a4:1e:
3a:29:65:7d:c6:e7:7d:fb:56:41:4b:ed:6b:58:65:
56:19:6a:84:cf:f5:48:03:39:01:08:97:12:93:17:
53:57:df:be:8e:41:60:d7:b6:39:49:6f:f4:7d:8d:
5e:1d:fb:b4:3d:bf:5a:84:b8:a5:9a:bb:6e:57:08:
96:87:c7:5f:43:b6:ab:a5:1a:0d:9b:be:d8:fe:b9:
4b:ce:5b:ae:e8:1a:93:f5:43:ac:c0:7a:01:34:b9:
b9:36:26:c9:4c:32:ca:ec:bb:7b:d5:ff:21:ef:16:
52:c2:62:7e:24:2d:ad:da:44:9e:ee:9e:92:94:87:
a1:b3:79:e1:24:9b:f1:e3:93:4a:bd:1f:fa:2f:b8:
20:7c:54:3a:64:bf:05:bf:72:a9:e6:dd:8c:ab:d1:
d7:30:75:ae:8d:80:85:37:3e:1e:e1:33:ec:dd:51:
a9:17:ae:07:4c:82:75:e4:5f:ef:3d:fb:06:0c:f7:
42:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:9B:A3:40:40:F6:46:68:E0:85:AB:7E:8E:B7:93:1F:0A:86:9D:55
X509v3 Authority Key Identifier:
keyid:A2:20:DD:A6:48:43:A4:EE:36:4B:08:93:56:CA:87:99:58:30:FD:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oiDdpkhDpO42SwiTVsqHmVgw_Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/fZujQED2Rmjghat-jreTHwqGnVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ffa6d4-5089-45a7-a38f-f5f8145651d3/1/oiDdpkhDpO42SwiTVsqHmVgw_Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.161.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:3b:05:34:ef:3b:45:11:85:8a:25:5c:4d:4e:9d:e3:66:8d:
5e:73:03:4f:c4:72:09:2a:23:f7:7e:04:30:b0:8e:d1:82:42:
0e:de:a3:56:e3:5f:a3:01:f8:16:f1:79:42:81:15:6f:5e:fe:
8d:94:ed:10:b0:91:6b:72:85:4a:89:f9:7c:10:94:32:cb:26:
91:2c:96:71:99:d3:47:c7:a6:ac:56:ea:69:ff:a3:ae:ab:ef:
e5:10:8a:8e:ea:d6:92:a5:50:0a:eb:4f:9d:cc:d8:68:93:13:
c5:9d:dc:5b:8f:57:ba:89:3e:43:0f:cb:6f:31:f1:e0:db:57:
8a:c3:ba:82:78:a3:45:38:05:8d:5d:00:c7:65:bf:6d:ef:66:
09:55:3e:7d:d6:6f:2b:ea:36:aa:7a:f1:67:70:9c:77:96:e7:
a8:28:70:67:68:2c:5d:d7:fd:4e:42:b5:c7:fb:b9:ba:0b:2c:
ac:0d:3c:71:3a:0a:8f:b1:60:5f:c7:1e:eb:35:0e:76:70:33:
28:6c:35:7a:2e:0a:be:3f:23:a5:11:fd:2b:1f:01:75:e7:1d:
e4:d3:8b:a1:c5:7f:35:a4:f8:02:9d:be:52:19:54:ab:4b:9a:
49:e5:8f:15:d2:1a:a9:26:2f:90:88:b5:96:8c:42:85:67:c7:
a6:7d:08:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:18 2024 by rpki-client on console-fra.rpki-client.org