Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/a7ff8c-147e-4c4a-8675-8778cd8c0500/1/d88RqQasHjTSgdLH9RBaImi6ZaM.roa
File: d88RqQasHjTSgdLH9RBaImi6ZaM.roa (raw, json)
Hash identifier: XtP0lAUblnjU+wPUYSfruejQ2+3hNc1l4edUK8Oj7Ck=
Subject key identifier: 77:CF:11:A9:06:AC:1E:34:D2:81:D2:C7:F5:10:5A:22:68:BA:65:A3
Certificate issuer: /CN=a89c840d1ef0cd52dcf5faa65335a5dd5054c465
Certificate serial: 102D322E
Authority key identifier: A8:9C:84:0D:1E:F0:CD:52:DC:F5:FA:A6:53:35:A5:DD:50:54:C4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qJyEDR7wzVLc9fqmUzWl3VBUxGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/a7ff8c-147e-4c4a-8675-8778cd8c0500/1/d88RqQasHjTSgdLH9RBaImi6ZaM.roa
Signing time: Sat 01 Jan 2022 15:05:32 +0000
ROA not before: Sat 01 Jan 2022 15:05:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28682
IP address blocks: 193.243.140.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 271397422 (0x102d322e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a89c840d1ef0cd52dcf5faa65335a5dd5054c465
Validity
Not Before: Jan 1 15:05:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77cf11a906ac1e34d281d2c7f5105a2268ba65a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b7:30:82:10:b1:53:3f:30:42:10:fb:e4:54:
b6:8f:32:7a:ec:06:07:2e:fc:7c:be:f2:4d:90:1d:
f4:ac:9a:04:9a:56:2e:90:cc:48:4a:10:2d:7f:ff:
6c:1f:38:4a:10:a1:48:c9:78:19:5a:ce:48:ec:1c:
a7:3e:e9:a1:dd:e8:23:bd:eb:a1:0e:1e:1a:9f:86:
7a:3d:a8:37:80:d0:64:25:d0:35:cc:2b:3f:22:ce:
d1:52:e4:b5:2f:d0:da:23:f4:53:50:15:25:0d:cf:
8a:b0:6c:e4:a6:34:1f:2a:08:4c:c9:40:8d:78:49:
1d:02:a4:2d:8d:3c:3a:11:9c:be:3b:63:a2:3e:98:
04:5d:5f:56:14:43:68:55:f8:4b:ce:04:6a:ec:a6:
ec:1e:81:53:ce:5a:c9:df:f6:3d:b8:e5:1b:36:04:
b4:e1:40:d4:d9:fc:20:3d:90:3d:ad:9e:74:de:cb:
ad:4f:eb:53:de:20:41:8a:1e:8b:c8:02:2c:f8:8e:
42:c6:d6:f2:92:70:9d:ed:ec:a2:28:7f:dd:05:1e:
73:08:69:cf:20:29:a8:10:fe:d7:31:2f:07:18:ed:
bf:af:7f:92:9e:dd:94:9d:09:82:80:be:55:58:51:
b9:2d:a4:2b:06:a8:a9:13:f0:7c:ee:8c:d1:c3:f3:
47:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:CF:11:A9:06:AC:1E:34:D2:81:D2:C7:F5:10:5A:22:68:BA:65:A3
X509v3 Authority Key Identifier:
keyid:A8:9C:84:0D:1E:F0:CD:52:DC:F5:FA:A6:53:35:A5:DD:50:54:C4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qJyEDR7wzVLc9fqmUzWl3VBUxGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/a7ff8c-147e-4c4a-8675-8778cd8c0500/1/d88RqQasHjTSgdLH9RBaImi6ZaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/a7ff8c-147e-4c4a-8675-8778cd8c0500/1/qJyEDR7wzVLc9fqmUzWl3VBUxGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.243.140.0/23
Signature Algorithm: sha256WithRSAEncryption
36:18:ed:9c:bf:ef:cb:6f:4c:53:c9:ec:0a:e7:ad:64:41:58:
7c:77:97:cb:71:75:ff:c5:25:30:a6:2c:3a:1e:6f:b8:10:d1:
4d:a3:88:18:01:c3:f0:2a:f0:5e:47:93:49:2a:97:db:0a:43:
87:7a:e8:11:7c:3d:46:31:7d:64:80:76:7f:95:4a:e5:45:d4:
48:8f:9e:e6:5a:27:bd:7e:6a:da:b7:65:b5:fe:15:64:62:d8:
6b:ac:e3:32:09:d6:23:15:71:47:15:66:a7:db:73:b4:8c:a8:
f5:96:cb:7a:80:a4:39:1a:73:3f:05:0f:b5:10:28:64:1d:e2:
b6:e5:03:6f:4d:bb:1b:89:8e:27:85:f2:b3:b6:0a:7d:a4:2d:
a2:11:c5:a4:e3:99:eb:a2:b1:fb:64:78:97:d2:a9:72:8c:08:
df:9c:e0:fc:b8:54:16:2e:10:4f:e2:72:ba:f4:1d:8e:fc:33:
e2:14:96:d8:3a:92:59:a7:58:8c:b9:8f:2f:36:3f:de:55:72:
97:d3:21:9f:fe:66:c3:2d:84:30:88:11:84:78:f2:89:68:8c:
3f:23:c2:05:a6:6d:48:f1:47:9c:bc:7b:57:18:fc:92:90:a5:
6a:41:fe:bf:b4:bf:e0:63:8a:f4:b9:df:1d:e8:f6:dc:4d:46:
c2:47:3c:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:40 2024 by rpki-client on console-fra.rpki-client.org