Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/IEkPuxLH2kWJ6kBIJn3ywCass3M.roa
File: IEkPuxLH2kWJ6kBIJn3ywCass3M.roa (raw, json)
Hash identifier: 1smrZ6nwQZsx5HiWEZMx9kgCrsCbEtSyF4ynxDrDG5Q=
Subject key identifier: 20:49:0F:BB:12:C7:DA:45:89:EA:40:48:26:7D:F2:C0:26:AC:B3:73
Certificate issuer: /CN=bc87b9cfc3ee0c44965ea209c04fd8e8f48fa42f
Certificate serial: 0184A9E9ED2F3A453449AA29DC9D48956501
Authority key identifier: BC:87:B9:CF:C3:EE:0C:44:96:5E:A2:09:C0:4F:D8:E8:F4:8F:A4:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vIe5z8PuDESWXqIJwE_Y6PSPpC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/IEkPuxLH2kWJ6kBIJn3ywCass3M.roa
Signing time: Thu 24 Nov 2022 13:53:10 +0000
ROA not before: Thu 24 Nov 2022 13:53:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49040
IP address blocks: 193.93.26.0/24 maxlen: 24
91.192.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:a9:e9:ed:2f:3a:45:34:49:aa:29:dc:9d:48:95:65:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc87b9cfc3ee0c44965ea209c04fd8e8f48fa42f
Validity
Not Before: Nov 24 13:53:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20490fbb12c7da4589ea4048267df2c026acb373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:11:28:9e:1c:c1:ce:b4:3f:8b:3e:34:2e:2f:
bc:25:f9:87:72:bd:c9:75:70:2e:2b:60:94:e1:a5:
53:6b:85:f6:19:cb:d2:fc:16:ec:49:0a:d2:83:b3:
e2:a9:52:28:91:ba:0a:20:74:e4:96:9c:85:a2:3b:
9b:44:8b:b4:a0:1e:f9:34:af:80:f2:e6:e2:09:7b:
61:ac:ad:d6:2e:81:f8:36:b8:0e:96:a5:e1:09:16:
c5:55:93:d2:5e:9e:ce:b1:1c:1d:a0:77:e2:76:ff:
b2:ff:43:bb:8b:e8:29:c8:5f:4b:50:2f:bc:eb:be:
69:6c:55:13:b4:8d:8e:8c:4d:7a:31:44:f9:a6:91:
c0:a4:3c:c9:db:c7:19:74:c7:0f:cb:80:b1:7f:7f:
84:55:66:0e:67:bb:73:9f:74:cc:db:78:cd:7b:a7:
a9:e5:be:9e:60:68:4a:77:67:e7:7d:c5:52:78:14:
7d:87:23:e6:d5:bc:e6:6c:f5:bc:94:67:cc:d9:70:
60:56:7e:24:37:36:91:a8:b1:2f:c0:23:ee:75:63:
f2:fd:19:74:c8:ed:88:dd:a4:6f:1e:9d:a6:4c:b0:
d7:25:0c:9d:88:ad:76:d2:9b:91:1e:c6:8e:c1:a3:
ac:e7:7c:67:d3:1e:8d:8b:9f:c3:47:4a:88:3d:6d:
9b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:49:0F:BB:12:C7:DA:45:89:EA:40:48:26:7D:F2:C0:26:AC:B3:73
X509v3 Authority Key Identifier:
keyid:BC:87:B9:CF:C3:EE:0C:44:96:5E:A2:09:C0:4F:D8:E8:F4:8F:A4:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vIe5z8PuDESWXqIJwE_Y6PSPpC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/IEkPuxLH2kWJ6kBIJn3ywCass3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/57e8d7-49ab-4d1e-a808-45fabe3f9f33/1/vIe5z8PuDESWXqIJwE_Y6PSPpC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.236.0/24
193.93.26.0/24
Signature Algorithm: sha256WithRSAEncryption
32:c4:0b:1c:a4:8a:fe:01:21:63:34:ac:57:8d:01:0a:01:ef:
0e:3d:cc:f4:30:5f:ea:aa:c8:11:47:20:de:db:6c:35:25:f2:
c0:cf:c4:17:d6:09:8d:f5:e9:68:67:0b:31:c8:ce:8e:d1:86:
54:b4:4c:53:fd:fc:2b:11:b2:b9:2c:84:d2:ef:2f:fa:43:6b:
64:ee:81:87:62:c3:a9:46:d1:dc:1d:38:cf:c2:59:d3:4e:4a:
7f:0a:6a:7d:96:8f:db:46:a6:12:f4:d3:a0:53:3f:09:2e:1b:
5b:9b:64:63:08:28:52:2e:8d:9f:81:2e:dd:af:1d:ee:c7:94:
2a:69:26:18:c9:83:8a:e0:41:27:f5:10:bc:f5:66:71:06:0a:
3b:18:c8:95:cc:c7:5a:cc:e7:19:2d:87:df:ea:0d:c0:67:c9:
15:0f:b7:77:01:ad:5a:f8:db:56:c7:97:19:62:29:e6:90:07:
cf:57:46:cc:65:c3:39:57:1d:c3:da:b3:44:e2:9d:76:0f:46:
c9:ed:eb:75:77:9d:1a:50:ae:17:68:2e:f8:bc:3c:0e:6c:ae:
68:63:f9:7b:28:b8:5b:85:49:87:51:75:3d:ea:fd:a1:c7:fc:
e4:e0:75:e1:39:0d:e1:5a:d2:95:0b:da:d0:66:07:42:bd:fc:
da:4a:6b:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:53 2024 by rpki-client on console-fra.rpki-client.org