Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/05ad83-9711-44b0-8cd5-dfdef6caabdf/1/_ySqmOj5rj_TlHFSlduGktTTFco.roa
File: _ySqmOj5rj_TlHFSlduGktTTFco.roa (raw, json)
Hash identifier: /sn7rJLgyOFkfxssFOqQQfp+23fdjDIBdiqQdPThdeM=
Subject key identifier: FF:24:AA:98:E8:F9:AE:3F:D3:94:71:52:95:DB:86:92:D4:D3:15:CA
Certificate issuer: /CN=2ab32a51f01880f48415691b6008b8f3699c343d
Certificate serial: 08327C08
Authority key identifier: 2A:B3:2A:51:F0:18:80:F4:84:15:69:1B:60:08:B8:F3:69:9C:34:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrMqUfAYgPSEFWkbYAi482mcND0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/05ad83-9711-44b0-8cd5-dfdef6caabdf/1/_ySqmOj5rj_TlHFSlduGktTTFco.roa
Signing time: Sat 01 Jan 2022 03:54:41 +0000
ROA not before: Sat 01 Jan 2022 03:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209994
IP address blocks: 193.176.88.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137526280 (0x8327c08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ab32a51f01880f48415691b6008b8f3699c343d
Validity
Not Before: Jan 1 03:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff24aa98e8f9ae3fd394715295db8692d4d315ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:28:c8:34:ec:1b:22:f3:f1:f8:21:d1:19:31:
05:57:4f:32:a9:c3:79:77:31:2f:91:63:3e:9e:59:
32:30:d5:5d:47:f1:52:5b:0f:b4:1a:da:ce:97:3b:
0f:21:3c:3a:4e:5b:10:eb:07:9e:3f:8c:58:5d:d6:
db:e9:20:c3:39:cd:31:72:14:2c:38:3c:27:c6:dd:
fe:6a:ad:84:8c:64:ca:2a:64:fc:df:7b:31:9b:b3:
5a:9b:0f:33:c9:81:f5:65:11:b9:b0:9d:22:b0:f9:
b4:24:f9:50:e9:9a:78:97:44:74:46:b3:74:ec:ed:
6d:b4:b3:9b:ad:4b:dc:6e:fd:e8:ef:dc:7f:fb:a8:
d3:93:a0:c4:e7:08:17:02:fe:ab:93:f2:70:e6:ea:
bf:ef:b2:d6:ba:24:21:92:47:8e:74:7d:ce:20:39:
32:cc:ef:9a:08:e2:e9:03:e6:35:35:25:01:f7:61:
79:f9:de:d6:c3:93:e0:84:96:94:3c:d5:6a:5e:08:
1a:c2:45:43:fb:44:f1:f4:83:25:9f:96:a4:d2:8f:
9f:54:72:dc:4c:12:c8:70:5e:0c:2e:6d:53:c0:79:
7d:e1:1d:3c:38:e7:ed:42:0c:10:4b:21:c7:e3:84:
4b:e4:37:89:75:e1:f9:b1:9f:8f:fb:e9:37:90:72:
48:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:24:AA:98:E8:F9:AE:3F:D3:94:71:52:95:DB:86:92:D4:D3:15:CA
X509v3 Authority Key Identifier:
keyid:2A:B3:2A:51:F0:18:80:F4:84:15:69:1B:60:08:B8:F3:69:9C:34:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrMqUfAYgPSEFWkbYAi482mcND0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/05ad83-9711-44b0-8cd5-dfdef6caabdf/1/_ySqmOj5rj_TlHFSlduGktTTFco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/50/05ad83-9711-44b0-8cd5-dfdef6caabdf/1/KrMqUfAYgPSEFWkbYAi482mcND0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.176.88.0/22
Signature Algorithm: sha256WithRSAEncryption
91:63:f2:31:d0:73:48:78:ae:45:70:98:89:96:eb:8b:dd:9f:
b0:bb:29:09:14:f1:eb:33:5f:36:f2:d4:e1:2d:c0:88:f5:1d:
38:fc:ae:66:a5:3e:44:f9:4d:0b:4e:89:dd:2c:2d:aa:1d:06:
ae:31:60:65:6d:1d:4a:70:2b:bd:0a:22:57:74:af:de:4b:34:
c3:fe:bc:73:f4:4f:ed:88:b8:ed:fa:1c:7b:84:df:f5:06:f5:
02:c7:92:f9:65:9d:cd:1b:db:a7:61:6a:ed:04:64:75:1c:30:
40:d2:72:56:fc:09:05:b9:55:31:49:ec:1c:95:79:7e:37:08:
be:9e:97:32:00:6f:9c:2e:b8:52:14:e7:34:b5:94:b7:ef:4e:
ae:7c:0e:d2:32:ab:cc:39:66:d4:28:7b:ba:49:ae:80:60:f9:
13:47:9f:9b:25:a5:70:65:c8:30:a5:04:bd:71:01:c6:71:e6:
3b:9a:37:8e:ce:7b:15:59:4b:cb:a0:43:14:7b:b9:7f:ed:c8:
ef:26:bb:47:9e:2b:bf:b9:90:66:3b:f1:d6:ff:f5:14:bc:8b:
2d:1b:74:5e:e2:24:fe:7a:f4:ba:69:66:f0:b6:37:ce:9d:5a:
c5:1b:1c:46:31:a5:cd:76:ca:e1:81:19:3f:37:f2:c2:be:b2:
b6:c7:d7:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:38 2024 by rpki-client on console-ams.rpki-client.org