Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/5cf9a5-11e0-4876-9fe4-f50f71d5e0c8/1/p2q5X6UNUdtJ9DwxhUyP4GDo3WA.roa
File: p2q5X6UNUdtJ9DwxhUyP4GDo3WA.roa (raw, json)
Hash identifier: gIYuz3GmjYRSSzqPfiB/UWlB1EMIDA7Q6xG/Lz1WdCE=
Subject key identifier: A7:6A:B9:5F:A5:0D:51:DB:49:F4:3C:31:85:4C:8F:E0:60:E8:DD:60
Certificate issuer: /CN=c60ffca9d8ca08f213e60a0048c17fbb0bf60e7c
Certificate serial: 0608DA07
Authority key identifier: C6:0F:FC:A9:D8:CA:08:F2:13:E6:0A:00:48:C1:7F:BB:0B:F6:0E:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xg_8qdjKCPIT5goASMF_uwv2Dnw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/5cf9a5-11e0-4876-9fe4-f50f71d5e0c8/1/p2q5X6UNUdtJ9DwxhUyP4GDo3WA.roa
Signing time: Sat 01 Jan 2022 08:56:09 +0000
ROA not before: Sat 01 Jan 2022 08:56:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50628
IP address blocks: 193.35.156.0/24 maxlen: 24
193.35.98.0/24 maxlen: 24
193.35.101.0/24 maxlen: 24
193.35.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101243399 (0x608da07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c60ffca9d8ca08f213e60a0048c17fbb0bf60e7c
Validity
Not Before: Jan 1 08:56:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a76ab95fa50d51db49f43c31854c8fe060e8dd60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:b2:d3:dc:f0:f8:51:a5:72:fe:29:83:51:eb:
04:d2:5c:c9:05:59:65:c6:23:bd:2a:98:1f:f4:d2:
33:72:76:f6:70:c5:d1:1f:5e:a5:07:6d:de:5a:75:
bf:13:fc:49:80:03:1f:3c:db:51:fc:41:ef:c3:d8:
18:61:df:0e:f0:3e:08:c7:d3:af:49:a4:e3:90:73:
04:13:77:41:c0:a0:27:80:59:ad:b6:ab:25:ba:09:
94:a2:9f:72:29:ca:9e:2e:6f:88:5e:0a:ea:37:b6:
1b:10:98:6e:c4:1a:e8:b2:0f:36:f3:0d:8f:05:23:
ce:45:57:87:c7:43:bb:d8:99:fe:91:15:a8:69:3c:
2d:56:86:93:c3:a1:1f:8a:31:17:c4:95:2a:65:34:
83:34:11:6a:7f:c6:db:6e:7e:5e:60:be:02:a5:ca:
bb:e1:50:95:b7:38:40:a0:98:a5:a7:37:96:83:f6:
7c:5b:2e:f0:1c:9e:b3:07:ae:61:20:4f:78:14:1d:
cf:1e:7d:7b:51:c2:a1:38:3a:e4:d4:d2:38:b1:80:
6a:9c:87:c8:b9:8d:b7:ab:c3:0e:05:3e:d5:18:83:
e1:26:84:de:c5:3a:22:ef:0a:f8:f0:9e:0d:4b:84:
2c:90:35:e0:04:0a:3c:e1:88:dc:31:10:43:ae:5d:
fc:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:6A:B9:5F:A5:0D:51:DB:49:F4:3C:31:85:4C:8F:E0:60:E8:DD:60
X509v3 Authority Key Identifier:
keyid:C6:0F:FC:A9:D8:CA:08:F2:13:E6:0A:00:48:C1:7F:BB:0B:F6:0E:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xg_8qdjKCPIT5goASMF_uwv2Dnw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5cf9a5-11e0-4876-9fe4-f50f71d5e0c8/1/p2q5X6UNUdtJ9DwxhUyP4GDo3WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/5cf9a5-11e0-4876-9fe4-f50f71d5e0c8/1/xg_8qdjKCPIT5goASMF_uwv2Dnw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.35.98.0/24
193.35.101.0/24
193.35.145.0/24
193.35.156.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:b7:c4:73:5d:c5:77:5c:6d:62:a3:51:fb:83:bd:3a:92:73:
25:1c:fd:6a:64:db:e0:22:2e:77:63:2d:5b:86:27:ee:dd:2f:
c1:9e:b4:4c:e7:d4:cc:04:5e:2a:a1:ff:68:8e:1e:4e:9d:44:
6f:79:c6:9f:5d:c6:cf:e1:a0:13:a3:50:02:a5:8a:ce:02:77:
40:bc:93:4d:9e:80:7e:22:53:48:44:ee:2c:91:d6:58:cc:af:
55:85:5a:f2:a9:5d:72:fb:3f:b8:b4:86:d6:d9:cf:66:04:13:
7d:44:40:4d:e0:0a:53:6a:7b:b9:87:14:ad:b4:ca:07:99:dc:
45:e8:ad:4d:eb:bc:e3:86:98:ea:22:da:2e:a4:87:06:81:1f:
ff:15:88:58:0d:59:b0:a2:66:8f:cf:4a:28:3f:1c:68:0d:78:
74:c5:9a:c7:07:27:6c:ea:16:de:d3:8d:3b:4c:89:d9:1d:9f:
0b:b7:b7:8e:6a:b4:3c:19:00:e8:52:43:fb:17:0b:8e:43:26:
80:2f:6c:66:d7:d9:24:66:bb:24:16:5e:7b:da:b1:b6:67:61:
50:88:eb:90:7f:88:e8:81:3f:85:8e:2e:ef:03:b9:cd:a2:a7:
96:80:d1:e2:a7:02:ca:53:4b:fc:44:f9:79:7f:ae:e0:af:e1:
01:bf:56:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:10 2024 by rpki-client on console-fra.rpki-client.org