Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/aSyJyOrYRClppzi7ExWQofXokk8.roa
File: aSyJyOrYRClppzi7ExWQofXokk8.roa (raw, json)
Hash identifier: 3ZHAba9LqXsEMeOofqM3aPQ1eIzUnv0moGYLihJCL5c=
Subject key identifier: 69:2C:89:C8:EA:D8:44:29:69:A7:38:BB:13:15:90:A1:F5:E8:92:4F
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 2774D7BE
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/aSyJyOrYRClppzi7ExWQofXokk8.roa
Signing time: Sat 01 Jan 2022 16:08:05 +0000
ROA not before: Sat 01 Jan 2022 16:08:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41271
IP address blocks: 93.170.178.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 661968830 (0x2774d7be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 1 16:08:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=692c89c8ead8442969a738bb131590a1f5e8924f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:51:3a:f6:2a:8b:6b:c7:3e:07:ca:8d:93:f4:
f9:8f:7a:1d:94:01:9b:dd:d3:7c:17:d3:b2:95:17:
a7:7f:c6:a6:00:14:e1:15:74:95:7b:77:b4:f0:4f:
04:1a:f5:5a:e2:6f:4a:5b:9c:fd:62:73:06:df:3a:
d7:e8:59:f6:81:0d:c2:55:97:47:2f:59:2d:eb:22:
3c:ff:e3:1b:2b:f5:f8:e5:d0:2f:e7:48:2c:e0:8a:
b3:72:d1:b1:ad:ad:16:35:a3:b8:41:14:30:79:e8:
14:3a:1a:b0:9e:6d:e0:b4:b8:0c:d0:04:99:d8:6e:
11:c5:da:7e:d6:76:34:5a:62:2e:7b:e3:04:fe:a8:
85:00:cb:d8:ee:d5:5f:bc:47:b5:3f:62:d3:9e:52:
d2:94:6c:a1:34:a2:b3:b0:f2:25:e2:43:dc:95:14:
a0:fa:76:1b:8c:eb:54:43:f3:6c:26:5b:5a:b1:0f:
b9:dd:a1:9e:08:ca:6d:b1:3a:9e:06:07:4f:88:92:
f6:51:40:42:bc:c5:db:af:73:13:c6:70:4b:f1:37:
27:6c:63:1b:5f:1c:71:6e:2b:6b:0c:85:4e:19:61:
62:01:9a:79:cf:d1:cb:89:1e:2c:af:87:11:89:b6:
f8:4f:ec:1d:ff:09:a3:61:50:fb:34:fe:fd:84:0e:
98:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2C:89:C8:EA:D8:44:29:69:A7:38:BB:13:15:90:A1:F5:E8:92:4F
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/aSyJyOrYRClppzi7ExWQofXokk8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.178.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:21:26:db:05:ef:50:db:04:15:60:23:4e:e2:9e:0c:9b:e2:
72:1e:52:04:2d:69:5e:89:b9:a7:9f:4b:56:31:6a:c7:75:ac:
40:2f:8d:2b:ae:90:9a:24:a6:17:10:b9:4c:f7:ed:bd:aa:79:
11:60:df:0b:4b:71:57:73:fd:1c:c1:c5:76:7f:21:89:c1:0c:
48:ec:c4:bb:c4:55:52:7b:5b:e1:8a:2a:dd:9d:34:7f:0a:bd:
78:6c:d4:4c:5f:de:14:1f:60:bc:dd:33:0c:4d:ab:cb:b1:b4:
ec:f5:0e:a9:77:8c:49:81:ef:45:c8:c8:13:c8:f9:e1:3a:3b:
49:22:7e:34:b1:2b:95:d8:7a:4a:ff:4a:aa:60:34:4e:6b:42:
f6:21:21:6c:89:18:e3:56:be:e2:61:75:59:01:f7:b3:83:30:
74:ec:11:eb:a4:6d:a0:ae:f4:b1:1b:6c:48:63:ee:44:47:ee:
cc:e5:53:4c:4f:95:63:d9:cc:d0:54:f3:6f:e4:db:3c:00:c6:
8b:08:13:51:33:39:07:d0:d9:2f:de:41:df:0f:a8:d2:eb:98:
57:43:55:74:a0:fe:12:d3:b7:dc:fe:fc:80:9c:3e:92:06:ed:
81:ea:8d:78:5f:35:15:8d:ed:4f:0c:8a:58:ff:8f:39:e1:65:
ed:ad:82:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:51 2024 by rpki-client on console-ams.rpki-client.org